Recent Updates Page 12

Unknown's avatar Pete 7:10 pm on April 16, 2013
Tags: computer, management protocol, manual startup, powershell, software,   

Setting up remote power shell from different domains

So I have had the pleasure (sarcasm, massive amounts of sarcasm) in dealing with remote power shell in the last couple of days  So I figured I would write a quick guide on how you can connect to another machine, outside of your domain, with remote Power shell.  This is useful if you want to run Exchange cmdlets from your local machine, run tests on your local power shell instance while connecting to a test lab, or countless other ways.  First lets talk about remote power shell, and what it is.

Remote power shell is a tool that allows you to remotely managed services using WS-Management protocol and the Windows Remote Management (WinRM) service.    The WS-Management protocol is a public standard for remotely exchanging management data with any computer device that implements the protocol. The WinRM service processes WSMan requests received over the network. It uses HTTP.sys to listen on the network.

In my test scenario, I am trying to connect to my test lab (testlab.com) with remote powershell, from my work machine (workdomain.com)  The first problem that I am going to come across is that my machines are in different domains, and we are not going to be able to create a trust between them.  I found a great KB that walked me through the actual technical piece.

I have listed those steps here

 

1. Start Windows PowerShell as an administrator by right-clicking the Windows PowerShell shortcut and selecting Run As Administrator.

2. The WinRM service is confi gured for manual startup by default. You must change the startup type to Automatic and start the service on each computer you want to work with. At the PowerShell prompt, you can verify that the WinRM service is running using the following command:
get-service winrm
The value of the Status property in the output should be “Running”.

3. To configure Windows PowerShell for remoting, type the following command:
Enable-PSRemoting –force

In many cases, you will be able to work with remote computers in other domains. However, if the remote computer is not in a trusted domain, the remote computer might not be able to authenticate your credentials. To enable authentication, you need to add the remote computer to the list of trusted hosts for the local computer in WinRM. To do so, type:
winrm s winrm/config/client ‘@{TrustedHosts=”RemoteComputer”}’
Here, RemoteComputer should be the name of the remote computer, such as:
winrm s winrm/config/client ‘@{TrustedHosts=”CorpServer56″}’

 

A few problems that I came across.

  1. Even after adding the machine to the trusted hosts, you still get the same errors inside power shell that says unable to connect.  Make sure you are running power shell as an administrator
  2. Make sure you can ping and telnet the ports you are using
  3. Make sure that if your going over HTTP that the server your connecting to has the turned on, for example,if your going to connect to an Exchange server for remote power shell, make sure that IIS directory allows connections on port 80

 

Unknown's avatar Pete 6:34 pm on April 15, 2013
Tags: , The future   

In 20 or 30 yea…

In 20 or 30 years, you’ll be able to hold in your hand as much computing knowledge as exists now in the whole city, or even the whole world.

It is such a crazy world we live in, today I have been troubleshooting my brother’s 32GB SD card.  Think about that for a second, I am holding a 32 GB SD card, that 20 years ago, wasn’t even possible to create in such small space.  The miracles of technology.

Unknown's avatar Pete 7:22 pm on April 11, 2013
Tags: , Citrix, , , zenprise   

Citrix and Zenprise

I’ve had the pleasure of speaking to the team over at Zenprise a couple of times at BlackBerry world (formerly WES) a few years ago, and I was very impressed with their product. Recently, Citrix bought Zenprise.  The obvious reason that Citrix is doing this is to get into the MDM game, in technology cash is king usually and Citrix just decided it wants to become a player.  I am curious as to why they didn’t buy MobileIron or Airwatch, maybe the asking price was too much.  I’ve always though Zenprise was feature rich, but behind the big two.  We’ll have to wait to see how this plays out.  I think one of the reasons that the MDM market is going to become saturated very quickly, is because it is incredibility painful to move off an MDM solution. Think about it for a moment, let’s say your doing an email migration from Domino to Exchange, you at least have control over the software on the computer’s your moving to. In MDM, you have to remove applications from sometimes several hundred devices, re-enroll Iphones, Androids and reconfigure connections to the BlackBerry servers.  Never mind the hundreds of hours it takes to work with all your users.  The lesson here, Be very sure you choose the correct MDM vendor

Unknown's avatar Pete 3:26 pm on April 10, 2013
Tags: BDS, BES 10, Blackberry Fusion, Blackberry Policy   

BDS 6.2

BlackBerry 10 policy guide.

