You are browsing the archive for Uncategorized.

Orchestrator 2012 R2: Unattended installation / Command Line

10:04 am in Uncategorized by Christopher Keyaert

Hi Guys,

When you have to deploy products in your lab or at your customer, there is nothing more boring that going through the Next Next Setup again and again, one day after the other. It’s why I’ will share with you the command lines that I use to install the different System Center components.

Today we will start with unattended installation of System Center Orchestrator 2012 R2.

Orchestrator – All Components:

Import-Module ServerManager
Add-WindowsFeature NET-Framework-Core

& 'E:\Setup\Setup.exe' /InstallDir:'C:\Program Files (x86)\Microsoft System Center 2012 R2\Orchestrator' /DbServer:db.domhome.local /DbNameNew:OrchDB /WebServicePort:81 /WebConsolePort:82 /OrchestratorRemote /UseMicrosoftUpdate:0 /SendCEIPReports:0 /EnableErrorReporting:never /Components:all /ServiceUserName:'XXXX\XXXXXX' /ServicePassword:'XXXX' /Key:XXXXX-XXXXX-XXXX-XXXX-XXXXX /Silent

Orchestrator – Runbook Designer:

Import-Module ServerManager
Add-WindowsFeature NET-Framework-Core

& 'E:\Setup\Setup.exe' /InstallDir:'C:\Program Files (x86)\Microsoft System Center 2012 R2\Orchestrator' /OrchestratorRemote /UseMicrosoftUpdate:0 /SendCEIPReports:0 /EnableErrorReporting:never /Components:RunbookDesigner /Key:XXXXX-XXXXX-XXXX-XXXX-XXXXX /Silent

Orchestrator – Runbook Server:

Import-Module ServerManager
Add-WindowsFeature NET-Framework-Core

& 'E:\Setup\Setup.exe' /InstallDir:'C:\Program Files (x86)\Microsoft System Center 2012 R2\Orchestrator' /DbServer:DB.domhome.local /DbNameExisting:OrchDB /OrchestratorRemote /UseMicrosoftUpdate:0 /SendCEIPReports:0 /EnableErrorReporting:never /Components:RunbookServer /ServiceUserName:'XXXX\XXXXXX' /ServicePassword:'XXXXX' /Key:XXXXX-XXXXX-XXXX-XXXX-XXXXX /Silent

Orchestrator – Orchestrator Console (Web Console):

Import-Module ServerManager
Add-WindowsFeature NET-Framework-Core

& 'E:\Setup\Setup.exe' /InstallDir:'C:\Program Files (x86)\Microsoft System Center 2012 R2\Orchestrator' /DbServer:DB.domhome.local /DbNameExisting:OrchDB /OrchestratorRemote /UseMicrosoftUpdate:0 /SendCEIPReports:0 /EnableErrorReporting:never /Components:WebComponents /WebServicePort:81 /WebConsolePort:82 /ServiceUserName:'XXXX\XXXXXX' /ServicePassword:'XXXXX' /Key:XXXXX-XXXXX-XXXX-XXXX-XXXXX /Silent

And voila J

To ensure that everything has been installed correctly, the log file is available at the following path:
C:\Users\USERNAME\AppData\Local\Microsoft System Center 2012\Orchestrator\Logs

All parameters for the commands above are available on TechNet:
http://technet.microsoft.com/en-us/library/hh674378.aspx

Next post will be about the unattended installation of Operations Manager 2012 R2.

Cheers
Christopher

Windows Azure: S2S VPN with dynamic public IP

9:34 pm in Uncategorized by Christopher Keyaert

Hi Folks,

Some weeks ago, I decided to focus myself a bit more on Windows Azure and tests several scenarios. The first one was to establish a Site to Site VPN between Windows Azure and my lab at home.
Microsoft is now supporting Windows Server 2012 Routing and Remote Access Service (RRAS) as VPN device with Windows Azure, so all I need is to create a new VM for this task.

To configure and establish the connection with RRAS, I recommend you the two following guides:

http://blogs.technet.com/b/arnaud/archive/2013/06/06/cloud-hybride-vpn-site-224-site-avec-azure-et-windows-server-2012.aspx
http://fabriccontroller.net/blog/posts/setting-up-software-based-site-to-site-vpn-for-windows-azure-with-windows-server-2012-routing-and-remote-access/

These guides are quite complete and I didn’t have any problem to establish the connection.

