6.0 ESXi host Active Directory Group authentication works in the hull but no client

Got a weird here.

Add 6.0 host vSphere to Active Directory.

Added a group of pub with the Administrator role.

I can authenticate with an AD user account that is a member of this group of ads, using SSH or Shell access.

I cannot authenticate with an account AD who is a member of this group of ads using the Web UI or Client vSphere linking directly to the host.

If I add the domain user directly with the role of administrator on the host computer permissions, the Web GUI and vSphere Client will be authenticate using the user of the AD.

What it looks like access using SSH/Shell, vSphere host can burst of belonging to a group and to authenticate, but using the GUI Web or vSphere Client he can't.  There are not a lot of sense to me.

The hostd.log file has nothing in it which is very informative, just a line saying "status: success accepted password for the user", followed by the event 131: could not connect the user without permission.

Hello

If you are in 6.0 Update 2? Then, this article could describe your problem:

https://KB.VMware.com/kb/2145400

Please try the fix and let us know if it helps.

-Andreas

Tags: VMware

Similar Questions

  • Administrator rights to the ACS using Active Directory groups

    Good afternoon

    We must be able to use administrative accounts for our device ACS who reside in an Active Directory group, if possible.  If this is not possible, what other safer options would we be able to use (RADIUS authentication or authentication RSA 2)?

    Thanks in advance

    You can only use the locally stored accounts within the ACS.

  • Active Directory groups can be put into service in the FDMEE places?

    Hi experts FeeDMEE:

    We are upgrading to HFM/FDMEE 11.1.2.4.    We would like to use only the Active Directory groups for our security in Shared Services.

    I did a lot of audit looking at whether we can use security location FDMEE ad groups.  So far, the only way I found to make the security location uses the native approach (settings / security settings / security location...) Security by location, click on keep usergroup to set up groups).    But it doesn't seem to be an option if you create groups such as native or ad groups (FDMEE them creates only natively).

    Does anyone know if it is possible in FDMEE to use security of the location ad groups?

    Thank you
    Mark Smith

    I discovered that it is more possible for FDMEE create Aboriginal groups for the security of the location.

    However, Active Directory groups can be added as members of indigenous groups.   In this way, users should only be added to Active Directory groups.    The only maintenance is to add or remove groups active directory to or from the indigenous groups of FDMEE.

  • Portal administrators from Active Directory groups

    I want to add additional users with the status of "admin", so that more people can use the "Admin Console". I want to do this using Active Directory groups.

    Can anyone say if this is possible and how?


    Maybe it's in the documentation, but I couldn't find it.

    For now, it is not possible to assign the Admin role to a group of users. However, you can promote individual users to the Administrator role. You can search for a user name and click on the user name to view the details of a user. On the left side, you will see a role (s) and the 'User' text is clickable. When you click on that text you will be able to change the role.

  • Cannot create the Pool - host active directory unavailable

    Team

    When I create a linked clone Desktop Pool im get the host Active directory unavailable error... when I run dcdiag from the Viewconnection server all returns fine / successful... I ping the domain name itself and the controller DC very well from the network... Any idea where I can look to see what the issue is here?

    Thanks in advance

    Shaun

    You should do all of these tests from the vCenter server, here View Composer is running and that's what joined the VM:s in the field.

    Linjo

  • Is there a way to get the list of hosts and its groups of belonging to the vCenter folder level in 5.5 web vsphere client plugin development?

    Hello

    I need to get the list of all hosts and its groups of belonging to the vcenter folder level.

    1. I created a view giving the extension point: vsphere.core.folder.monitorViews.

    2. After this step, I wrote the constraint as in my class of mediator,

    var ListConstraint:Constraint =

    QuerySpecUtil.createConstraintForRelationship ( _contextObject, 'childEntity');

    I was expecting a list of all child entities such as hosts, dc, cluster... But I have only the immediate child object which is only the Datacenter as my result.

    Is it possible to get all hosts and vCenter folder level Clusters because I need the entire list to vCenter (highest level).

    Other info:

    Object file has only two properties:

    1 childEntity - list of entities

    2 childType in-kind folder ('Virtual Machine', 'Data center'...)

    Is it possible to write a constraint specifying which list of childEntities I need using childType in.

    Example: Make Me childEntities that has a 'Host' and 'Cluster' childType but childType in doesn't have these two types.

