cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 

Android enrolment with relay server

Go to solution
Former Member

on ‎08-20-2014 6:53 PM

0 Kudos

Hi

I have been successful in enrolling an android device without the relay server, but now I want to add the relay server into the mix.

I have configured the new relay server and it all looks good.

I can test

http://localhost/ias_relay_server/server/rs_server.dll

http://localhost/ias_relay_server/client/rs_client.dll

and see the correct responses.

I create an enrolment policy for my android device.

I then install the afaria client and enter the code.

I then see the Connect Status log.

I can see it connect to the relay server

Then it hangs for a while and I get asked to Enter user name and password.

When I check the logs on the afaria server I can see it is returning a 404 not found error. And then a 403 error.

2014-08-20 19:52:14 xx.xx.xx.xx POST /aips/aipService.svc/package/cert/generateKey2 - 80 - xx.xx.xx.xx Afaria+Android+Client 200 0 0 277

2014-08-20 19:52:19 xx.xx.xx.xx GET /Relay/11013330-2110-1111-1234-123456789ABC - 80 - xx.xx.xx.xx RemoteWare+Client 404 0 2 204

2014-08-20 19:52:19 xx.xx.xx.xx GET /XNet/11013330-2110-1111-1234-123456789ABC - 80 - xx.xx.xx.xx RemoteWare+Client 404 0 2 2

2014-08-20 19:54:19 xx.xx.xx.xx POST /aips/aipService.svc/policy/android/getPolicies - 80 - xx.xx.xx.xx Afaria+Android+Client 403 0 0 33

2014-08-20 19:54:19 xx.xx.xx.xx POST /aips/aipService.svc/policy/android/getPolicies - 80 - xx.xx.xx.xx Afaria+Android+Client 403 0 0 17

What I don't understand is that this works without a relay server.

I have checked aips and is is enabled for anonymous authentication.

I also have a configuration policy with inventory selected for android devices.

Why would the use of a relay server prompt for username and password?

Any ideas greatly appreciated.

Thanks

Andrew

Show replies
Show replies
Answer

Accepted Solutions (1)

Accepted Solutions (1)

Former Member
‎08-21-2014 8:57 AM
0 Kudos

Did you

a) Enable HTTP traffic on the Afaria server (settings, device communications)

b) Start the RSOE and point it to both the port from a) and to the relay server?

My guess is that you didn't do a) because you used to have XNET traffic and not HTTP traffic to you server.

Optionally you can try to do HTTP traffic without the relay server directly to the backend same as you did with XNET...

BR

Peter

Show replies
Show replies
Former Member
‎08-21-2014 9:33 AM
0 Kudos

Hi Peter

Yes this confused me a bit.

a) I couldn't set HTTP port to 80 as the afaria server wouldn't start if did this. So I set it to 81. Do I need to set up port 81 to be used somewhere in the IIS as well as 80 OR do I change the Default Web Site bindings for http to 81?

when I hit xx.xx.xx.xx:81 I get an error

Thanks very much for your help.

Andrew

Former Member
‎08-21-2014 9:35 AM
0 Kudos

No, you need to set this to a port that IIS does NOT use. 81 will do.

THEN point you RSOE to use port 81 as the backend port and the relay server part stays the same (as you have already verify that RSOE can connect correctly to your relayserver (Availability: Full)

BR

Peter

Former Member
‎08-21-2014 10:25 AM
0 Kudos

Hi Peter

OK I changed the rsoe to use port 81, when I enrol now i very quickly get a Enrollment Failed message on the device.

Some kind of backend disconnection error when I use port 81.

When I check the rshost log I can see the following:

    0000: 47 45 54 20 2F 61 69 70 73 2F 61 69 70 53 65 72  GET /aips/aipSer

    0010: 76 69 63 65 2E 73 76 63 2F 47 65 74 45 6E 72 6F  vice.svc/GetEnro

    0020: 6C 6C 6D 65 6E 74 53 65 65 64 44 61 74 61 3F 49  llmentSeedData?I

    0030: 44 3D 25 37 42 32 65 61 62 39 34 66 61 2D 39 36  D=%7B2eab94fa-96

    0040: 63 65 2D 34 35 61 36 2D 38 30 66 62 2D 36 34 61  ce-45a6-80fb-64a

    0050: 37 33 61 30 66 39 63 35 61 25 37 44 26 43 6C 69  73a0f9c5a%7D&Cli

    0060: 65 6E 74 54 79 70 65 3D 2D 31 30 20 48 54 54 50  entType=-10 HTTP

    0070: 2F 31 2E 31 0D 0A 43 6F 6E 6E 65 63 74 69 6F 6E  /1.1..Connection

    0080: 3A 20 4B 65 65 70 2D 41 6C 69 76 65 0D 0A 48 6F  : Keep-Alive..Ho

    0090: 73 74 3A 20 38 31 2E 31 37 2E 36 35 2E 31 32 32  st: xx.xx.xx.xx

    00a0: 0D 0A 55 73 65 72 2D 41 67 65 6E 74 3A 20 41 66  ..User-Agent: Af

    00b0: 61 72 69 61 20 41 6E 64 72 6F 69 64 20 43 6C 69  aria Android Cli

    00c0: 65 6E 74 0D 0A 41 66 61 72 69 61 43 61 70 73 3A  ent..AfariaCaps:

    00d0: 20 36 2E 36 30 2E 36 34 31 37 2E 30 0D 0A 0D 0A   6.60.6417.0....

I. 2014-08-21 10:15:02.874+0100 <9848.8744.F0B0S0R0> <Test.Afaria> <nuqq> Relaying server response

I. 2014-08-21 10:15:02.874+0100 <9848.8744.F0B0S0R0> <Test.Afaria> <nuqq> Waiting for response packet

I. 2014-08-21 10:15:02.874+0100 <14044.14056.F0B0Up> <Test.Afaria> <nuqq> Up padding.

I. 2014-08-21 10:15:02.874+0100 <14044.14056.F0B0Up> <Test.Afaria> <nuqq> 1460 bytes RS_UPCHANNEL_NOOP()

I. 2014-08-21 10:15:02.874+0100 <14044.14056.F0B0Up> <Test.Afaria> <nuqq> Waiting for client request

I. 2014-08-21 10:15:02.886+0100 <14044.6420.F0B0Dn> <Test.Afaria> <nuqq> Down packet offset 00013ce8

I. 2014-08-21 10:15:02.886+0100 <14044.6420.F0B0Dn> <Test.Afaria> <nuqq> 21 bytes OE_BACKEND_DISCONNECTED(<F0B0S0R0>;oidx=0;sidx=0;sfp=e2ee9470)

I. 2014-08-21 10:15:02.886+0100 <14044.6420.F0B0Dn> <Test.Afaria> <nuqq> Closed request index R0.

I. 2014-08-21 10:15:02.886+0100 <9848.8744.F0B0S0R0> <Test.Afaria> <nuqq> Got next packet after offloading and flow-control. SQ-length=0(ok);LQ-bytes=0(ok);shm=76462616;sfp=e2ee9470

I. 2014-08-21 10:15:02.886+0100 <14044.6420.F0B0Dn> <Test.Afaria> <nuqq> Waiting for server response with trip left: 2097102827

I. 2014-08-21 10:15:02.886+0100 <9848.8744.F0B0S0R0> <Test.Afaria> <nuqq> Received down packet

I. 2014-08-21 10:15:02.886+0100 <14044.6420.F0B0Dn> <Test.Afaria> <nuqq> Down packet offset 00014798

W. 2014-08-21 10:15:02.886+0100 <9848.8744.F0B0S0R0> <Test.Afaria> <nuqq> RSW103: The backend connection was terminated before the entire content length response body was received. Remaining 0 of 0 bytes