When you configure your Azure network, it will create an IPSEC tunnel between Azure and your site. During this process, you will have to specify a VPN Gateway Address, which is simply your ISP Internet public IP.
If your Internet Service Provider (ISP) provides you a fix IP, no problem, you are all set. Now, if your ISP provides you a public IP that is changing every x days (like me), each time this IP will change, the VPN connection will go down and you will have to update your public IP in the Azure Web Interface.

Even if I’m using this S2S VPN connection for testing purpose only, updating my public IP manually into Azure Web Interface, this is not an option for me. Hopefully, PowerShell is there to help us.

Two prerequisites:
Install the Windows Azure PowerShell Module:
http://go.microsoft.com/?linkid=9811175&clcid=0x409

Subscribe to a service like http://www.no-ip.com or http://www.dyndns.com which will make your public IP point to a subdomain. (With an automatic update when your IP is changing).

The first thing to do is to retrieve the Azure Settings, for that, simply run the following command:

Import-Module "C:\Program Files (x86)\Microsoft SDKs\Windows Azure\PowerShell\Azure\Azure.psd1"
#Execute: Get-AzurePublishSettingsFile; Save .publishsettings file locally
Get-AzurePublishSettingsFile

It will retrieve a file similar to this one, which is containing all the necessary information to connect to your Azure Subscription.
Save this file in a secure location as it gives a full access to your Azure Subscription.

Configuration the following parameters:

Import-Module "C:\Program Files (x86)\Microsoft SDKs\Windows Azure\PowerShell\Azure\Azure.psd1"
#Variables
$Path = "E:\AzureConfig"
$DynDNS = "xxxx.no-ip.com"
$AzureSubscriptionName = "Windows Azure MSDN - Visual Studio Ultimate"
$AzurePublishSettingsFile = "$Path\Windows Azure MSDN - Visual Studio Ultimate-11-19-2013-credentials.publishsettings"

You could find your Azure Subscription name, simply by clicking on Subscriptions in the Azure Web Interface.

Connect to Windows Azure with the connection file that you save earlier thanks to the Get-AzurePublishSettingsFile command.

#Execute: Import-AzurePublishSettingsFile; reference local .publishsettings file
Import-AzurePublishSettingsFile -PublishSettingsFile $AzurePublishSettingsFile
Set-AzureSubscription -SubscriptionName $AzureSubscriptionName
Select-AzureSubscription -SubscriptionName $AzureSubscriptionName

This part of the script will get your ISP Public IP from your No-IP.com or DynDns subscription and also the current public IP configured in Windows Azure.

#Get IP based on the Domain Name
[string]$IP = ([System.Net.DNS]::GetHostAddresses($DynDNS)).IPAddressToString

#Get AzureVnetConfiguration
Get-AzureVnetConfig -ExportToFile "$Path\AzurevNetConfigCurrent.xml" | Out-Null

[XML]$xml = Get-Content "$Path\AzurevNetConfigCurrent.xml"
[string]$AzureIP =  $xml.NetworkConfiguration.VirtualNetworkConfiguration.LocalNetworkSites.LocalNetworkSite.VPNGatewayAddress

Now, we simply need to configuration if your current public IP is still the same that the one configure in Windows Azure. If the IP is still the same, no modification needed. If the IP has changed, the script will update in Azure.

#Check if the IPs are still the same
if($IP -ne $AzureIP)
{
  #IP Changed, we need to update
  Write-host "IP Update In Progress..."

  #Update the configuration file
  $xml.NetworkConfiguration.VirtualNetworkConfiguration.LocalNetworkSites.LocalNetworkSite.VPNGatewayAddress =  $IP
  $xml.Save("$Path\AzurevNetConfigNew.xml")

  #Upload the configuration file to Azure
  $Ret = Set-AzureVNetConfig -ConfigurationPath "$Path\AzurevNetConfigNew.xml"
  if($Ret.OperationStatus -eq "Succeeded")
  {
   Write-host "IP Updated Successfully"
  }
  else
  {
   Write-host "IP Update Failed"
  }

  # Dial-in to Azure gateway (optional and only if this script is running on the RRAS server)
  #Connect-VpnS2SInterface -Name xxx.xxx.xxx.xxx

}
else
{
#IP didn't change, nothing to do
Write-host "IP Already Up To Date"
}

Normally, your RRAS server will try to reconnect to Windows Azure every x seconds. As soon as the IP will be updated, the connection will be re-established.
Personally, I’m running this script every 5 minutes, directly on my RRAS server. You could also force your RRAS to initiate the connection via the Connect-VpnS2SInterface -Name xxx.xxx.xxx.xxx command.