    In addition, at this level, I could see the 'Associated objects' tab which has all the information I need, such as Clusters and Cluster tab hosts and host tab respectively.

    So, I think its possible to get this list to vCenter folder level.

    I have attached a screenshot representing the need. Kindly ignore the Conventions of naming in there since I edited the example comes with the sdk program.


    Query:

    1. How can I get the host and Cluster (table of relationship) list to vCenter folder level or even at the level of the vise.global.view?

    2. once I get this list, is it possible for me to manipulate that list and send the new list to IU?

    3. is there another way to do the same thing without the help of model classes and mediator?


    Pointers to this will be very useful.

    It is not possible to obtain all hosts a folder specific vCenter from a single query Data Manager.  You need to get the list of centers of data first and then get a list of data center hosts.

    It is best to make these repeated requests to the java level and return only the list that you want to the user interface.

    You can get all the objects in the host of the system with a simple query using a constraint with targetType = 'HostSystem', but you will need to eliminate those from other vCenter servers.  See how this chassis example queries all hosts the Java later in the getHosts() method: samples/chassis-app/chassisRackVSphere-service/src/main/java/com/vmware/samples/chassisRackVSphere/ChassisRackVSphereDataAdapter.java

    Another option is to use the vSphere Web Services SDK to browse vCenter. See the vSphere management forum for help on these APIs.  See this plugin of the sample using this SDK

    samples/vsphereviews/vsphere-wssdk-provider/src/main/java/com/vmware/samples/wssdkprovider/VmDataProviderImpl.java

  • Add the Active Directory group to the ESXi host permissions

    I am trying to add a group of ads as an administrator directly to an ESXi host (not in vCenter).  I tried to use the following code:

    $domain = "mydomain".

    $group = "mygroup".

    $svcaccount = $domain + "\" + $group

    $folder = get-file-name "ha-folder-root".

    $authMgr = get-View Manager

    $perm = new-Object VMware.Vim.Permission

    $perm.principal = $svcaccount

    $perm.propagate = $true

    $perm.group = $true

    $perm.roleid = ($authMgr.RoleList | where {$_.}) ({Name - eq "Admin"}). RoleId

    $authMgr.SetEntityPermissions (($folder |)) Get - View). MoRef, $perm)

    I get the following error:

    You can not call a method on a null value expression.

    $authMgr.SetEntityPermissions < < < < (($folder |)) Get - View). MoRef, $perm)

    When it is connected to ESX the Manager Id is "Manager-ha-authmgr" you may not use the shorter expression of Get-View:

    $authMgr = Get-View AuthorizationManager

    The safe way to get the Manager display is via ServiceInstance object:

    $si = Get-View ServiceInstance
$authMgr = Get-View $si.Content.AuthorizationManager

    Kind regards

    Yasen Kalchev

    PowerCLI Dev Team

  • separate authentication and authorization for Active directory groups

    Hi all

    After a long search and failure, I write the question.

    I use apex oracle 4.2 on windows server 2012 on oracle 12 c, all 64 bits.

    We have configured Microsoft Active directory with LDAP.

    in LDAP, we have a core group which is say A and an is down there students and the two groups.

    According to the staff, there are many other groups and students, there are a lot of groups.

    I created a mobile application, it has a main page that is publicly accessible without username and password.

    in this home page, I have a list that contains two elements, personnel and another is a student.

    When one of the list item, the login screen appears.

    now I want to control when the user clicks on the staff list, only personnel should be authenticated.

    If the end user is a student, it doesn't have to be authenticated.

    the same goes for the student list item, if the end-user click on list of students, only students must be authenticated.

    someone please guide me, I'm failed in research and testing.

    Thank you.

    Kind regards.

    Hi Maahjoor,

    Try this (it is written all the attributes for the user) by logging in to your schema to SQL Developer:

    DECLARE

  -- Adjust as necessary.
  l_ldap_host    VARCHAR2(256) := 'hct.org';
  l_ldap_port    VARCHAR2(256) := '389';
  l_ldap_user    VARCHAR2(256) := 'cn=hct\itnew';
  l_ldap_passwd  VARCHAR2(256) := 'itnew';
  l_ldap_base    VARCHAR2(256) := 'DC=hct,DC=org';

  l_retval       PLS_INTEGER;
  l_session      DBMS_LDAP.session;
  l_attrs        DBMS_LDAP.string_collection;
  l_message      DBMS_LDAP.message;
  l_entry        DBMS_LDAP.message;
  l_attr_name    VARCHAR2(256);
  l_ber_element  DBMS_LDAP.ber_element;
  l_vals         DBMS_LDAP.string_collection;

