Category: News
Azure VM Agent Status not ready
I have created a red hat openshift private cluster but the VMS are stuck in the state of “agent status not ready.”
I have followed these troubleshooting steps:
Linux Virtual Machine Agent Status “Not Ready” – Microsoft Community Hub
However, all of them seem to point to trying to check and see what is on the VM itself. I am unable to do this because I can’t SSH into the machine. Has anyone else ran into this issue and been able to resolve it? I am deploying it via CLI as I was not able to do it via GUI for some reason. This is my script:
#az login
az account set –name “accountnamehidden”
#az provider register -n Microsoft.RedHatOpenShift –wait
#az provider register -n Microsoft.Compute –wait
#az provider register -n Microsoft.Storage –wait
#az provider register -n Microsoft.Authorization –wait
$LOCATION= “eastus” # the location of your cluster
$RESOURCEGROUP= “sample-rg” # the name of the resource group where you want to create your cluster
$CLUSTER= “K8sDev1test” # the name of your cluster
$arovnet= “sample-vnet”
$mastersubnet = “k8sDev1-master-ue-snet”
$workersubnet = “k8sDev1-worker-ue-snet”
az aro create –resource-group “samplerg” –vnet-resource-group “sample-vnet-rg” –name $CLUSTER –vnet $arovnet –master-subnet “k8sDev1-master-ue-snet” –worker-subnet “k8sDev1-worker-ue-snet” –apiserver-visibility Private –ingress-visibility Private –fips true –outbound-type UserDefinedRouting –client-id hidden –client-secret hidden
I have created a red hat openshift private cluster but the VMS are stuck in the state of “agent status not ready.” I have followed these troubleshooting steps: Linux Virtual Machine Agent Status “Not Ready” – Microsoft Community Hub However, all of them seem to point to trying to check and see what is on the VM itself. I am unable to do this because I can’t SSH into the machine. Has anyone else ran into this issue and been able to resolve it? I am deploying it via CLI as I was not able to do it via GUI for some reason. This is my script: #az loginaz account set –name “accountnamehidden”#az provider register -n Microsoft.RedHatOpenShift –wait#az provider register -n Microsoft.Compute –wait#az provider register -n Microsoft.Storage –wait#az provider register -n Microsoft.Authorization –wait $LOCATION= “eastus” # the location of your cluster$RESOURCEGROUP= “sample-rg” # the name of the resource group where you want to create your cluster$CLUSTER= “K8sDev1test” # the name of your cluster$arovnet= “sample-vnet”$mastersubnet = “k8sDev1-master-ue-snet”$workersubnet = “k8sDev1-worker-ue-snet”az aro create –resource-group “samplerg” –vnet-resource-group “sample-vnet-rg” –name $CLUSTER –vnet $arovnet –master-subnet “k8sDev1-master-ue-snet” –worker-subnet “k8sDev1-worker-ue-snet” –apiserver-visibility Private –ingress-visibility Private –fips true –outbound-type UserDefinedRouting –client-id hidden –client-secret hidden Read More
Cloud Proxy Connector certificate – not trusted
Hi Guys,
I am struggling with CMG connection point in disconnected state.
In logs I see:
Starting to connect to Proxy server xxxx:10140 with client certificate 7B96C5251E6F6C5C48412E87F07749D7DB201C35 and connection ID d99de605-abbb-47cc-81df-0827ab4cb656…
Starting to connect to Proxy server xxx:443 with client certificate 7B96C5251E6F6C5C48412E87F07749D7DB201C35 and connection ID d5b1432f-2030-49cb-94a6-1bab1c4b8af8…
and then:
ERROR: Failed to build Tcp connection d99de605-abbb-47cc-81df-0827ab4cb656 with server xxx:10140. Exception: System.Net.WebException: TCP CONNECTION: Failed to connect TCP socket with proxy server —> System.Net.Sockets.SocketException: A connection attempt failed because the connected party did not properly respond after a period of time, or established connection failed because connected host has failed to respond xxx:10140~~ at System.Net.Sockets.TcpClient.Connect(String hostname, Int32 port)~~ at Microsoft.ConfigurationManager.CloudConnection.ProxyConnector.TcpConnection.Connect()~~ — End of inner exception stack trace —~~ at Microsoft.ConfigurationManager.CloudConnection.ProxyConnector.TcpConnection.Connect()~~ at Microsoft.ConfigurationManager.CloudConnection.ProxyConnector.ConnectionBase.Online()~~ at Microsoft.ConfigurationManager.CloudConnection.ProxyConnector.ConnectionBase.Start()~~ at Microsoft.ConfigurationManager.CloudConnection.ProxyConnector.ConnectionManager.MaintainConnections()
ERROR: Failed to build Http connection d5b1432f-2030-49cb-94a6-1bab1c4b8af8 with server xxx:443. Exception: System.Net.WebException: HTTP CONNECTION: Failed to send data to proxy server —> System.Net.WebException: Unable to connect to the remote server —> System.Net.Sockets.SocketException: A connection attempt failed because the connected party did not properly respond after a period of time, or established connection failed because connected host has failed to respond xxx:443~~ at System.Net.Sockets.Socket.DoConnect(EndPoint endPointSnapshot, SocketAddress socketAddress)~~ at System.Net.ServicePoint.ConnectSocketInternal(Boolean connectFailure, Socket s4, Socket s6, Socket& socket, IPAddress& address, ConnectSocketState state, IAsyncResult asyncResult, Exception& exception)~~ — End of inner exception stack trace —~~ at System.Net.HttpWebRequest.GetRequestStream(TransportContext& context)~~ at System.Net.HttpWebRequest.GetRequestStream()~~ at Microsoft.ConfigurationManager.CloudConnection.ProxyConnector.HttpConnection.PopulateStream(HttpWebRequest request, IAsyncResult asynchronousResult, String requestString, Byte[] data)~~ — End of inner exception stack trace —~~ at Microsoft.ConfigurationManager.CloudConnection.ProxyConnector.HttpConnection.PopulateStream(HttpWebRequest request, IAsyncResult asynchronousResult, String requestString, Byte[] data)~~ at Microsoft.ConfigurationManager.CloudConnection.ProxyConnector.HttpConnection.Connect()~~ at Microsoft.ConfigurationManager.CloudConnection.ProxyConnector.ConnectionBase.Online()~~ at Microsoft.ConfigurationManager.CloudConnection.ProxyConnector.ConnectionBase.Start()~~ at Microsoft.ConfigurationManager.CloudConnection.ProxyConnector.ConnectionManager.MaintainConnections()
When I checked Cloud Proxy Connector cert with thumbprint: 7B96C5251E6F6C5C48412E87F07749D7DB201C35 I see information:
This CA Root certificate is not trusted. To enable trust, install this certificate in the Trusted Root Certification Authorities store
I assume it is not normal situation for this cert? Also from what I read this cert should be only under SMS cert store? Is that correct? Could you please advise what is the best way to fix that?