I. 2014-08-21 10:15:02.886+0100 <14044.6420.F0B0Dn> <Test.Afaria> <nuqq> 1460 bytes OE_DNCHANNEL_NOOP()

In the rsoe logs I can see the request

I. 2014-08-21 09:56:34.926+0100 <Backend-0000> 0000: 47 45 54 20 2F 61 69 70 73 2F 61 69 70 53 65 72  GET /aips/aipSer

I. 2014-08-21 09:56:34.926+0100 <Backend-0000> 0010: 76 69 63 65 2E 73 76 63 2F 47 65 74 45 6E 72 6F  vice.svc/GetEnro

I. 2014-08-21 09:56:34.926+0100 <Backend-0000> 0020: 6C 6C 6D 65 6E 74 53 65 65 64 44 61 74 61 3F 49  llmentSeedData?I

I. 2014-08-21 09:56:34.926+0100 <Backend-0000> 0030: 44 3D 25 37 42 32 65 61 62 39 34 66 61 2D 39 36  D=%7B2eab94fa-96

I. 2014-08-21 09:56:34.926+0100 <Backend-0000> 0040: 63 65 2D 34 35 61 36 2D 38 30 66 62 2D 36 34 61  ce-45a6-80fb-64a

I. 2014-08-21 09:56:34.926+0100 <Backend-0000> 0050: 37 33 61 30 66 39 63 35 61 25 37 44 26 43 6C 69  73a0f9c5a%7D&Cli

I. 2014-08-21 09:56:34.926+0100 <Backend-0000> 0060: 65 6E 74 54 79 70 65 3D 2D 31 30 20 48 54 54 50  entType=-10 HTTP

I. 2014-08-21 09:56:34.929+0100 <Backend-0000> 0070: 2F 31 2E 31 0D 0A 49 41 53 2D 52 53 2D 41 46 51  /1.1..IAS-RS-AFQ

I. 2014-08-21 09:56:34.930+0100 <Backend-0000> 0080: 3A 20 38 31 32 65 66 63 39 65 30 30 30 30 30 30  : 812efc9e000000

I. 2014-08-21 09:56:34.930+0100 <Backend-0000> 0090: 30 30 30 30 30 30 30 30 30 30 2E 6E 75 71 71 0D  0000000000.nuqq.

I. 2014-08-21 09:56:34.930+0100 <Backend-0000> 00a0: 0A 43 6F 6E 6E 65 63 74 69 6F 6E 3A 20 4B 65 65  .Connection: Kee

I. 2014-08-21 09:56:34.930+0100 <Backend-0000> 00b0: 70 2D 41 6C 69 76 65 0D 0A 48 6F 73 74 3A 20 38  p-Alive..Host:

I. 2014-08-21 09:56:34.930+0100 <Backend-0000> 00c0: 31 2E 31 37 2E 36 35 2E 31 32 32 0D 0A 55 73 65  xx.xx.xx.xx..Use

I. 2014-08-21 09:56:34.930+0100 <Backend-0000> 00d0: 72 2D 41 67 65 6E 74 3A 20 41 66 61 72 69 61 20  r-Agent: Afaria

I. 2014-08-21 09:56:34.930+0100 <Backend-0000> 00e0: 41 6E 64 72 6F 69 64 20 43 6C 69 65 6E 74 0D 0A  Android Client..

I. 2014-08-21 09:56:34.930+0100 <Backend-0000> 00f0: 41 66 61 72 69 61 43 61 70 73 3A 20 36 2E 36 30  AfariaCaps: 6.60

I. 2014-08-21 09:56:34.930+0100 <Backend-0000> 0100: 2E 36 34 31 37 2E 30 0D 0A 0D 0A                 .6417.0....    

I. 2014-08-21 09:56:34.930+0100 <Backend-0000> Deleting previous request, ptr=00cdf0d0, ref=0151f650

I. 2014-08-21 09:56:34.930+0100 <Backend-0000> DoneReceive: sidx=0 ridx=0 socket=00ce90b0 sfp=812efc9e len=65455 usage=0 (0%) sls=3

I. 2014-08-21 09:56:34.930+0100 <Backend-0000> data:

I. 2014-08-21 09:56:34.930+0100 <Backend-0000> DoneReceive: EOF for sidx=0 sfp=812efc9e

I. 2014-08-21 09:56:34.930+0100 <Backend-0000> HN: Signalling DnChannel at oidx: 0

I. 2014-08-21 09:56:34.930+0100 <Backend-0000> OER data     0          0          0          0   812efc9e |          0          0          0          4 |        267          0 |      0