Now the complete script :

#Perform Prerequisite Setup Steps First
#Download latest Windows Azure PowerShell Module:
Import-Module "C:\Program Files (x86)\Microsoft SDKs\Windows Azure\PowerShell\Azure\Azure.psd1"

#Execute: Get-AzurePublishSettingsFile; Save .publishsettings file locally
Get-AzurePublishSettingsFile

#Variables
$Path = "C:\Scripts"
$DynDNS = "syno.vnext.be"
$AzureSubscriptionName = "Windows Azure MSDN - Visual Studio Ultimate"
$AzurePublishSettingsFile = "$Path\Windows Azure MSDN - Visual Studio Ultimate-11-19-2013-credentials.publishsettings"

#Execute: Import-AzurePublishSettingsFile; reference local .publishsettings file
Import-AzurePublishSettingsFile -PublishSettingsFile $AzurePublishSettingsFile
Set-AzureSubscription -SubscriptionName $AzureSubscriptionName
Select-AzureSubscription -SubscriptionName $AzureSubscriptionName

#Get IP based on the Domain Name
[string]$IP = ([System.Net.DNS]::GetHostAddresses($DynDNS)).IPAddressToString

#Get AzureVnetConfiguration
Get-AzureVnetConfig -ExportToFile "$Path\AzurevNetConfigCurrent.xml" | Out-Null

[XML]$xml = Get-Content "$Path\AzurevNetConfigCurrent.xml"
[string]$AzureIP =  $xml.NetworkConfiguration.VirtualNetworkConfiguration.LocalNetworkSites.LocalNetworkSite.VPNGatewayAddress

#Check if the IPs are still the same
if($IP -ne $AzureIP)
{
  #IP Changed, we need to update
  Write-host "IP Update In Progress..."

  #Update the configuration file
  $xml.NetworkConfiguration.VirtualNetworkConfiguration.LocalNetworkSites.LocalNetworkSite.VPNGatewayAddress =  $IP
  $xml.Save("$Path\AzurevNetConfigNew.xml")

  #Upload the configuration file to Azure
  $Ret = Set-AzureVNetConfig -ConfigurationPath "$Path\AzurevNetConfigNew.xml"
  if($Ret.OperationStatus -eq "Succeeded")
  {
   Write-host "IP Updated Successfully"
  }
  else
  {
   Write-host "IP Update Failed"
  }

  # Dial-in to Azure gateway (optional and only if this script is running on the RRAS server)
  #Connect-VpnS2SInterface -Name xxx.xxx.xxx.xxx

}
else
{
#IP didn't change, nothing to do
Write-host "IP Already Up To Date"
}

Thanks to this script, I have now a permanent Site to Site VPN connection between Windows Azure and my lab at home, even with an ISP dynamic public IP.
Feel free to comment, update and share!!!

Christopher

SPF Prerequisites via PowerShell

8:35 pm in Uncategorized by Christopher Keyaert

Hi All,

When you have to install SPF (Service Provider Foundation), there is plenty of Windows Features that you need to install on your server:

Below, you have a PowerShell script that will install all the needed Windows Features for you:

Import-Module ServerManager
Add-WindowsFeature FileAndStorage-Services,Storage-Services,Web-Server,Web-WebServer,Web-Common-Http,Web-Default-Doc,Web-Dir-Browsing,Web-Http-Errors,Web-Static-Content,Web-Health,Web-Http-Logging,Web-Request-Monitor,Web-Http-Tracing,Web-Performance,Web-Stat-Compression,Web-Dyn-Compression,Web-Security,Web-Filtering,Web-Basic-Auth,Web-Url-Auth,Web-Windows-Auth,Web-App-Dev,Web-Net-Ext45,Web-Asp-Net45,Web-ISAPI-Ext,Web-ISAPI-Filter,Web-Ftp-Server,Web-Mgmt-Tools,Web-Mgmt-Console,Web-Mgmt-Compat,Web-Scripting-Tools,NET-Framework-Features,NET-Framework-Core,NET-Framework-45-Features,NET-Framework-45-Core,NET-Framework-45-ASPNET,NET-WCF-Services45,NET-WCF-HTTP-Activation45,NET-WCF-TCP-PortSharing45,ManagementOdata,FS-SMB1,User-Interfaces-Infra,Server-Gui-Mgmt-Infra,Server-Gui-Shell,PowerShellRoot,PowerShell,PowerShell-V2,PowerShell-ISE,WAS,WAS-Process-Model,WAS-Config-APIs,WoW64-Support

If some of these features are already installed on your system, don’t worry, windows will just skip it. Now to continue with the SPF installation and configuration, check this link :
http://www.vnext.be/2013/03/21/service-provider-foundation-spf-installation-step-by-step/

Enjoy! J

Christopher

SCOM: Failed to send notification over SIP protocol

11:10 am in Uncategorized by Christopher Keyaert

If you already implemented the IM notification system between SCOM and Lync, you certainly saw the alert below a lot of time. Each time that an alert is raised in SCOM, an IM will be sent to the user via SIP (Lync, ….). Now, if SCOM sends the notification message when the user is offline, the IM will not be delivered and the alert below is raised.

This alert is used for all the notifications problems that could happen (Mail, IM, SMS,…) and cannot be easily fine-tuned by an override. The only way to get rid of this alert about IM notification when an user is offline, it’s to completely disable this “Failed to send through device alerting rule” and recreate a new one with a more advanced filter.

Step 1: Disable the “Failed to send through device alerting rule” rule.
Step 2: Create a new rule with the confirmation below

Rule Type > Alert Generating Rules > Event Based > Nt Event Log (Alert).
Select a management pack and click on Next.


Specify the Rule Name and Description. As Rule Category, select Alert and Alert Notification Subscription Server as Rule Target.

As log name, specify: Operations Manager.

 

Configure the filer parameters as below:

  • Event ID equals 31503
  • Event Source equals Health Service Modules
  • Parameter 1 equals $Target/ManagementGroup/Name$
  • Parameter 5 does not equal sip


Use the following Alert Description:

Notification subsystem failed to send notification using device/server ‘$Data/Params/Param[6]$’ over ‘$Data/Params/Param[5]$’ protocol to ‘$Data/Params/Param[7]$’. $Data/Params/Param[8]$: $Data/Params/Param[9]$. Rule id: $Data/Params/Param[2]$

Click on Alert Suppression button and use the following settings.

 

Regards
Christopher

SCOM: Failed to send notification over SIP protocol

11:07 am in Uncategorized by Christopher Keyaert

If you already implemented the IM notification system between SCOM and Lync, you certainly saw the alert below a lot of time. Each time that an alert is raised in SCOM, an IM will be sent to the user via SIP (Lync, ….). Now, if SCOM sends the notification message when the user is offline, the IM will not be delivered and the alert below is raised.

This alert is used for all the notifications problems that could happen (Mail, IM, SMS,…) and cannot be easily fine-tuned by an override. The only way to get rid of this alert about IM notification when an user is offline, it’s to completely disable this “Failed to send through device alerting rule” and recreate a new one with a more advanced filter.

Step 1: Disable the “Failed to send through device alerting rule” rule.
Step 2: Create a new rule with the confirmation below

Rule Type > Alert Generating Rules > Event Based > Nt Event Log (Alert).
Select a management pack and click on Next.


Specify the Rule Name and Description. As Rule Category, select Alert and Alert Notification Subscription Server as Rule Target.

As log name, specify: Operations Manager.

 

Configure the filer parameters as below:

  • Event ID equals 31503
  • Event Source equals Health Service Modules
  • Parameter 1 equals $Target/ManagementGroup/Name$
  • Parameter 5 does not equal sip


Use the following Alert Description:

Notification subsystem failed to send notification using device/server ‘$Data/Params/Param[6]$’ over ‘$Data/Params/Param[5]$’ protocol to ‘$Data/Params/Param[7]$’. $Data/Params/Param[8]$: $Data/Params/Param[9]$. Rule id: $Data/Params/Param[2]$

Click on Alert Suppression button and use the following settings.