Thank you and best regards,
Damian
Hi Guys, I am struggling with CMG connection point in disconnected state. In logs I see: Starting to connect to Proxy server xxxx:10140 with client certificate 7B96C5251E6F6C5C48412E87F07749D7DB201C35 and connection ID d99de605-abbb-47cc-81df-0827ab4cb656… Starting to connect to Proxy server xxx:443 with client certificate 7B96C5251E6F6C5C48412E87F07749D7DB201C35 and connection ID d5b1432f-2030-49cb-94a6-1bab1c4b8af8… and then: ERROR: Failed to build Tcp connection d99de605-abbb-47cc-81df-0827ab4cb656 with server xxx:10140. Exception: System.Net.WebException: TCP CONNECTION: Failed to connect TCP socket with proxy server —> System.Net.Sockets.SocketException: A connection attempt failed because the connected party did not properly respond after a period of time, or established connection failed because connected host has failed to respond xxx:10140~~ at System.Net.Sockets.TcpClient.Connect(String hostname, Int32 port)~~ at Microsoft.ConfigurationManager.CloudConnection.ProxyConnector.TcpConnection.Connect()~~ — End of inner exception stack trace —~~ at Microsoft.ConfigurationManager.CloudConnection.ProxyConnector.TcpConnection.Connect()~~ at Microsoft.ConfigurationManager.CloudConnection.ProxyConnector.ConnectionBase.Online()~~ at Microsoft.ConfigurationManager.CloudConnection.ProxyConnector.ConnectionBase.Start()~~ at Microsoft.ConfigurationManager.CloudConnection.ProxyConnector.ConnectionManager.MaintainConnections() ERROR: Failed to build Http connection d5b1432f-2030-49cb-94a6-1bab1c4b8af8 with server xxx:443. Exception: System.Net.WebException: HTTP CONNECTION: Failed to send data to proxy server —> System.Net.WebException: Unable to connect to the remote server —> System.Net.Sockets.SocketException: A connection attempt failed because the connected party did not properly respond after a period of time, or established connection failed because connected host has failed to respond xxx:443~~ at System.Net.Sockets.Socket.DoConnect(EndPoint endPointSnapshot, SocketAddress socketAddress)~~ at System.Net.ServicePoint.ConnectSocketInternal(Boolean connectFailure, Socket s4, Socket s6, Socket& socket, IPAddress& address, ConnectSocketState state, IAsyncResult asyncResult, Exception& exception)~~ — End of inner exception stack trace —~~ at System.Net.HttpWebRequest.GetRequestStream(TransportContext& context)~~ at System.Net.HttpWebRequest.GetRequestStream()~~ at Microsoft.ConfigurationManager.CloudConnection.ProxyConnector.HttpConnection.PopulateStream(HttpWebRequest request, IAsyncResult asynchronousResult, String requestString, Byte[] data)~~ — End of inner exception stack trace —~~ at Microsoft.ConfigurationManager.CloudConnection.ProxyConnector.HttpConnection.PopulateStream(HttpWebRequest request, IAsyncResult asynchronousResult, String requestString, Byte[] data)~~ at Microsoft.ConfigurationManager.CloudConnection.ProxyConnector.HttpConnection.Connect()~~ at Microsoft.ConfigurationManager.CloudConnection.ProxyConnector.ConnectionBase.Online()~~ at Microsoft.ConfigurationManager.CloudConnection.ProxyConnector.ConnectionBase.Start()~~ at Microsoft.ConfigurationManager.CloudConnection.ProxyConnector.ConnectionManager.MaintainConnections() When I checked Cloud Proxy Connector cert with thumbprint: 7B96C5251E6F6C5C48412E87F07749D7DB201C35 I see information: This CA Root certificate is not trusted. To enable trust, install this certificate in the Trusted Root Certification Authorities store I assume it is not normal situation for this cert? Also from what I read this cert should be only under SMS cert store? Is that correct? Could you please advise what is the best way to fix that? Thank you and best regards,Damian Read More
Get access token of a user to use it to get informations
Hello guys, i want to get an access token that i can use it as a specific user to get information from microsoft intune.
for example :
I want to auth then input email and password.
Then get access token of this user.
Use access token to get application that this user see on his company portal
i already use an access token but of application to get all mobileApps but now i want access token of a user. could you please share with me steps to do that and what i need to add on my app registration.
btw i use postman for test my APIs
Hello guys, i want to get an access token that i can use it as a specific user to get information from microsoft intune.for example :I want to auth then input email and password.Then get access token of this user.Use access token to get application that this user see on his company portal i already use an access token but of application to get all mobileApps but now i want access token of a user. could you please share with me steps to do that and what i need to add on my app registration. btw i use postman for test my APIs Read More
DLL peoblem
There is pcshll.dll in hllapi in .net. This DLL file is present in the code but still system throws exception “System.DllNotFoundException: ‘Unable to load DLL ‘C:WindowsSysWOW64pcshll32.dll’: The specified module could not be found. (Exception from HRESULT: 0x8007007E
There is pcshll.dll in hllapi in .net. This DLL file is present in the code but still system throws exception “System.DllNotFoundException: ‘Unable to load DLL ‘C:WindowsSysWOW64pcshll32.dll’: The specified module could not be found. (Exception from HRESULT: 0x8007007E Read More
Bookings typo in french version
Hi,
I would like to bring to your attention a minor typo in the French version of “bookings.” When selecting an employee name, the phrase “N’importe quel employé” contains an unnecessary backslash () character. The correct phrase should be “N’importe quel employé” without the backslash.