BEGIN

  -- Choose to raise exceptions.
  DBMS_LDAP.USE_EXCEPTION := TRUE;

  -- Connect to the LDAP server.
  l_session := DBMS_LDAP.init(hostname => l_ldap_host,
                              portnum  => l_ldap_port);

  l_retval := DBMS_LDAP.simple_bind_s(ld     => l_session,
                                      dn     => l_ldap_user||','||l_ldap_base,
                                      passwd => l_ldap_passwd);

  -- Get all attributes
  l_attrs(1) := '*'; -- retrieve all attributes
  l_retval := DBMS_LDAP.search_s(ld       => l_session,
                                 base     => l_ldap_base,
                                 scope    => DBMS_LDAP.SCOPE_SUBTREE,
                                 filter   => l_ldap_user,
                                 attrs    => l_attrs,
                                 attronly => 0,
                                 res      => l_message);

  IF DBMS_LDAP.count_entries(ld => l_session, msg => l_message) > 0 THEN
    -- Get all the entries returned by our search.
    l_entry := DBMS_LDAP.first_entry(ld  => l_session,
                                     msg => l_message);

    << entry_loop >>
    WHILE l_entry IS NOT NULL LOOP
      -- Get all the attributes for this entry.
      DBMS_OUTPUT.PUT_LINE('---------------------------------------');
      l_attr_name := DBMS_LDAP.first_attribute(ld        => l_session,
                                               ldapentry => l_entry,
                                               ber_elem  => l_ber_element);
      << attributes_loop >>
      WHILE l_attr_name IS NOT NULL LOOP
        -- Get all the values for this attribute.
        l_vals := DBMS_LDAP.get_values (ld        => l_session,
                                        ldapentry => l_entry,
                                        attr      => l_attr_name);
        << values_loop >>
        FOR i IN l_vals.FIRST .. l_vals.LAST LOOP
          DBMS_OUTPUT.PUT_LINE('ATTIBUTE_NAME: ' || l_attr_name || ' = ' || SUBSTR(l_vals(i),1,200));
        END LOOP values_loop;
        l_attr_name := DBMS_LDAP.next_attribute(ld        => l_session,
                                                ldapentry => l_entry,
                                                ber_elem  => l_ber_element);
      END LOOP attibutes_loop;
      l_entry := DBMS_LDAP.next_entry(ld  => l_session,
                                      msg => l_entry);
    END LOOP entry_loop;
  END IF;

  -- Disconnect from the LDAP server.
  l_retval := DBMS_LDAP.unbind_s(ld => l_session);
  DBMS_OUTPUT.PUT_LINE('L_RETVAL: ' || l_retval);

END;
/

    NOTE: The DN parameter on line 29 requires exact unique name for the user. In addition, on line 37 to filter, you can use username i.e. "cn = firstname.lastname."

    You can specify a specific attribute must be extracted from the user in order by changing line 33 of the:

    l_attrs(1) := '*';

    TO

    l_attrs(1) := 'title';

    Then you can write a function based on above the code to extract the attribute LDAP user as follows:

    create or replace function fnc_get_ldap_user_attr_val ( p_username in varchar2
                                                      , p_password in varchar2
                                                      , p_attrname in varchar2 )
return varchar2
as

  -- Adjust as necessary.
  l_ldap_host    VARCHAR2(256) := 'hct.org';
  l_ldap_port    VARCHAR2(256) := '389';
  l_ldap_user    VARCHAR2(256) := 'cn='||p_username;
  l_ldap_passwd  VARCHAR2(256) := p_password;
  l_ldap_base    VARCHAR2(256) := 'DC=hct,DC=org';

  l_retval       PLS_INTEGER;
  l_session      DBMS_LDAP.session;
  l_attrs        DBMS_LDAP.string_collection;
  l_message      DBMS_LDAP.message;
  l_entry        DBMS_LDAP.message;
  l_attr_name    VARCHAR2(256);
  l_attr_value   VARCHAR2(256);
  l_ber_element  DBMS_LDAP.ber_element;
  l_vals         DBMS_LDAP.string_collection;