So I’ve been reviewing the BlackBerry 10 policy guide, and it looks like the current version, 6.2 has added the IT policy rules.

They have also published a datasheet for Android and iOS

iOS and Android Datasheet

Unknown's avatar Pete 4:02 pm on February 6, 2013  

BlackBerry 10 and the failure of RIM

I’ve taken so much time lately playing with BlackBerry 10, Fusion/BES10 and all the other features recently release by RIM/BlackBerry.  I have to admit that it is a bit disheartening, and I will attempt to explain why.  RIM is coming into this market, the MDM space, like it doesn’t exist.  I’ve used fusion for about 5 months now.  Literally, there are no new innovating features in it at all.  They have just hijacked the features from Exchange and put them in pretty much the same format as BAS.
Blackberry 10 handhelds are feature rich, but they are coming off as a gimmick.  For example, they claim to have launched with 70,000 applications, which is a very impressive list.  However, most, if not 90% of the applications that are launched with, are Android applications that are just ported.  They are Android applications

Also, there have been scattered reports this morning ( I will not totally blame BlackBerry for this yet, but if it is true, it is very sad.) that they (BlackBerry CEO) is lying about the devices selling out.  This seems like more of the same lately.

 

BlackBerry 10 launched with two devices, the z10 and the q10.  They q10 is the keyboard qwerty device, the z10 is the touch screen device.  They both looked very impressive, if the device came out two years ago. However, now they look like regular players, with nothing special about them.

Unknown's avatar Pete 7:09 pm on January 2, 2013  

BES 10/Fusion API’s

I really wish RIM would make it so you can tell the difference between doing something with the API’s and the BAS console. Even if it was some log file entry somewhere. It is a pain in the ass looking back trying to figure out which one did something. This feature would be so easy to implement.

Unknown's avatar Pete 4:49 pm on December 28, 2012  

BES 10 hosted/on prem

It looks like RIM is putting more and more information everyday about BlackBerry 10/Playbook 2.1 etc: They even launched a new website BlackBerry 10 It looks like BES 10 is going to be in two forms, one is going to be on premises, the other is going to be in a hosted model, similar to how Microsoft handles Office 365.

I am curious to see how they are going to integrate with Office365. So far it seems that MS has been less then willing to work with MDM players. Here is the policy guide/admin guide from RIM Admin Guide

Unknown's avatar Pete 4:40 pm on December 28, 2012  

APNS

Been working pretty heavily on APNS lately.

 

Learned some pretty interesting things about APNS

The flow of remote-notification data is one-way. The provider composes a notification package that includes the device token for a client application and the payload. The provider sends the notification to APNs which in turn pushes the notification to the device.

When it authenticates itself to APNs, a provider furnishes the service with its topic, which identifies the application for which it’s providing data. The topic is currently the bundle identifier of the target application on an iOS device.

 

Apple Documentation.

 

Really good diagram.

A remote notification from a provider to a client application

 

Unknown's avatar Pete 9:18 pm on December 18, 2012
Tags: Apple Iphone   

SCEP IPhone

Really impressed lately with Apple’s documentation, it use to be really bad… in fact it use to be just wrong, but they have really come a long way in gaining respect from the Enterprise field.

 

http://www.apple.com/iphone/business/it-center/

Unknown's avatar Pete 6:59 pm on December 18, 2012
Tags: ,   

Mobile Iron

It seems to me that everyone is talking about Mobile Iron these days, they seem to be quickly becoming a defacto standard of MDM. I wonder when someone is going to buy them up.  I can’t see someone like Zenprise being bought up, and someone like Mobile Iron being allowed to lead the market from the Back