 

Regards
Christopher

System Center Universe 2013: First recording set available

11:52 am in Uncategorized by Christopher Keyaert

The System Center universe team just published the first set recordings available. By chance, the session that I gave with Alexandre is part of this first set J

Another good news, is that you could directly download the recordings on computer (right click – Save As):

Welcome Note and Keynote (EN) – Marcel Zehner, Travis Wright

10 things every IT Pro should know about (EN) – Thomas Maurer, Philipp Witschi

Essential tips on how to win the asset management challenge (EN) – Chris Ross, Andreas Baumgarten

How to bring Windows Azure benefits to your own datacenter (EN) – Christopher Keyaert, Alexandre Verkinderen

Building a dynamic and automated rockstar CMDB with Microsoft System Center Suite (EN) –  Marcel Zehner, Kurt van Hoecke, Stefan Johner

Team up with the enemy: Managing and monitoring VMware using System Center (EN) – Mike Reseller

Unboxing the Windows Azure Pack (DE) – Markus Erlacher

 

Regards
Christopher

System Center Universe 2013 DACH: Slide deck available

9:23 pm in Uncategorized by Christopher Keyaert

Last week, I was present at the System Center Universe 2013 DACH event in Switzerland. I was there for several reasons:

  • SCU is a community event for the community, organise by the community.
  • First big System Center event in Europe.
  • The speakers list was amazing (Microsoft PM, MVPs, SME). Some speakers were directly coming from the US (Cameron Fuller, Pete Zerger, Chris Ross, …)
  • I’ve been invited to present a session with my friend Alexandre Verkinderen (CDM MVP) about Windows Azure Pack.

It was really an excellent and I would like to thank Marcel Zehner for the great job that he did to organize this event!
The really good news is that SCU DACH will come back in 2014, September 8-9 J My advice, don’t miss this unique event in Europe!

Our slide deck is available on slideshare (the recording must follow soon).

Alexandre Verkinderen (on the right) and myself (on the left) during our Windows Azure Pack session at SCU2013:

Some others pictures are available on Marcel’s site:
http://marcelzehner.ch/2013/09/19/scu-2013-dach-review-16-17-september-2013/#more-2708

The official website:
http://www.systemcenteruniverse.ch/

Regards
Christopher

Windows Server 2012 R2: Comeback of the Start button

11:50 am in Uncategorized by Christopher Keyaert

Hi everyone,

In the last few months, we heard a lot of stories about the Start button. Will this button be back? Or not? That was a big question.
The answer is yes, the start button is back, but not the old start menu.

On the left, you could see the new start button

A left click on it, you are redirected you to the Start menu.

A right click on the new start button opens the menu that we had before by doing a right click in the left corner.

 

Now, it’s really easier to get access to that menu.

 

New feature, you could now shutdown/Restart the server directly from this menu.

 

Christopher

All the new Windows Server 2012 R2 features into a single pptx

11:22 am in Uncategorized by Christopher Keyaert

My colleague Mark Wheatley did a great job by regrouping all the new features of Windows Server 2012 R2 into a single PowerPoint presentation.

You could view and download this presentation from SlideShare

 

I hope you enjoy it as much and I. Don’t forget, you could download the R2 preview bits already today from the TechNet Eval Center:
http://technet.microsoft.com/en-US/evalcenter/dn205295.aspx

Regards

Christopher

 

Azure pack for Windows Server available for download

10:23 am in Uncategorized by Christopher Keyaert

To continue with great news, Microsoft also release the preview of Azure pack for Windows Server.

Windows Azure Pack for Windows Server is a collection of Windows Azure technologies, available to Microsoft customers at no additional cost for installation into your data center. It runs on top of Windows Server 2012 R2 and System Center 2012 R2 and, through the use of the Windows Azure technologies, enables you to offer a rich, self-service, multi-tenant cloud, consistent with the public Windows Azure experience.

The bits are available at the following url: http://technet.microsoft.com/en-us/library/dn296435.aspx?CR_CC=200142594

Cheers !

Christopher