BEGIN

  -- Choose to raise exceptions.
  DBMS_LDAP.USE_EXCEPTION := TRUE;

  -- Connect to the LDAP server.
  l_session := DBMS_LDAP.init(hostname => l_ldap_host,
                              portnum  => l_ldap_port);

  l_retval := DBMS_LDAP.simple_bind_s(ld     => l_session,
                                      dn     => l_ldap_user||','||l_ldap_base,
                                      passwd => l_ldap_passwd);

  -- Get specific attributes
  l_attrs(1) := p_attrname;
  l_retval := DBMS_LDAP.search_s(ld       => l_session,
                                 base     => l_ldap_base,
                                 scope    => DBMS_LDAP.SCOPE_SUBTREE,
                                 filter   => l_ldap_user,
                                 attrs    => l_attrs,
                                 attronly => 0,
                                 res      => l_message);

  IF DBMS_LDAP.count_entries(ld => l_session, msg => l_message) > 0 THEN
    -- Get all the entries returned by our search.
    l_entry := DBMS_LDAP.first_entry(ld  => l_session,
                                     msg => l_message);

    << entry_loop >>
    WHILE l_entry IS NOT NULL LOOP
      -- Get all the attributes for this entry.
      DBMS_OUTPUT.PUT_LINE('---------------------------------------');
      l_attr_name := DBMS_LDAP.first_attribute(ld        => l_session,
                                               ldapentry => l_entry,
                                               ber_elem  => l_ber_element);
      << attributes_loop >>
      WHILE l_attr_name IS NOT NULL LOOP
        -- Get all the values for this attribute.
        l_vals := DBMS_LDAP.get_values (ld        => l_session,
                                        ldapentry => l_entry,
                                        attr      => l_attr_name);
        << values_loop >>
        FOR i IN l_vals.FIRST .. l_vals.LAST LOOP
          DBMS_OUTPUT.PUT_LINE('ATTIBUTE_NAME: ' || l_attr_name || ' = ' || SUBSTR(l_vals(i),1,200));
          l_attr_value := l_vals(i);
        END LOOP values_loop;
        l_attr_name := DBMS_LDAP.next_attribute(ld        => l_session,
                                                ldapentry => l_entry,
                                                ber_elem  => l_ber_element);
      END LOOP attibutes_loop;
      l_entry := DBMS_LDAP.next_entry(ld  => l_session,
                                      msg => l_entry);
    END LOOP entry_loop;
  END IF;

  -- Disconnect from the LDAP server.
  l_retval := DBMS_LDAP.unbind_s(ld => l_session);
  DBMS_OUTPUT.PUT_LINE('L_RETVAL: ' || l_retval);
  DBMS_OUTPUT.PUT_LINE('Attribute value: ' || l_attr_value);

  return l_attr_value;

END fnc_get_ldap_user_attr_val;
/

    Then create an Application AI_USER_AD_TITLE tell you item request-> shared components.

    Create following procedure to define the point of application on the connection of the user in your APEX application:

    create or replace procedure ldap_post_auth
as

  l_attr_value varchar2(512):

begin

  l_attr_value := fnc_get_ldap_user_attr_val ( p_username => apex_util.get_session_state('P101_USERNAME')
                                             , p_password => apex_util.get_session_state('P101_PASSWORD')
                                             , p_attrname => 'title' );

  apex_util.set_session_state('AI_USER_AD_TITLE', l_attr_value);

end ldap_post_auth;

    Change the "name of procedure after authentication' in your 'ldap_post_auth' authentication scheme

    Then modify the process in charge on your homepage to your application of PORTALS to:

    begin

    if :AI_USER_AD_TITLE = 'Student' then
        apex_util.redirect_url(p_url=>'f?p=114:1');
    else
        apex_util.redirect_url(p_url=>'f?p=113:1');
    end if;

end;

    I hope this helps!

    Kind regards

    Kiran

  • Strategy of Kerberos WinServer2008r2 Active Directory group

    Hi all

    Need help bad in this. I'm trying to implement kerberos on my active directory. What I understand is kerberos is the default and the primary authentication protocol used when connected to a domain, but where and how do I configure kerberos settings in group policy? I managed to find configurations of kerberos in the "Local Group Policy Editor", but this would not push configurations to my clients right?

    I want to disable NTLM authentication as well and once again I can found under local policies > security options, but they are all local policies right? Is it possible that I can disable NTLM on my active directory and ensure that these settings are applied to my both client computers?

