Symantec Endpoint Protection SVA Network Connectivity Issues

This afternoon while deploying the Symantec Virtual Appliance for vShield for a customer I ran into an issue after the initial deployment where the appliance could not connect to the configured network in the configuration file.

For whatever reason, the appliance is configured for the default route of the private vmservice-vshield-pg network instead of the specified  Network in the config file.

In order to get the appliance talking correctly to the Symantec Endpoint Protection Manager I had to remove the gateway for ETH1.

Login to the console of the appliance with the username admin and the password you specified during deployment.

Then run “sudo su –” enter your admin password again and now you’re root.

Edit the eth1 config by typing the following command. “vi /etc/sysconfig/network-scripts/ifcfg-eth1

Cursor down to the “GATEWAY=169.254.1.1” and press your D key, and then D key again.

Write out the file by pressing the following keys in order… (not the parentheses)  “: w q ENTER”

Now it’s time to restart the networking service… enter the following command “service network restart

Attempt to ping your Symantec Endpoint Protection Manager IP now and if you get a reply you’re all good.

This is only going to be an issue in the event that your SEP SVA is on a different network than your SEP Manager Server.

 

Let me know if this worked or didn’t for you, and I’ll be happy to research a little more.

vCenter Error: Idm client exception: Operations error

Earlier today I was setting up vCenter Server Appliance 5.5 in the lab and ran into an issue getting Active Directory authentication working.

After joining to the appliance to the domain via the admin URL, I attempted to entitle some users to vCenter, however when clicking on the domain identity provider I received the following error…

Error: Idm client exception: Operations error

Doing some research it appears the Single Sign On service uses DNS Reverse PTR records to communicate with the domain controllers, so ensure that you have reverse DNS entries for both your vCenter Server Appliance as well as your Active Directory Domain Controllers!

VMware Horizon Mirage 4.4 Now Available

So earlier today I was in Reston, VA at VMware’s swanky new Executive Briefing Center with a customer talking about End User Computing.  When my buddy Chris mentioned that VMware Mirage 4.4 has gone GA.  I cannot tell you guys how much traction this product gets from customers when I perform a break fix demonstration right in front of their eyes.  It truly is a powerful piece of software for maintaining the integrity of either physical or virtual endpoints.  Below is the official announcement from VMware about the release.  Let me know if you have any questions!

 

VMware Horizon Mirage 4.4 Now Available!

Horizon Mirage 4.4 is now generally available! This latest release of Horizon Mirage introduces several exciting new features that benefit a variety of areas in IT. Horizon Mirage 4.4 now includes support for the latest Windows desktop operating systems – Windows 8 and 8.1. With this addition, Horizon Mirage can protect desktops and laptops with operating systems starting from Windows XP (if you still have it!) to Vista to 7 and now 8 and 8.1.  The next major feature, and one that benefits distributed enterprises, is a new Mirage Gateway. The gateway allows secure centralized management of remote endpoints without the need for VPN. Finally, enhancements to the Windows 7 migration process helps make migrations even faster with Horizon Mirage – as if they weren’t fast enough already! Here’s more information on some of the key new features in Horizon Mirage 4.4:

Windows 8 Support – Windows 8 and 8.1 devices can now be centralized and recovered using Horizon Mirage. IT can initiate a full system recovery in case of a lost, stolen, or broken beyond repair desktop, laptop or tablet. End users can initiate self-service file recovery in case they want to revert a deleted file or revert a file to a previous snapshot. And all of this can be done in minutes to hours, not days to weeks.

Mirage Gateway – The Mirage Gateway helps remote users connect their devices back to the corporate network, where Horizon Mirage is centrally located. End users do not need to set up a VPN connection to synchronize or back up their local files to the centrally-located Mirage Server(s). Saving this extra step across many remote users creates a non-disruptive experience for those remote users. And, the Mirage Gateway includes enterprise-grade scalability and security.

Fast Windows 7 Migration – A new policy can be applied to endpoints such that data does not get backed up or centralized during a migration workflow. This can lead to a tremendous amount of time saving as centralization is generally one of the biggest time consumers in a migration project.

Easy Upgrade for Horizon View Customers with Horizon Mirage – If IT needs to upgrade the Horizon View agent from 5.3 to future releases, they can do so with Horizon Mirage. Using a base or application layer is a two-step process that allows IT to perform this upgrade. The upgrade does not disrupt any applications that are managed outside of the base or app layer that contains the View upgrade.

Web Console and File Portal Enhancements – Using the web console and file portal just got better with Horizon Mirage 4.4. End users can now download multiple centralized files, and even folders, across devices. The web console has been further improved to allow IT to perform mass centralization and get deeper insight into the endpoints being managed with dashboard drilldowns. These enhancements automate management for IT, making troubleshooting easier and providing a scalable endpoint centralization option.

As noted above, Horizon Mirage 4.4 introduces several enhancements and new features that help IT work better, faster and smarter. This translates into fantastic support for end users, which helps maximize business efficiency.

Crap… where does the time go?

As you can see I haven’t really been very thorough in making some updates to the site, and I’m getting the urge to get back into the  swing of things.  

Since I’ve been gone, I’ve gone through a couple of different jobs in the Hampton Roads area, primarily because each position I accepted pretty much had me sitting at a desk waiting for something to do.  Which is exactly the opposite of what I told them I wanted to be doing. That being said I’ve found a position with a great new company in central Virginia as a VMware Solutions Architect.  Getting to meet new customers and help them along their journey to a more streamlined and automated infrastructure environment is what I love to do.

I’m going to start posting regularly here on what I’m seeing customers struggling with in addition to some VMware product updates and how-to’s.

In addition to the new activity going on here, make sure you check out all of the new websites that we’ve got up and running at The New Tech.

If you have any suggestions for content here, please don’t hesitate to shoot me an email.  See you guys soon!

 

How To Record iHeartRadio & Elliot In The Morning

I have a confession to make, I can’t remember the last time I listened to terrestrial radio. I’ve had satellite radio in my vehicles ever since Opie & Anthony joined XM, and have never had to listen to commercial in my car in nearly a decade.

My girlfriend however loves the morning radio show Elliot in the Morning out of Washington, DC.  iHeartRadio used to be her saving grace as she would catch up on the previous day’s show throughout her work day.  But earlier this summer iHeartRadio decided they weren’t going to broadcast Elliot’s replays throughout the day and decided to only play his show live. So in my ongoing quest to keep my girlfriend happy I started to look for options on how to download the daily episodes of Elliot.

Eitm3

I stumbled upon the website DAR.fm and thought that this was going to be much easier than I had anticipated.  Basically DAR has a collection of shows that you can search for, and records them for you allowing you to listen to them online, or download them to a moblie device of your choice for offline listening.  The only problem is the mobile applications suck a bag of dicks.  They constantly get stuck trying to download portions of a show (of which there are twenty 15 minute parts), entire shows don’t show up in the mobile app, or it just freezes completely.  So with all of the headaches of using a service I had no control over, it was time to engineer something that I could manage myself and verify that episodes were being downloaded.

Head on past the break to figure out what I ultimately came up with.