serverfault.com

Good morning everyone. I'm trying to use HCL Domino's LDAP service to provide an Asterisk PBX with a directory of phone numbers. What I've done so far After enabling the LDAP service, I created a database (let's call it asterisk_phones.nsf) to store the numbers using the StdR4PublicAddressBook template. I then created the Directory Assistant database (let's call it asterisk_da.nsf) and configured it to use asterisk_phones.nsf (see the following images). Once done, I manually insert

Is it possible to connect an internal network to the Internet without NAT and through an IPsec tunnel? How can it be implemented? Is it a forwarding problem?

I generally like to run software updates on our (low-traffic) Ubuntu 24.04 servers during the workday, then schedule any required reboots in the middle of the night. PostgreSQL 16 is installed from the PGDG apt repo. I've got this needrestart configuration in /etc/needrestart/conf.d/postgresql.conf: $nrconf{override_rc}{qr(^postgresql)} = 0; This should, AFAIK, prevent PostgreSQL from getting bounced by library upgrades. I'm fine with the overnight reboot restarting it instead. But, if I do a minor/patch version upgrade of PostgreSQL itself (and/or possibly postgresql-common), this has no effect, and the service restarts each time. Troublingly, I haven't found what it is that's actually performing the restart in this case. It's not apt-get, which lists the things it's restarting, one of which isn't PostgreSQL. So I'm assuming it's in the postinstall scripts, but I also haven't found any place there where

I am configuring SSH authentication with PAM and RADIUS OTP (RSA SecurID). The setup worked correctly with pam_radius_auth 1.4.0, but after upgrading to pam_radius_auth 3.0.0, the OTP entered for RADIUS authentication is automatically reused as the password for the local PAM module. This causes authentication to fail because the OTP is treated as the UNIX password. Environment SSH Server: OpenSSH_8.0 Client: OpenSSH_for_Windows_9.5 OS: RHEL/CentOS based Linux PAM module: pam_radius_auth RADIUS backend: RSA SecurID Authentication Manager Expected behavior (pam_radius_auth 1.4.0) SSH login works as expected: ssh [email protected] Password: OTP: Password → verified by pam_unix OTP → verified by RADIUS Actual

I would like to capture the JSON files that are returned from a series of requests I make from a Mac browser. I'm thinking some sort of a proxy makes sense, but can't make postman do what I want. Is there a better option? I can filter during capture or have scripts filter results for deselect data.

I am relatively new to server management. My web server(server 2019) is being scanned with a remediation tool and is showing a remediation of "Disable offsite mail relaying". What I have tried so far. Opened IIS 6.0 manager > right clicked on SMTP virtual server > properties > went to the "Access" tab > went in to Authentication and set to Integrated windows authentication. Set connection to only allow the list below and gave it my local host machine at 127.0.0.1. Did the same with relay and unchecked the option to allow all computers which successfully authenticate to relay. Stopped the IIS admin service and SMTP service. Started the IIS admin service and SMTP service. After doing all of this and rescanning my machine the remediation is still active. Not sure what to look at next? Any advise would be greatly appreciated.

I set up OpenVPN server on a Cudy WR3000 router, but I can't get WireGuard to work. The WireGuard handshake on the client shows "Sent" bytes but "0 Received" bytes. What I tested: OpenVPN Works: I enabled the OpenVPN server on the Cudy using port 1194. After forwarding 1194 on the ISP router, it works perfectly. This proves my Static IP and Port Forwarding logic are correct. Cross-Port Testing: I tried moving the WireGuard Listen Port to 1194, instead of default (after disabling OpenVPN), but still no handshake. MTU Adjustments: I lowered MTU to 1280 on both Server and Client to account for potential fragmentation/ISP overhead. Peer Settings: On the Cudy, I set the Peer "Remote Subnet" to 0.0.0.0/0 and "Allowed IPs" to 0.0.0.0/0. My .conf file of the cliend as automatically generated from cudy is:

I am in the process of migrating my ASP.NET framework application (running in IIS) onto a Microsoft Azure virtual machine. I have run into a problem. TSL version 1.1 is officially deprecated. Nevertheless, we have to support it, because there are Android devices from 2014 that talk to our server. I have found an online testing tool https://www.apivoid.com/tools/tls-version-checker/ that tells me which TLS versions my server supports. My existing server, which is running **Microsft Windows Server 2022 Standard**, is supporting TLS 1.0 and 1.1. The same application, which is running Microsoft Windows Server 2022 Datacenter Azure Edition, does not support these. And I cannot make it work. Later Edit: The problem wasn't specific to Azure edition, but

I have two Windows Server 2025. SERVER-DEV is a clone of SERVER-LIVE with the same user accounts. For several months I used RDP to connect from SERVER-DEV to SERVER-LIVE without issues. Since recently when RDP opens the Windows Security dialog my username gets auto-prefixed with the machine name: SERVER-DEV\username which of course won't work for the other machine. Also explicitly entering .\username still gets extended with the local machine name. So currently I can not make a connection from WinServer25. From Win11 or Win10 the login works flawlessly as before. The username stays as I entered it and it just works. The two servers are WinServer DataCenter and both "standalone", so not part of a domain. RDP runs on a custom port. In Credential Manager there are no saved Windows credentials. The computer names is added after I click OK for for username and password. I installed several updates on the WinServer25 machines 2 weeks ago and I suspect this h

I'm trying to robocopy to a network drive using powershell and call that from task scheduler on Windows Server 2022. I can't get the network drive to be visible to powershell in task scheduler. The scripts I test run fine from CMD or in the Powershell ISE. This is the command: robocopy "E:\Backups\Offsite" "Y:\" /MIR /MT:64 /E This works fine, except in Task Scheduler. Using the UNC path results in "Error 161 .... The specified path is invalid" robocopy "E:\Backups\Offsite" "\\<obscured>.com.au" /MIR /MT:64 /E I tried pushd, and NET USE, but none of those are solving this problem when run using task scheduler. I checked "Run whether user is logged on or not", and "Run with highest privileges", and nothing else.