    Thank you so much in advance!
    PS: Sorry if I got some of my facts wrong, I'm a student performs internship and my understanding in active directory is not as strong.

    Server forums are more on the side the web site of Microsoft TechNet,
    This is where you find people who know.

    http://social.technet.Microsoft.com/forums/en-us/categories

  • Firepower does not work when using the Active Directory group as a rule filter access control

    I am PoV of Cisco ASA with the power of fire with my client. I would like to integrate the power of fire to MS Active Directory. Everything seems to work properly.

    -Fire power user agent installation to complete successfully. Connection to AD work fine. The newspaper is GREEN.

    -J' created a Kingdom in FireSight and you can download users and groups from Active Directory.

    -J' created a politics of identity with passive authentication (using the field I created)

    -Can I use the AD account "user" as a filter in access control rule and it work very well.

    However, if I create the rule of access control with AD Group', the rule never get match. I'm sure that the user that I test is a member of the group. Connection event show the system to ignore this rule and the traffic is blocked by the default action below. It doesn't look like the firepower doesn't know that the user belongs to the group.

    I use

    -User agent firepower for Active Directory v2.3 build 10.

    -ASA 5515 software Version 9.5 (2)

    -Fire version 6.0.0 - 1005 power module

    -Firepower for VMWare Management Center

    Any suggestion would be appreciated. Thanks in advance.

    Hello

    You should check the download user under domain option. Download the users once belonging to a group is specified on the ad and then test the connection.

    Thank you

    Yogesh

  • Active Directory kerberos authentication ticket control

    Hello

    Customer asked if Active Directory cartridge has the ability to control errors in Kerberos authentication ticket? For example when the user has too many groups in his account AD and the Kerberos ticket is larger at all an ad.

    Thank you

    Hi Miska,

    A search in eDocs reveals that there is Directory Services Performance view of health that includes:

    Kerberos Authentications. This counter displays the rate at which clients are using a Kerberos ticket to authenticate to the DC.     Authentication Requests. This graph displays the number of times per second that clients use a Kerberos ticket to authenticate to the DC.

    These parameters are evaluated for the Rule of authentication Kerberos LDAP:

    Purpose This rule monitors the number of times per second that clients use a Kerberos ticket to authenticate to a DC. An upward trend may result in issues with LDAP-dependent services

    These references appear to be the closest thing "the ability to control the Kerberos authentication ticket errors."

    Kind regards

    Brian Wheeldon

  • Active Directory for authentication - authorization database

    Hello

    I searched a lot but could not find a way to work to do and I have Weblogic Server 10.3.4. My problem is; I currently have an Authenticator SQL read-only which validates the name of user and password and he also holds a group membership of those users. Thus, the when users are connected to our Flex application, they are authenticated and authorized through this security provider. Now, I want to * move the part name validation of username/password to Active Directory * and group membership and other roles etc will stay in the read-only SQL authenticator. To do this, I added the second security provider to my Kingdom which is Active Directory Authenticator, but right now because users are authenticated via Active Directory roles, the etc group memberships do not come to the user, resulting in not to be able to call EJB.

    So my question is, How can I manipulate simply authenticate users to Active Directory and other parties (roles, groups) of database (in the database I don't store the password more meaningless it longer)? Do I have to write a custom provider to do this, if this is the case can show you a way to work from the merger of two suppliers of security?

    Thank you.

    Yes, you will need to create a security provider for this.

    -Faisal
    http://www.WebLogic-wonders.com

  • Cisco CX - Active Directory groups

    Hello

    I'm starting a Cisco CX deployment. Our company has more than 1 k users. I create access policies, but I'm a little stuck on a problem. I can creat policies using the username but not the ad groups, I see that there is the option, but it does not work (it does not retrieve ad groups).

    The interface wonder what follows:

    Groups

    Users

    Identity objects

    Anyone got it to work?

    Make sure that your ads of research base is fairly low in the tree to display groups.

    By example, if your basic search are Corp./City/users, but your groups report directly to Corp, she probably won't find and shoot groups.

  • Users of Active Directory cannot connect to vCenter 5 device via vSphere Client

    I'm unable to use credentials to access AD unit vCenter 5 via the vSphere client. I get an error message that I can log in because of 'incorrect user or password name' I am able to connect with this AD username and password for my vCenter 4.1, and environment to my RDP hosts by using the credentials of the AD, if AD works very well. And the password that I entered is correct.