Could you please address this issue and update the text accordingly? It would greatly improve the user experience for French-speaking users.
Thank you for your prompt attention to this matter.
Regards,
Olivier
Hi,I would like to bring to your attention a minor typo in the French version of “bookings.” When selecting an employee name, the phrase “N’importe quel employé” contains an unnecessary backslash () character. The correct phrase should be “N’importe quel employé” without the backslash.Could you please address this issue and update the text accordingly? It would greatly improve the user experience for French-speaking users.Thank you for your prompt attention to this matter. Regards, Olivier Read More
Disaster Recovery for SAP NetWeaver HA deployment with Azure Shared Disk on Windows using ASR
Overview
You have set up the SAP system on Windows to be highly available with Azure shared disk, following the steps in Cluster SAP ASCS/SCS instance on Windows Server Failover Cluster (WSFC) using shared disk in Azure. This makes the SAP system resilient to platform maintenance or hardware failure within an Azure region. But it doesn’t safeguard applications from large-scale regional disaster. The good news is that with the public preview of ASR for Azure shared disk, you can now easily configure DR for your high available SAP ASCS/SCS running on WSFC with Azure shared disk.
NOTE: For DR of your Windows SAP system with File share, see Disaster Recovery for SAP NetWeaver high availability deployment with File Share on Windows using ASR for details.
IMPORTANT NOTES:
The example shown in this article is tested with the following version, cluster share and quorum options –
SAP ASCS/ERS OS version: Windows Server 2019 Datacenter.
Enqueue Server version: ENSA1.
Quorum: Cloud witness.
Cluster share: Azure shared disks.
Shared disk type: ZRS.
As ASR for Azure shared disk is still in public preview, we don’t advise implementing the scenario for critical production workloads. Carefully review the Support matrix for shared disks in Azure VM disaster recovery (preview) – Azure Site Recovery.
This article focuses on the central services and application server’s component of SAP system. For database DR approach, see Disaster Recovery recommendation for SAP workload.
Failover of other dependent services like Domain Name System (DNS) or Active Directory (AD) is not covered in this article.
To replicate VMs using ASR for DR, review supported regions.
ASR doesn’t replicate Azure load balancer that is used as virtual IP for the SAP ASCS/ERS cluster configuration in the source site. You need to manually create one in the DR site before or during the failover event.
The cloud witness uses Azure blob storage, so you need a separate storage account in the DR region before or during the failover event.
The procedure described here has not been tested with different OS releases. So, make sure you test and document the entire procedure thoroughly in your environment.
Read Disaster Recovery overview and infrastructure guidelines for SAP workload and Disaster Recovery recommendation for SAP workload for general guidance, strategies, and factors to consider when designing DR for SAP workload. Disaster recovery architecture of SAP ASCS/ERS with Azure shared disk.
DR architecture for SAP workload on Windows with Azure shared disks
The following figure shows how the ENSA1 high availability of SAP ASCS (sapnw6cl1), and SAP ERS (sapnw6cl2) instance is set up using WSFC, with Azure shared disk attached to both the VMs. The cluster uses a cloud witness as a quorum option. To achieve DR for the setup, ASR is used to replicate the SAP ASCS/ERS VMs across the sites, which would replicate OS disk and Azure share disk. In the same way, for application servers (sapnw6a01 and sapnw6a02) that have OS and data disk (premium managed disk), set up ASR to replicate VMs to DR site.
NOTE:
This article describes steps related to the ENSA1 architecture. The same DR process can also be applied to the ENSA2 architecture as well.
This article does not include the scope of using SMB volumes on Azure Files or Azure NetApp Files in your SAP system for interface or anything else. If you use them, ensure that they get replicated into DR region as well.
To have similar high availability SAP system setup in the DR site, you need to make sure that all the components that are part of the SAP system are replicated.
Components
DR setup
SAP ASCS/ERS VMs (includes OS disk and Azure shared disk).
Replicate VMs using Azure Site Recovery.
Storage used for cloud witness.
Create separate storage in the DR region.
Load balancer used for cluster virtual IP.
Create a separate load balancer in the DR region.
SAP Application Servers VMs (include OS and data disk that uses premium managed disks)
Replicate VMs using Azure Site Recovery
IMPORTANT: Use of Azure Site Recovery for SAP databases isn’t recommended. For more details on the DR recommendation for databases, refer to SAP database servers DR guidelines.
Disaster Recovery (DR) site preparation
To achieve a similar SAP system setup on DR site including high availability setup of SAP ASCS/ERS, you need to make sure that all the components are replicated and available in the event of a failover.
Configure ASR for SAP ASCS/ERS and application server VMs
Set up Resource Group, Virtual Network, Subnet and Recovery Service Vault in the secondary site that you would use in setting up your DR. To learn more about networking, see prepare networking for Azure VM disaster recovery.
Before enabling ASR on SAP ASCS and SAP ERS VMs, it is essential that WSFC is configured, and Azure shared disk is managed by cluster.
Configure ASR for SAP ASCS and ERS VMs with Azure shared disk by following the steps in the Shared disks in Azure Site Recovery document. Follow Configure replication for Azure VMs in Azure Site Recovery to configure ASR for SAP application servers.
When you use ASR to set up DR for VMs, the VM’s OS, data disks, and Azure shared disk (for ASCS/ERS VMs) are copied to the DR site.
NOTE: With Azure shared disk, SAP ASCS and ERS VMs will be grouped together in ASR. This way, the VMs in the group will replicate together to have app-consistent recovery snapshot. In the event of a failover, the VMs will fail over as a group.
After the VMs are replicated, the status of protected cluster (sapnw6) and individual VMs (sapnw6cl1 and sapnw6cl2) would turn into “Protected” and the replication health would be “Healthy”.
Configure the cloud witness for SAP ASCS/ERS in the DR site
Tip: Based on your DR strategy, you can either execute this step when you are preparing your DR site like setting up ASR or you can execute at the time of the DR failover process.
Create an Azure storage account on the DR site for the usage as a cloud witness.
