Fermilab KMS Experiences with Microsoft’s Key Management Server 1 HEPiX Nov 5, 2007 Fermilab KMS Experiences.

Slides:



Advertisements
Similar presentations
Volume activation.
Advertisements

Cloud computing is used to describe a variety of computing concepts that involve a large number of computers connected through a real-time communication.
A p p l i c a t i o n P a c k a g e NEVO-ASC Company automatic communications systems ®
Microsoft Goals Engineer a product less vulnerable to piracy and counterfeit Provide set of tools to help ensure a more managed installation environment.
BePunctual Employee Time & Attendance (T&A) System User Guide.
Virtual LANs.
PulseHR Time and Attendance software development and coding web development, web hosting IT project management and consulting Str. Ghioceilor.
Operating Systems Concepts 1/e Ruth Watson Chapter 11 Chapter 11 Network Maintenance Ruth Watson.
MCTS Guide to Microsoft Windows Server 2008 Network Infrastructure Configuration Chapter 4 Installing and Configuring the Dynamic Host Configuration Protocol.
Windows Windows Vista And Windows Vista for WIN.MIT.EDU.
Vista Volume Activation Overview VLK 2.0 Anders Björling Senior Consultant Microsoft.
Deploying Servers Installing Windows Server 2008
NICE Watch NICE Watch Synchronization module NICE Watch is a special module enabling synchronization of label production process with.
A CHAT CLIENT-SERVER MODULE IN JAVA BY MAHTAB M HUSSAIN MAYANK MOHAN ISE 582 FALL 2003 PROJECT.
Chapter 2: Automating the Windows Vista Installation.
Kalpesh Patel Ramprabhu Rathnam
Maintaining and Updating Windows Server 2008
Windows Vista Product Activation And The Fashionable LSP
Patch Management Module 13. Module You Are Here VMware vSphere 4.1: Install, Configure, Manage – Revision A Operations vSphere Environment Introduction.
Senior Technical Writer
HalFILE 3.0 Active Directory Integration. halFILE 3.0 AD – What is it? Centralized organization of network objects and security – servers, computers,
Course 6421A Module 7: Installing, Configuring, and Troubleshooting the Network Policy Server Role Service Presentation: 60 minutes Lab: 60 minutes Module.
Week #10 Objectives: Remote Access and Mobile Computing Configure Mobile Computer and Device Settings Configure Remote Desktop and Remote Assistance for.
Managing DHCP. 2 DHCP Overview Is a protocol that allows client computers to automatically receive an IP address and TCP/IP settings from a Server Reduces.
Veni Vidi Vista … I came, I saw … I supported! ResNet Symposium 2007 UC San Diego.
Windows Vista: Volume Activation 2.0
Overview of Active Directory Domain Services Lesson 1.
SYSTEM ADMINISTRATION Chapter 13 Security Protocols.
MCTS Guide to Microsoft Windows Server 2008 Applications Infrastructure Configuration (Exam # ) Chapter Two Deploying Windows Servers.
Damian Leibaschoff Support Escalation Engineer Microsoft Becky Ochs Program Manager Microsoft.
© 2010 VMware Inc. All rights reserved Patch Management Module 13.
Hands-On Microsoft Windows Server 2008
UNIX SVR4 COSC513 Zhaohui Chen Jiefei Huang. UNIX SVR4 UNIX system V release 4 is a major new release of the UNIX operating system, developed by AT&T.
CN2140 Server II Kemtis Kunanuraksapong MSIS with Distinction MCT, MCITP, MCTS, MCDST, MCP, A+
Copyright ®xSpring Pte Ltd, All rights reserved Versions DateVersionDescriptionAuthor May First version. Modified from Enterprise edition.NBL.
Nicholas A. Hay Technology Director Jefferson Schools KEY MANAGEMENT SERVICES.
INSTALLING MICROSOFT EXCHANGE SERVER 2003 CLUSTERS AND FRONT-END AND BACK ‑ END SERVERS Chapter 4.
1 CMPT 471 Networking II DHCP Failover and multiple servers © Janice Regan,
User Manager Pro Suite Taking Control of Your Systems Joe Vachon Sales Engineer November 8, 2007.
70-291: MCSE Guide to Managing a Microsoft Windows Server 2003 Network Chapter 6: Name Resolution.
FNAL System Patching Design Jack Schmidt, Al Lilianstrom, Andy Romero, Troy Dawson, Connie Sieh (Fermi National Accelerator Laboratory) Introduction FNAL.
Installing SIGNZ on a stand- alone machine. These slides will guide you through the installation of the SIGNZ ‘server’ and ‘client’ components on one machine.
Windows Vista Inside Out Chapter 22 - Monitoring System Activities with Event Viewer Last modified am.
KEOPS.Pack&Ship Desktop June, KEOPS KEOPS.Pack&Ship Desktop is a software toolkit you can integrate into your Warehouse Management System to :
Site License Advisory Team September 30, 2015 meeting.
MCTS Guide to Microsoft Windows Server 2008 Network Infrastructure Configuration Chapter 4 Installing and Configuring the Dynamic Host Configuration Protocol.
Fundamentals of Proxying. Proxy Server Fundamentals  Proxy simply means acting on someone other’s behalf  A Proxy acts on behalf of the client or user.
Developing TCP/IP-based Server Applications using Indy Components  Christian Wilkerson.
70-293: MCSE Guide to Planning a Microsoft Windows Server 2003 Network, Enhanced Chapter 12: Planning and Implementing Server Availability and Scalability.
Configuring and Troubleshooting Identity and Access Solutions with Windows Server® 2008 Active Directory®
Microsoft Windows 2008 Features and Functionality Guy Wilkin.
The world leader in serving science Overview of Thermo 21 CFR Part 11 tools Overview of software used by multiple business units within the Spectroscopy.
Vista Licensing Information University of Pennsylvania Office of Software Licensing Mary A. Griffin November 13, 2006.
Chapter 4- Part3. 2 Implementing User Profiles A local user profile is automatically created at the local computer when you log on with an account for.
1 Objectives Discuss the basics of Dynamic Host Configuration Protocol (DHCP) Describe the components and processes of DHCP Install DHCP in a Windows Server.
Myrtle Entertainment System Scanner How to work your way to installing a program via Myrtle Entertainment System Scanner.
ASP.NET WEB Applications. ASP.NET  Web application framework developed by Microsoft  Build dynamic data driven web applications and web services  Subset.
2 Copyright © 2004, Oracle. All rights reserved. Running a Forms Developer Application.
Panasonic UC Pro - Activation Keys installation -
Maintaining and Updating Windows Server 2008 Lesson 8.
COMP1321 Digital Infrastructure Richard Henson March 2016.
IPEmotion License Management PM (V1.2).
Steps to Fix Error 0xc004d307 in Windows: /pages/Reimage-Repair- Tool/ u/6/b/ /alexwaston14/reimage- system-repair/
Networking Week #10 OBJECTIVES Chapter #6 Questions Review Chapter #8.
Running a Forms Developer Application
Network Load Balancing
Working of Script integrated with SiteScope
Full Exam Name: Microsoft Dynamics CRM 2016 Online Deployment
QuickBooks Error Code is displayed when the verification of the database connection fails or QuickBooks tries to access company files. Due to the.
Intuit has launched QuickBooks File Doctor tool (QBFD) in QuickBooks File Doctor is a tool that has been designed to recover the damaged company.
Presentation transcript:

Fermilab KMS Experiences with Microsoft’s Key Management Server 1 HEPiX Nov 5, 2007 Fermilab KMS Experiences

What is KMS? With Vista (and Windows Server 2008) Microsoft introduces new software activation Enterprise customers can now have a central server for activation No need to give out installation codes Reduces threat of stolen keys being used by hackers HEPiX Nov 5, 2007 Fermilab KMS Experiences 2

KMS – Activated Vista system HEPiX Nov 5, 2007 Fermilab KMS Experiences 3

KMS – System not activated HEPiX Nov 5, 2007 Fermilab KMS Experiences 4

KMS and Vista Systems Vista can be installed without activation…but… After 30 days, it is no longer useable Once activated, system good for 180 days Every 7 days, Vista will try to contact KMS server again, and extend activation back to 180 days Once deactivated, you go into ‘degraded’ mode HEPiX Nov 5, 2007 Fermilab KMS Experiences 5

KMS – The Good, the Bad, and the Ugly Easy to install – Originally only ran on Vista or ‘Longhorn’ server – On 03/22/07 the service can now run on Windows 2003 server Must have 25 active activations requests, or the KMS server will not activate anyone Unless you have a MOM server, there are no reports HEPiX Nov 5, 2007 Fermilab KMS Experiences 6

KMS – Build your own report Every time someone tries to ‘activate’, an event record is generated on the KMS server Event record is part of special ‘Key Management Service’ records HEPiX Nov 5, 2007 Fermilab KMS Experiences 7

KMS – The event record Event Type:Information Event Source:KmsRequests Event Category:None Event ID:12290 User:N/A Computer:kms-server Description: An activation request has been processed. Info: 0x0,25,PPD dhcp.fnal.gov,bb99473f-3fb3-4e7c-9e6e- 1b711e5b4ae8,2007/10/31 11:57,0,1,257764,cfd8ff08-c0d7-452b-9f60- ef5c70c32094 HEPiX Nov 5, 2007 Fermilab KMS Experiences 8

KMS Commands HEPiX Nov 5, 2007 Fermilab KMS Experiences 9 On the KMS server issue the following to get count of current number of activated systems: cscript %windir%\system32\slmgr.vbs -dli

KMS Activation count KMS will not activate any system until 25 different systems have requested activation Virtual machines do not count Can not simply re-name a machine to ‘fool’ the count Must maintain 25 active requests. If count falls below 25, then activation stops again HEPiX Nov 5, 2007 Fermilab KMS Experiences 10

KMS – Fun with DNS HEPiX Nov 5, 2007 Fermilab KMS Experiences 11 KMS server dynamically updates DNS with a special service record. This allows Vista systems to automatically find your KMS server. NOTE: port 1688 needs to be open to your systems on-site, but blocked from off-site

KMS – Manual activation If you run into DNS issues, the client can manually issue activation request Command must be run from user ‘administrator’ on client machine First - Tell client name of KMS server: – Cscript slmgr.vbs –skms dns-name-of-kms-server Second - Request activation: – Cscript slmgr.vbs -ato HEPiX Nov 5, 2007 Fermilab KMS Experiences 12

KMS – Degraded mode If client machine fails to get activation, the machine goes to degraded mode Degraded mode basically only allows user to activate Can not fool system by changing system date May not be able to start VPN software when in degraded mode Can extend activation if client can not contact your KMS server – Slmgr -rearm HEPiX Nov 5, 2007 Fermilab KMS Experiences 13

KMS – Additional info You can have multiple KMS servers … but… – Multiple KMS servers do not communicate to each other (each one will need to have 25 active requests) The KMS server does not report any info to Microsoft Microsoft may use KMS for future application software activation HEPiX Nov 5, 2007 Fermilab KMS Experiences 14

Feedback: Privacy Policy Feedback
Do Not Sell My Personal Information
About project: SlidePlayer Terms of Service

© 2024 SlidePlayer.com Inc. All rights reserved.