I. 2014-08-21 09:56:34.930+0100 <Backend-0000> disconnectContextSocket: setting socketData to null

I. 2014-08-21 09:56:34.930+0100 <Backend-0000> disconnectContextSocket: Soft closing socket from sidx=0 socket=00ce90b0

I. 2014-08-21 09:56:34.930+0100 <Backend-0000> DoneClose: sidx=0 socket=00ce90b0

I. 2014-08-21 09:56:34.931+0100 <Backend-0000> SocketDeletion: sidx=0 socket=00ce90b0 socketsCount=0

I. 2014-08-21 09:56:34.931+0100 <DnChannel-0000> OE_BACKEND_DISCONNECTED(oidx=0 ridx=0 sidx=0 snum=0000 sfp=812efc9e rawSize=21)

I. 2014-08-21 09:56:34.931+0100 <DnChannel-0000> TripLeft: 2097102763

I. 2014-08-21 09:56:34.931+0100 <DnChannel-0000> Written 1460 byte OE_DNCHANNEL_NOOP padding packet.

I. 2014-08-21 09:56:34.931+0100 <DnChannel-0000> Flushed.

I. 2014-08-21 09:56:34.931+0100 <DnChannel-0000> TripLeft: 2097101303

I. 2014-08-21 09:56:34.942+0100 <UpChannel-0000> PacketRead packet-len: 19

I. 2014-08-21 09:56:34.942+0100 <UpChannel-0000> PacketRead packet-opcode: 0xf00b

I. 2014-08-21 09:56:34.942+0100 <UpChannel-0000> successful packet read.. processing it..

I. 2014-08-21 09:56:34.942+0100 <UpChannel-0000> packet:

I. 2014-08-21 09:56:34.942+0100 <UpChannel-0000> 0000: 13 00 0B F0 FF FF FF FF FF FF 00 00 00 00 00 00  ................

I. 2014-08-21 09:56:34.942+0100 <UpChannel-0000> 0010: 9E FC 2E 81 01                                   .....          

I. 2014-08-21 09:56:34.942+0100 <UpChannel-0000> 21 RS_CLI_DISCONNECT_BACKEND(oidx=65535 snum=0000 sfp=812efc9e ridx=0 sidx=-1)

I. 2014-08-21 09:56:34.942+0100 <UpChannel-0000> Notifying be thread

I. 2014-08-21 09:56:34.942+0100 <Backend-0000> LookupSession: ridx=0 snum=0000 sfp=812efc9e from 1 sessions

I. 2014-08-21 09:56:34.942+0100 <Backend-0000> Session[0] has ridx=0, snum=0000 sfp=812efc9e

I. 2014-08-21 09:56:34.942+0100 <Backend-0000> Found match at session[0]

I. 2014-08-21 09:56:34.942+0100 <Backend-0000> HN: RS_CLI_DISCONNECT_BACKEND received, for sidx=-1

Any ideas why it would disconnect?

My versions for both exes are the same.

Thanks again for your help

Andrew

Former Member
‎08-21-2014 10:33 AM
0 Kudos

I seem to remember something about not using "localhost" as you backend. Try either IP or servername.

You can also try a different port. 8888 er similar

Peter

Former Member
‎08-21-2014 11:12 AM
0 Kudos

Hi Peter

No, I tried multiple ports and its the same everytime.

Session was disconnected

E. 2014-08-21 11:00:54.844+0100 <Backend-0000> OEE1045: System error [SYS0: no system error] while interrupting send with the backend server for sidx=0 socket=00909140 sfp=b743450b

It only got further when I used port 80 for the server port in the relay server page......

Thanks

Andrew

Former Member
‎08-21-2014 12:53 PM
0 Kudos

Hi Peter

After investigating further.

If I don't select the relay server to be used with the enrollment server and I use a vpn on my device.

But keep device communication to use the relay server ip

It all works.

So am starting to think now that I need a separate instance of the rsoe.exe running for my enrollment server with a different farm id even though they are both on the same machine.

Is the above correct?

Thanks

Andrew

Former Member
‎08-21-2014 1:16 PM
0 Kudos

Yes that did it.

I had to create a new instance of the rsoe running with a new farm id just for the enrollment server.

In this config file I used the IIS port as the server port.

Now I am going to move onto ios with relay server.

Thanks very much for your help.

Andrew

Former Member
‎08-21-2014 1:40 PM
0 Kudos

Yes. you can't share RSOE between enrollment (running under IIS) with XNET over HTTP traffic (running under XSTrans). The RSOE needs to point to the correct backend port for each feature

BR

Peter

Answers (0)

Ask a Question