Site
Storage cloud witness
Primary
nw6cloudwitness
DR
nw6cloudwintess-dr
Configure standard load balancer for SAP ASCS/ERS in the DR site
Tip: Based on your DR strategy, you can either execute this step when you are preparing your DR site like setting up ASR or you can execute at the time of the DR failover process.
Create an Azure standard load balancer on the DR site, similar to the one you have created in your primary site. If you are creating the load balancer in advance on the DR site, you won’t be able to add VMs to the backend pool because the VMs don’t exist yet in the DR site. You would need to create the backend pool as an empty pool. This allows you to define the load balancing rules. But you would need to add the VMs in the backend pool, when the DR failover of the VMs through ASR has been done.
Keep the probe port of the DR site load balancer the same as in the primary site.
When VMs without public IP addresses are placed in the backend pool of the internal standard load balancer, there would not be any outbound connectivity from these VMs, unless additional configuration is performed to allow routing to public end point. For details on how to achieve outbound connectivity see public endpoint connectivity for Azure VMs & Standard ILB in SAP HA scenarios.
Site
Frontend IP
Primary – ASCS
10.52.0.16
DR – ASCS
10.150.0.9
NOTE: This example uses the ENSA1 setup. For ASR configuration on ENSA2 architecture, you need to configure additional frontend IP and load balancing rules as described in prepare Azure infrastructure for SAP HA with WSFC.
Disaster Recovery (DR) failover event
[A] – Applicable to SAP ASCS Node, [B] – Applicable to SAP ERS Node, [C] – Applicable to SAP Dialog Nodes.
The following procedure should be used for the SAP ASCS/ERS with Azure shared disk and the SAP application servers in the event of a DR failover. The failover procedure here assumes that the system in the primary site is unreachable or unavailable for some reasons. Hence, the DR failover process is started. The VMs in the primary site would stay down after the failover to the DR region is triggered.
NOTE: The exact steps and the order of recovery of your SAP system must be tested, documented and fine-tuned regularly.
Perform the failover of SAP ASCS/ERS and all application server VMs that are configured in ASR to the DR region.
Central Services: If both SAP ASCS/ERS VMs (sapnw6cl1 and sapnw6cl2) that have Azure shared disk(s) in the protected cluster are up and running in primary site, and recovery points are consistent across both the VMs. Follow run a failover – recovery point is consistent across all the VMs to perform failover.
Central Services: If one of the VM (sapnw6cl1 or sapnw6cl2) is down on primary site, and you need to start a failover to the DR site, then follow run a failover – recovery point is consistent only for a few VMs document. In this case, the VM that is down won’t be a part of cluster recovery point, instead you would need to select individual recovery point of that VM to initiate failover.
Application Servers: To perform the failover of application server VMs, see Tutorial to fail over Azure VMs to a secondary region for disaster recovery with Azure Site Recovery.
After the failover is completed, the status of replicated items in the recovery service vault would be like below –
Change the IP address of VMs in DNS or in host files (if used). In this example, change the IP address for SAP ASCS/ERS, and all application servers. The Windows cluster also registers the ASCS/ERS server name in DNS. So, you need to change the IP address of ASCS/ERS server name in DNS or in host files too.
Entries in DNS
Primary Site
DR site
nw6clust.internal.contoso.net
10.52.0.10
10.52.0.11
10.150.0.5
10.150.0.4
nw6ascscl
10.52.0.16 (LB frontend IP)
10.150.0.9 (LB Frontend IP)
sapnw6cl1
10.52.0.10
10.150.0.5
sapnw6cl2
10.52.0.11
10.150.0.4
sapnw6a01
10.52.0.12
10.150.0.6
sapnw6a02
10.52.0.13
10.150.0.7
If you have created an Azure standard load balancer in the DR site beforehand with an empty backend pool. Add ASCS/ERS VMs into the backend pool.
[A] Update the IP address of ASCS server name resource configured in the cluster to the frontend IP of load balancer (the one provisioned in DR site).
IMPORTANT: For ENSA2, you would need to change two IP addresses (one for ASCS, and one for ERS) to the respective frontend IP that you set up in Azure load balancer.
[A] Change the quorum to the cloud witness storage account created on the DR site.
[A] Start cluster role.
[C] Update the user store in all application server instances with the correct database hostname that is running in DR region. Check SAP Note 1852017 to get more insights on how to update the ‘hdbuserstore’ on Windows.
[C] Start all dialog instances.
Failback to the former primary site
Before you begin to failback VMs to the former primary site, ensure that you have committed the failover and status of your virtual machine is “failover committed”.
Re-protect failed over protected cluster (sapnw6) and application server VMs. For more detail, see re-protect VMs with Azure shared disk to the primary site with ASR, and re-protect VMs to the primary site with ASR.
On the event of a failure, follow the same post steps described above.
Microsoft Tech Community – Latest Blogs –Read More
permission error opening excel file
when i open an excel file that i created i get below error even though i set myself the permission
”you are not signed in office with an account that has permission to open this workbook. you may sign in a new account info OFFICE that has permission or request permission the content owner”
I am signed in with correct account with a license.
No issues accessing other files, only one file with issue.
Made no changes so confused why its an issue. One night working fine, next morning i have this issue.
File looks to be corrupted after speaking to chat support so how do i fix this?
when i open an excel file that i created i get below error even though i set myself the permission ”you are not signed in office with an account that has permission to open this workbook. you may sign in a new account info OFFICE that has permission or request permission the content owner” I am signed in with correct account with a license. No issues accessing other files, only one file with issue.Made no changes so confused why its an issue. One night working fine, next morning i have this issue. File looks to be corrupted after speaking to chat support so how do i fix this? Read More
Licenses required to retain access to historic data
Hi Team,
Please validate if below statement is true.
We need to know the minimum number of FO licenses required to retain access to historic data on F&O as the client is migrating from on-prem FO to the Business Central cloud. We believe it should be 1 according to resources available to us, but we have been told we may require all 20 FO Licenses to retain access. Please confirm which it is.