    I could connect with AD credentials two weeks ago. Two weeks ago I stopped being able to connect with the credentials of the AD. I dropped back to the use of the local access through the vSphere client root user login. It seems that two weeks ago, my Oracle user passwords has expired. I fixed that by connecting to the EM console and responding to the command prompt to change the passwords. I've "changed" them to return the same password. Then, I subsequently put the limit password_life_time unlimited in the default profile. I tested since the vCSA admin interface the database settings. The settings saved and restarted the service VPXD.

    I have a 5.0.0 - 455964 vCenter device connected to an Oracle database. I activated the AD authentication in vCenter web admin GUI. I restarted vCenter Server Appliance after you have enabled this feature. I have validated that the time on the device of vCenter and the Active Directory zone are less than one second on the other. DNS forward and reverse unit number of AD and self-esteem are good. DNS is hosted on the AD controller, so I have connectivity between vCenter and AD. I run the query domainjoin-cli command and output is correct. I checked from the vSphere that my AD user customer and the ad group each received the Administrator role for the vCenter in the permissions screen object.

    Any ideas where to look next?

    Paul

    Hello

    (1) log the vCenter Server Appliance as root.

    2) reset the number of connection attempts that have failed for the domain user assigned with the command:

    / sbin/pam_tally - reset user user@domain--

    (3) to determine the status of each user, run the following script:

    to CONNECT to ' / opt/same/bin/lw-enum-users | grep name | AWK {' print $2' '}'
    do
    DOMAIN = $(écho $LOGIN | cut-d ' \'-f1)
    USER = $(écho $LOGIN | cut-d ' \'-f2)
    / sbin/pam_tally - user $USER@$DOMAIN
    fact

  • Do I need an IP NIC of each Esxi host address?  VMs needs access to the storage network?

    Hi all

    The issue go, I have a host machine with 3 nic cards - > 1 for production network, 1 for the management network and 1 for the network backup.

    The guest PC VM inside will be connected to the 3 network,

    But for the host himself, will be used for management and backup only.

    T1) is the bears from production on the need for level ESXI host having an IP address as well?

    =================================================================

    Right of Q2) now my host use internal storage. If I'm to migrate to a SAN storage, I have 1 more network for storage.

    I understand that the configuration of virtual machines and their data are assigned and stored in the data store that is made visible at the level of the host.

    They must for the virtual machines access the data store, join the storage network as well? or they are access to the storage through the host

    ================================================================

    Kind regards

    Noob

    T1) is the bears from production on the need for level ESXI host having an IP address as well?

    A NIC itself does not require an IP address. Which IP addresses are required for VMkernel port groups (for example, networking, vMotion, storage access,...) as well as virtual machines.

    Right of Q2) now my host use internal storage. If I'm to migrate to a SAN storage...

    No, a virtual machine (i.e. the guest operating system) does not require access to the system of storage, only the ESXi host.

    André

Maybe you are looking for

  • I just discovered that Mozilla plans to eliminate groups of tabs in Firefox. Is there a way to keep?

    I just discovered that Mozilla plans to eliminate groups of tabs in Firefox. Only, I discovered that this feature is by reading an article in PC World on plans to remove future versions of Mozilla's Firefox. I just tried the service for the first tim

  • Re: Burning failed

    I have Toshiba Satellite A200 I got the error message - 104 when I try to burn CDs. I used Nero and Poweriso and Infrarecorder, but it did not work.I hope that you can * HELP * me.* Thanks in advance: * * This is the mistake of JOURNAL *. Windows 7 6

  • Judgment of keyboard keys & numbers of arrow answer after the connection

    I have a dual boot and I try finally migrate from XP to 7. However I still use XP fairly regularly. But although the work of arrows before I login, once I connected they stop working and I know that it's not the keyboard, because even programmed keys

  • Question about tables PS6100XS

    Hello I have a question on the number of disks in relief on the PS6100XS.  The configuration says seven SSD and 17 SAS drives.  Are there four spare discs then (two SAS drives and two SSDs)?  Really, which would limit the total amount of space availa

  • Reformatting with no cd?

    I know that you can reformat without cd but I need to know if I can recoer my OS without cd. I have the recovery on the computer partition, but I'll be able to access it after that I have reformat? Help, please