Manage another Adaxes service

Question

Hi All,

I have 2 domains (A & B) which do not know of each other and have a firewall between them.

I would like to manage domain B from domain A. I thought the correct route was to setup an Adaxes server in both domains and then connect using the new managed domain on Adaxes with the IP address of the adaxes server. I have opened up the firewall to everything I could find on this page https://www.adaxes.com/questions/20/what-ports-does-adaxes-use and have disabled the windows firewall on both boxes.

Still no luck. Can anyone help?

Edit. If I point Adaxes at the domain controller of domain B I can get to the next screen where it says specify a service account. However after entering credentials I get " 'example.com' is not operational" where example.com is domain B.

Many Thanks

Answer 1

Hello Anton,

To manage multiple domains in Adaxes you do not need to install an instance of Adaxes service in each of the domains. You just need to register the domains in your existing service instance. For the registration to work, make sure that all the ports specified in the FAQ article you referenced are open.

Comments

Hi,

Thanks for getting back to me.

I have now taken this off to a development environment in which all windows firewalls are disabled and there is no firewall between the two domains.

From the Adaxes add a managed domain I can add 'dev' which is the domain 'dev.net' however when I try and enter credentials it says that 'dev.net' is not operational.

Is there anything else I can test to try and diagnose this?

---

Hello Anton,

It looks like some ports used by Adaxes are closed between the computer where Adaxes service is running and domain controllers of the domain you are registering. For details on the ports, have a lok at section Adaxes Service of the following FAQ article: https://www.adaxes.com/questions/20/what-ports-does-adaxes-use. Once all the ports are open, try to register the domain again.

---

If I want to setup a shared configuration as well across seperate domains. Ie. Domain A Adaxes is main and Domain B Adaxes tries to connect to the one in Domain A as a shared configuration.

Do the ports just need to be open between Adaxes servers or do they need access to domain controllers as well?

---

Hello Anton,

You will need to open all the ports used by Adaxes service for both computers. Also, you will need to open the RPC ports for replication between the computers where the instances of Adaxes service will be installed.

---

Any ideas, firewall disabled on both machines and no firewall between? Trying to connect from dev.net domain to home.net domain. Both users are domain admins.

Note: Adaxes does see the adaxes service when I hit select

---

Hello Anton,

Did you open all the required ports between the computer in dev.net where Adaxes service is installed and a domain controller (DC) of domain home.net? The ports need to be open for outgoing connections on the computer where your Adaxes service is installed, and for incoming connections on the DC that you want Adaxes to connect to.

---

This is how the firewalls are setup on all servers on both domains. Settings the same for domain, private and public profile. Severs can both see each other, DNS lookup resolves okay. Don't know what else I can look into.

---

Hello Anton,

What about the domain controller (DC) of domain home.net? Did you make sure that all the required ports are open for incoming connections there?

Also, according to your last screenshot, you are attempting to install a new instance of Adaxes service sharing common configuration with an existing one, not to just register a domain. It will not work in your case as such installation requires trust relationships between the domains.