Regards,
Kumar
Hi Team, Please validate if below statement is true. We need to know the minimum number of FO licenses required to retain access to historic data on F&O as the client is migrating from on-prem FO to the Business Central cloud. We believe it should be 1 according to resources available to us, but we have been told we may require all 20 FO Licenses to retain access. Please confirm which it is. Regards,Kumar Read More
Enabling Defender for Cloud for Azure Subscriptions
I’m unclear about how the enablement works if there hasn’t been any subscription in the tenant that has previously used Microsoft Defender for Cloud (MDC) despite having read through Connect Azure subscription and Enabling Microsoft Defender for Cloud.
The documentation specifies: First sign in to the portal and then open Defender for Cloud. Defender for Cloud is now enabled on your subscription and you have access to the basic features (= Foundational CSPM).
The subscription filter of the Azure portal defaults to all subscriptions of the current Entra ID directory. So when accessing MDC, there is no such thing as “your subscription”.
Imagine a new and pristine directory with a pristine subscription. Is MDC already enabled after creating the directory and the subscription?
If yes, then the documentation should state that Foundational CSPM is enabled per default and no enablement is needed.
If not, what happens when I navigate to MDC on the Azure portal (https://portal.azure.com/#view/Microsoft_Azure_Security/SecurityMenuBlade/)? Does it enable MDC for all current and future subscriptions (since there is no particular subscription “selected” when doing this)? What Azure/directory roles are required to do this? Can I trigger this action via API? How can I find out if someone already initiated this activation?
Based on my tests in my own environment, it appears that Foundational CSPM is automatically activated on new subscriptions without ever navigating to MDC. The basic CSPM features are enabled shortly after creating a new subscription, the ASC default Azure Policy initiative is automatically assigned and MDC assesses the subscription.
I’m unclear about how the enablement works if there hasn’t been any subscription in the tenant that has previously used Microsoft Defender for Cloud (MDC) despite having read through Connect Azure subscription and Enabling Microsoft Defender for Cloud. The documentation specifies: First sign in to the portal and then open Defender for Cloud. Defender for Cloud is now enabled on your subscription and you have access to the basic features (= Foundational CSPM). The subscription filter of the Azure portal defaults to all subscriptions of the current Entra ID directory. So when accessing MDC, there is no such thing as “your subscription”. Imagine a new and pristine directory with a pristine subscription. Is MDC already enabled after creating the directory and the subscription?If yes, then the documentation should state that Foundational CSPM is enabled per default and no enablement is needed.If not, what happens when I navigate to MDC on the Azure portal (https://portal.azure.com/#view/Microsoft_Azure_Security/SecurityMenuBlade/)? Does it enable MDC for all current and future subscriptions (since there is no particular subscription “selected” when doing this)? What Azure/directory roles are required to do this? Can I trigger this action via API? How can I find out if someone already initiated this activation? Based on my tests in my own environment, it appears that Foundational CSPM is automatically activated on new subscriptions without ever navigating to MDC. The basic CSPM features are enabled shortly after creating a new subscription, the ASC default Azure Policy initiative is automatically assigned and MDC assesses the subscription. Read More
How to fetch??
How to fetch the customers names, who’s having first letter CAPITAL ??
How to fetch the customers names, who’s having first letter CAPITAL ?? Read More
Copilot for M365 Demo Tenant
During the TSP Mars comminity call an upcoming Demo tenant was mentioned as an upcoming solution for Copilot for M365 labs. This was not in the slide deck, but it was said that it would be available during april.
How is this going? Is there any update on the release date, and are there any details to be shared about this demo tenant?
An update would be greatly appreciated, as it impacts our own investments in a similar solution.
Thanks!
During the TSP Mars comminity call an upcoming Demo tenant was mentioned as an upcoming solution for Copilot for M365 labs. This was not in the slide deck, but it was said that it would be available during april.How is this going? Is there any update on the release date, and are there any details to be shared about this demo tenant? An update would be greatly appreciated, as it impacts our own investments in a similar solution.Thanks! Read More
SharePoint Online Mapped Drive Access Denied Error
Good day All
My client’s setup:
Got a Windows 11 PC (aka file server) setup with OneDrive Client to sync files to PC’s local hard drive.
Those folders are then shared with local file share/drive mapping with everyone in the office having full access. The reason for this is, the client works with big drawings, and it is faster to save the files locally than to wait for OneDrive Client to sync files between team members.
My issue:
When I save a file via the mapped network drive everything works fine as follows:
Save file via Mapped Drive -> All local users can access the file -> OneDrive Client sync file to SharePoint Online -> All users working from home can access file via SharePoint Online.
But when a home user saves a file via SharePoint the following happens:
User working from home save file in SharePoint -> OneDrive Client sync file to local hard drive -> File is accessible on the PC (aka file server) -> Access Denied error when opening the file via Mapped Drive.
To me it looks like the new file saved via SharePoint Online does not inherit the parent file permissions from the file share.
“Everyone” has full rights on the file share.
When I go on the PC (aka file Server) to the file share security and select “Replace all child object permissions entries with inheritable permission entries from this object” and apply, I can then open the file via the Mapped Drive, but any files after that added by a home user via SharePoint Online, we get Access Denied again for that new file.
Anyone tried a setup like this or experience an issue like this?
Good day All My client’s setup: Got a Windows 11 PC (aka file server) setup with OneDrive Client to sync files to PC’s local hard drive.Those folders are then shared with local file share/drive mapping with everyone in the office having full access. The reason for this is, the client works with big drawings, and it is faster to save the files locally than to wait for OneDrive Client to sync files between team members. My issue: When I save a file via the mapped network drive everything works fine as follows:Save file via Mapped Drive -> All local users can access the file -> OneDrive Client sync file to SharePoint Online -> All users working from home can access file via SharePoint Online. But when a home user saves a file via SharePoint the following happens:User working from home save file in SharePoint -> OneDrive Client sync file to local hard drive -> File is accessible on the PC (aka file server) -> Access Denied error when opening the file via Mapped Drive. To me it looks like the new file saved via SharePoint Online does not inherit the parent file permissions from the file share.”Everyone” has full rights on the file share. When I go on the PC (aka file Server) to the file share security and select “Replace all child object permissions entries with inheritable permission entries from this object” and apply, I can then open the file via the Mapped Drive, but any files after that added by a home user via SharePoint Online, we get Access Denied again for that new file. Anyone tried a setup like this or experience an issue like this? Read More
Customer review: Dooap AP automation for Dynamics 365 makes high-volume invoicing quick and painless
Dooap accounts payable (AP) automation, available through Microsoft AppSource, integrates seamlessly with Microsoft Dynamics 365 Finance, reducing processing costs and errors. This mobile-first solution built on Microsoft Azure saves you time and money through automated invoice scanning, capture, and validation. Dooap simplifies your AP processes.
