Monthly Archives: November 2011

Running Windows 7 on an iPad using VMWare View

Using VMWare View a Apple iPad can run Windows 7.  Using Domain Services for Windows as the directory VMWare View can easily be deployed in and existing or new Novell eDirectory environment.  This video from Network World demonstrates how Windows 7 can run on a Apple iPad.

Overview of VMWare View 5

VMWare View is one of the most common reasons why Domain Services for Windows is deployed and the most popular app authenticating to Domain Services for Windows. With View workstations can be centrally managed and reside in the data-center.  If you are looking at implementing VMWare View, consider DSfW as a replacement for AD.  If you are a Novell Shop and want to continue using eDirectory and don’t want to have two directories to administer, DSfW will allow a AD style Domain to be installed into your tree, providing AD style authentication.  No CALS, which will saver $, no syncing directories because all the users are in eDirectory.  eDirectory is running behind the scenes with DSfW.  The users in the DSfW domain are both eDir and DSfW users.  AD and NCP authentication will work with DSfW.  With applications like VMWare View that require… Continue reading

Creating a SLES11 Install source

Creating an install source is extremely easy to do with YaST.  Just follow the installation server wizard.

To create a single SLES+OES DVD follow Simon’s Coolsolution Article

How to create a cross forest trust

This video will guide you through the creation of a cross forest trust between DSfW and AD.

For more information on creating a cross forest trust please read through the documentation
http://www.novell.com/documentation/oes11/acc_dsfw_lx/data/ber65jt.html

The trust password will change every 30 days by default. Consider disabling the automatic machine password changes or increasing the time before the password is changed. Some times when a workstation or in this case trust changes its password the change does not get set in the directory and the trust relationship is broken. In that case the trust needs to be re-established.

If a trust is removed and then re-established, before creating the trust again be sure that the trust object in cn=users, is removed as well.  The object will look like a user object with the name of the AD Domain with a $ at the end.

Good MS documents to help troubleshoot errors:

Known… Continue reading

How to create DNS forwarders

In order to create a cross forest trust both the DSfW server and the AD server need to resolve each others domains.  The video will show you how to create a forward and reverse forwarder for only the AD zone (domain) to the AD server and how to put a forwarder on the AD server to the DSfW DNS server.

 

How to Create a Forest and DC on Windows 2008R2

Creating an AD forest and domain is easy with dcpromo.  Before you start, put the DSfW server as the DNS server on the Windows 2008 server.  When the server is promoted to a domain controller, the server listed as the DNS server will be a listed as a forwarder.

Novell Filr, taking network files to a new level

I’m trying to keep this site more along the lines of DSfW related topics, but I think this is so cool.  I can’t wait to have to test this out with DSfW.

For more info about Novell Filr, check out the Filr product page.

Novell DNS Tools – iManager and DNS/DHCP Console

The Novell DNS DHCP Console is what most prefer to use to  manager Novell DNS. It allows for easy viewing, modification, and creation of zones, records, and DNS servers.

 

If there are more than one dns locator objects in the tree use the -C switch after the executable to specify which locator object to use.

-C OESSystemobjects.novell

If updates made in the DNS/DHCP tool are not fast enough for you, loo at the novell_dyn_reconfigure setting on the DNS server object or restart novell-named.

At 6:51 on the video this setting is displayed.  15 minutes is recommend .  If the reconfigure is set to 5 minutes in a large environment, the reconfigure might not finish updating cache before the the process is started again.

 

iManager is the second tool available to use to manage DNS and DHCP.  The second video will… Continue reading

LDAP Proxy 1.0 is Released

The much awaited LDAP Proxy has been released and is available for download on the download.novell.com site.

The documentation can be found at http://www.novell.com/documentation/ldapproxy/

If you are unfamiliar with LDAP Proxy, it allows a single access point for access to multiple directories. That is the basic function of LDAP Proxy. It does way more than that. Very cool product. I have been waiting a long time for this.

How to join a Mac to a DSfW domain

This video will show you how to join a Mac to a DSfW domain

At this time Mac joined to a DSfW domain is not supported, but it can be done.

Be sure dns resolves the domain name – nslookup <domain name>
Go to the System Preferences
Accounts
click Join button next to Network Account Server
Click Open Directory Utility
Unlock the directory utility
Click Active Directory
Add the domain name to the Active Directory Domain field
Be sure the Computer name ID is a unique name
Click bind

Now the workstation is joined to the domain.  To enable DSfW users to login to the workstation
Under Hide Advanced Options
Click the User Experience
use smb as the network protocol
and /bin/bash as the default shell
so that users can login when the domain is not available enable Create mobile account at login

The most important setting is… Continue reading

How to take a packet trace using tcpdump

Common options to use are
-D : Lists the available interfaces
-i : Listen on specified interface. Use tcpdump -D, ip a, or ifconfig to get available interfaces or use -i any for all.
-n : Use numbers, don’t resolve hostnames.
-nn : Don’t resolve hostnames or port names.
-v, -vv, -vvv : Increase the amount of packet information you get back.
-c : Capture x number of packets, example tcpdump -c 50
-s : Set the snapshot length or snarfs the snaplen. The default is 68 bytes. Use -s0 unless you are know what snapshot length you want to capture.
-q : Show less protocol information.
-E : Decrypt IPSEC traffic by providing an encryption key.
-R : Read the trace

tcpdump syntax: ‘Protocol’ ‘Direction’ ‘Host(s)’ ‘Value’ ‘Logical Operations’ ‘Other expression’
tcpdump tcp src 192.168.100.10 445 and tcp dst 192.168.100.2

Start by listing interfaces that are available:
tcpdump -D… Continue reading

Categories