Microsoft AppSource interviewed Michelle Wagner, AP Director, SA Recycling, to learn what she had to say about the product.
What do you like best about Dooap?
I love the Power BI analytics that Dooap offers. Many off-the-shelf reports offer exactly what someone directing the AP team would need. Another great benefit is the way we can use the analytics for our internal training as a basis for continuous improvement. As an example, we can pull the data of invoices returned to AP, sort them by reason, dig into their root causes, and then make necessary changes.
How has the product helped your organization?
We have over 200 approvers in more than 100 locations using the Dooap mobile app, and they love the ability to review and approve, zoom into the details of the invoices, see prior history, coding, and comments, all from the mobile app. Users of the desktop application are the AP team, also approvers, and our buyers (who create the purchase orders in Dynamics 365). We all found benefits in the full audit trail and the ability to send invoices to one another through a buyer review workflow.
How is customer service and support for Dooap?
The support team at Dooap is fantastic. If we have a request or a problem, we submit a support ticket, but we also have a bi-weekly meeting with the team to talk through the support requests. They are quick to address tickets. Many of our wish-list items have been included in future releases of Dooap.
Any recommendations or insights to other users considering this product?
I would tell anyone thinking of doing AP automation with Dooap – do it! Jump onboard – it’s quick, easy, and painless and they’re with you every step of the way. There’s nothing that you cannot solve together with them. With our volume of invoices, I really cannot fathom life without Dooap AP automation. It would be chaos and a nightmare! It would mean a lot of non-value-adding activities, poor credit performance, and poor vendor relations.
What is your overall rating for this product?
5 out of 5 stars.
Cloud marketplaces are transforming the way businesses find, try, and deploy applications to help their digital transformation. Learn more about Microsoft AppSource and find ways to discover the right application for your business needs.
Microsoft Tech Community – Latest Blogs –Read More
Send data to Microsoft Sentinel using Cribl Stream
Microsoft Sentinel is a modern cloud-native SIEM, enriched by AI and threat intelligence empowering security teams with an easy and powerful security operations solution. Microsoft Sentinel offers a comprehensive toolset to collect, correlate, and analyze large volumes of security data across multicloud, multiplatform environments to detect and mitigate cyberthreats at scale.
Microsoft Sentinel has over 350 partner integrations and we are excited to highlight a recent integration with Cribl Stream. Together, Microsoft and Cribl are working to drive accelerated SIEM migrations for customers looking to modernize their security operations (SecOps) with Microsoft Sentinel.
“By combining Cribl’s leading data observability pipeline technology with Microsoft Sentinel’s next generation SecOps SIEM solution, we are collectively helping customers transform and secure their businesses” says Clint Sharp, CEO, “We are excited to deepen our collaboration with Microsoft and unlock value for our joint customers.”
Cribl Stream
Cribl Stream is a robust, vendor-agnostic streams processing engine focused on centralized
parsing and processing of data (e.g. security, IT, observability, and telemetry data). Customers can take any source and use Cribl Stream to route, reduce, reformat, enrich, or otherwise structure data in flight then send it to any destination – including Microsoft Sentinel.
Cribl Stream Integration with Microsoft Sentinel
The Cribl Stream integration with Microsoft Sentinel helps customers accelerate SIEM migrations their Cribl’s ability to easily route data to various Microsoft Sentinel log tiers. In addition to benefitting customers that are migrating to Sentinel, Cribl offers customers additional capabilities including simple deployment, data optimization, and normalization.
Microsoft Sentinel supports both custom data and a variety of standardized formats, all of which Cribl Stream can directly target. Cribl has created several “Cribl Packs” for Microsoft Sentinel. which are self-contained bundles of configurations that enable joint customers to solve full use cases with minimal setup/configuration. Additionally, customers can edit these configurations or build their own custom transformations.
Accelerating SIEM Migrations to Microsoft Sentinel using Cribl Stream
Migrating or standing up a SIEM solution can be a complex, time-consuming, and resource-intensive process. In addition, the recently announced SIEM Migration experience in Microsoft Sentinel for bringing Splunk detections to Microsoft Sentinel analytics rules, customers can utilize the Cribl Stream integration to easily and quick bring data in the appropriate schema into Sentinel for security analysis.
Learn More
To learn more about this integration, please see Cribl’s recent blog post and technical documentation here. For the latest information on Microsoft Sentinel see:
Start Microsoft Sentinel free trial today.
Learn how Microsoft Sentinel delivered 234% ROI according to Forrester study.
Read Microsoft Sentinel customer testimonials
Engage with the Microsoft Sentinel tech community
Microsoft Tech Community – Latest Blogs –Read More
Tuned PID motor controller leads to a slow response
I am modelling an Electronic Throttle with the aim of choosing the right sized motor. I have tried to implement a PID control to my motor controller but it is leading to a slower response than expected. When I remove the PID controller and run the motor simply the response it much faster. I have used the tune function on matlab but it is still not as fast as it should be. I have attached the simulink model and some images describing my issue.
My model including the PID control, leads to the follwing response.
Ideally the settling time should be <0.25s for this kind of input
Now the same mechanical model with a simple step input is much much faster in responding
Its response
Zoomed in
You can see the response to 50deg in this case is ~0.1s.
Is there anything I can do? on the PID tuner workspace I get the settling time should be 0.011s. Maybe I should control the brake port on the H bridge controller with a second derative?
Thanks for your helpI am modelling an Electronic Throttle with the aim of choosing the right sized motor. I have tried to implement a PID control to my motor controller but it is leading to a slower response than expected. When I remove the PID controller and run the motor simply the response it much faster. I have used the tune function on matlab but it is still not as fast as it should be. I have attached the simulink model and some images describing my issue.
My model including the PID control, leads to the follwing response.
Ideally the settling time should be <0.25s for this kind of input
Now the same mechanical model with a simple step input is much much faster in responding
Its response
Zoomed in
You can see the response to 50deg in this case is ~0.1s.
Is there anything I can do? on the PID tuner workspace I get the settling time should be 0.011s. Maybe I should control the brake port on the H bridge controller with a second derative?
Thanks for your help I am modelling an Electronic Throttle with the aim of choosing the right sized motor. I have tried to implement a PID control to my motor controller but it is leading to a slower response than expected. When I remove the PID controller and run the motor simply the response it much faster. I have used the tune function on matlab but it is still not as fast as it should be. I have attached the simulink model and some images describing my issue.
My model including the PID control, leads to the follwing response.
Ideally the settling time should be <0.25s for this kind of input
Now the same mechanical model with a simple step input is much much faster in responding
Its response
Zoomed in
You can see the response to 50deg in this case is ~0.1s.
Is there anything I can do? on the PID tuner workspace I get the settling time should be 0.011s. Maybe I should control the brake port on the H bridge controller with a second derative?
Thanks for your help simulink, electric_motor_control, simscape, control MATLAB Answers — New Questions
Simulink course not properly
Hi, I am trying to complete the Simulink Onramp course on my MacBook Pro. I am using the latest version of MATLAB R2022a.
However, the Simulink environment is extremely slow and buggy (although MATLAB works absolutely fine). I identified 3 problems:
When I load the Simulink environment, only parts of it load. Sometimes the "Training-Tasks" bit on the left won’t show up, sometimes the top part with the "simulation", "debug", etc. buttons won’t even show up.
Another problem I am facing is that some buttons don’t work most of the times. I try clicking the submit button, but all it does it turn white. The "Training-Assessment" bit on the right shows that the signal was correct, but I can’t move to the next assignment as if Simulink just crashed. I have attached a picture that shows this situation. In addition, sometimes clicking on the "debug", "modeling", etc. buttons on the top won’t do anything.
Another problem I am facing is that it takes Simulink about 5 seconds every time to load search results from the quick insert. Why does the quick insert take so much time to load?
I would like some advice on how to fix this issue. The problems 1-3 happen on the Onramp course, and problem 3 happens even in regular Simulink.
Thank you in advance.Hi, I am trying to complete the Simulink Onramp course on my MacBook Pro. I am using the latest version of MATLAB R2022a.
However, the Simulink environment is extremely slow and buggy (although MATLAB works absolutely fine). I identified 3 problems:
When I load the Simulink environment, only parts of it load. Sometimes the "Training-Tasks" bit on the left won’t show up, sometimes the top part with the "simulation", "debug", etc. buttons won’t even show up.
Another problem I am facing is that some buttons don’t work most of the times. I try clicking the submit button, but all it does it turn white. The "Training-Assessment" bit on the right shows that the signal was correct, but I can’t move to the next assignment as if Simulink just crashed. I have attached a picture that shows this situation. In addition, sometimes clicking on the "debug", "modeling", etc. buttons on the top won’t do anything.
Another problem I am facing is that it takes Simulink about 5 seconds every time to load search results from the quick insert. Why does the quick insert take so much time to load?
I would like some advice on how to fix this issue. The problems 1-3 happen on the Onramp course, and problem 3 happens even in regular Simulink.
Thank you in advance. Hi, I am trying to complete the Simulink Onramp course on my MacBook Pro. I am using the latest version of MATLAB R2022a.
However, the Simulink environment is extremely slow and buggy (although MATLAB works absolutely fine). I identified 3 problems:
When I load the Simulink environment, only parts of it load. Sometimes the "Training-Tasks" bit on the left won’t show up, sometimes the top part with the "simulation", "debug", etc. buttons won’t even show up.
Another problem I am facing is that some buttons don’t work most of the times. I try clicking the submit button, but all it does it turn white. The "Training-Assessment" bit on the right shows that the signal was correct, but I can’t move to the next assignment as if Simulink just crashed. I have attached a picture that shows this situation. In addition, sometimes clicking on the "debug", "modeling", etc. buttons on the top won’t do anything.
Another problem I am facing is that it takes Simulink about 5 seconds every time to load search results from the quick insert. Why does the quick insert take so much time to load?
I would like some advice on how to fix this issue. The problems 1-3 happen on the Onramp course, and problem 3 happens even in regular Simulink.
Thank you in advance. simulink MATLAB Answers — New Questions
how to implement pso algoritm
i used regression linear and perdiect my parameter which i need … i want to use pso algoritm in my code to optimize my code…i saw some video on youtube but all of them focus on something like it f(x)=sum xi^2 but i have dataset that i got them from experimental test and used it in svr model ..i can’t understand use database in pso code …
give me help to solve my problem
thanks in advancei used regression linear and perdiect my parameter which i need … i want to use pso algoritm in my code to optimize my code…i saw some video on youtube but all of them focus on something like it f(x)=sum xi^2 but i have dataset that i got them from experimental test and used it in svr model ..i can’t understand use database in pso code …
give me help to solve my problem
thanks in advance i used regression linear and perdiect my parameter which i need … i want to use pso algoritm in my code to optimize my code…i saw some video on youtube but all of them focus on something like it f(x)=sum xi^2 but i have dataset that i got them from experimental test and used it in svr model ..i can’t understand use database in pso code …
give me help to solve my problem
thanks in advance pso algoritm MATLAB Answers — New Questions
Model Advisor – Is is possible to obtain the number of individual violations?
Would like to obtain, as a metric on the project I am working on, the number of individual violations when running a Model Advisor configuration.
For example, in the case below I would like to obtain the value 5 (ideally per MA Check), as there are 5 individual violations (the blue highlights) preventing the check to be a PASS.Would like to obtain, as a metric on the project I am working on, the number of individual violations when running a Model Advisor configuration.
For example, in the case below I would like to obtain the value 5 (ideally per MA Check), as there are 5 individual violations (the blue highlights) preventing the check to be a PASS. Would like to obtain, as a metric on the project I am working on, the number of individual violations when running a Model Advisor configuration.
For example, in the case below I would like to obtain the value 5 (ideally per MA Check), as there are 5 individual violations (the blue highlights) preventing the check to be a PASS. simulink, modeladvisor MATLAB Answers — New Questions
finding the mean/average of the smallest values in a row
hi ,
i have a row and i want to find the average of the smallest values and the position of this minimum.hi ,
i have a row and i want to find the average of the smallest values and the position of this minimum. hi ,
i have a row and i want to find the average of the smallest values and the position of this minimum. minimum MATLAB Answers — New Questions
Reduce noise and highlight peaks in DWS data
Introduction
Hi my name’s Mark and I’m an Italian CS undegraduate working on a internship regarding data analysis about Diffusing Wave Spectroscopy data coming from the ISS, from the FSL Soft Matter Dynamics facility. I decided to ask the help of you most experts in the field as I’ve never worked with MATLAB this extensively in all my career and I struggle to come up with simple solutions without implementing them myself (e.g. creating a function when it exists already). I do have the professors to ask help to if things get grim.
The topic
The raw data that we start with is composed of multiple grayscale colored .tif images. A single .tif is a single measurement. Please see the [myTif.png] attachment. After reading the image with tiffreadVolume and after some local normalization and Gaussian filtering, I am left with a graph. See [norm_of_changes.png] attachment. This graph has lots of noise. I suppose the noise is testament of the method used to get the graph in the first place (computing the norm of changes between blocks).
The following code is the one used to compute the data to be plotted.
% blocks = 1;
% [s, ~] = size(V_norm_smooth);
% V_norm_smooth 10000×200 tif after imgaussfilt
for i = 1 : s – blocks
change = V_norm_smooth(i + blocks, 🙂 – V_norm_smooth(i, :);
avg_change(i) = norm(change);
end
window_size = 21;
med_res = medfilt2(avg_change, [1, window_size]);
The objective
My goal is to highlight peaks present in the final plot.
Peaks are not always guaranteed to be as evident as they appear in the attached example. There might be only one peak, two, three or more. Several parameters already help with the reduction of "false positives", as we’ve experimented with them a lot and figured that an universal solution does not exist.
I’m quite of the idea there is no simple answer to the "problem". What I’d like is some pointers and directions on what a good approach would be for our case. The actual objective would be to higlight that region in [myTif.png] that looks like a barrier of unordered pixels with lots of different intensities. We are of the idea that this method might not be the best one, but as a research topic, it is interesting and worthwhile.Introduction
Hi my name’s Mark and I’m an Italian CS undegraduate working on a internship regarding data analysis about Diffusing Wave Spectroscopy data coming from the ISS, from the FSL Soft Matter Dynamics facility. I decided to ask the help of you most experts in the field as I’ve never worked with MATLAB this extensively in all my career and I struggle to come up with simple solutions without implementing them myself (e.g. creating a function when it exists already). I do have the professors to ask help to if things get grim.
The topic
The raw data that we start with is composed of multiple grayscale colored .tif images. A single .tif is a single measurement. Please see the [myTif.png] attachment. After reading the image with tiffreadVolume and after some local normalization and Gaussian filtering, I am left with a graph. See [norm_of_changes.png] attachment. This graph has lots of noise. I suppose the noise is testament of the method used to get the graph in the first place (computing the norm of changes between blocks).
The following code is the one used to compute the data to be plotted.
% blocks = 1;
% [s, ~] = size(V_norm_smooth);
% V_norm_smooth 10000×200 tif after imgaussfilt
for i = 1 : s – blocks
change = V_norm_smooth(i + blocks, 🙂 – V_norm_smooth(i, :);
avg_change(i) = norm(change);
end
window_size = 21;
med_res = medfilt2(avg_change, [1, window_size]);
The objective
My goal is to highlight peaks present in the final plot.
Peaks are not always guaranteed to be as evident as they appear in the attached example. There might be only one peak, two, three or more. Several parameters already help with the reduction of "false positives", as we’ve experimented with them a lot and figured that an universal solution does not exist.
I’m quite of the idea there is no simple answer to the "problem". What I’d like is some pointers and directions on what a good approach would be for our case. The actual objective would be to higlight that region in [myTif.png] that looks like a barrier of unordered pixels with lots of different intensities. We are of the idea that this method might not be the best one, but as a research topic, it is interesting and worthwhile. Introduction
Hi my name’s Mark and I’m an Italian CS undegraduate working on a internship regarding data analysis about Diffusing Wave Spectroscopy data coming from the ISS, from the FSL Soft Matter Dynamics facility. I decided to ask the help of you most experts in the field as I’ve never worked with MATLAB this extensively in all my career and I struggle to come up with simple solutions without implementing them myself (e.g. creating a function when it exists already). I do have the professors to ask help to if things get grim.
The topic
The raw data that we start with is composed of multiple grayscale colored .tif images. A single .tif is a single measurement. Please see the [myTif.png] attachment. After reading the image with tiffreadVolume and after some local normalization and Gaussian filtering, I am left with a graph. See [norm_of_changes.png] attachment. This graph has lots of noise. I suppose the noise is testament of the method used to get the graph in the first place (computing the norm of changes between blocks).
The following code is the one used to compute the data to be plotted.
% blocks = 1;
% [s, ~] = size(V_norm_smooth);
% V_norm_smooth 10000×200 tif after imgaussfilt
for i = 1 : s – blocks
change = V_norm_smooth(i + blocks, 🙂 – V_norm_smooth(i, :);
avg_change(i) = norm(change);
end
window_size = 21;
med_res = medfilt2(avg_change, [1, window_size]);
The objective
My goal is to highlight peaks present in the final plot.
Peaks are not always guaranteed to be as evident as they appear in the attached example. There might be only one peak, two, three or more. Several parameters already help with the reduction of "false positives", as we’ve experimented with them a lot and figured that an universal solution does not exist.
I’m quite of the idea there is no simple answer to the "problem". What I’d like is some pointers and directions on what a good approach would be for our case. The actual objective would be to higlight that region in [myTif.png] that looks like a barrier of unordered pixels with lots of different intensities. We are of the idea that this method might not be the best one, but as a research topic, it is interesting and worthwhile. noise reduction, image processing, plot, matlab function MATLAB Answers — New Questions