Devolutions Server 4.0 - Nested Groups dont work anymore

I'm back on Version 3.2 now.
Please let me know when this is fixed.

Thanks,

Benjamin Schrupp

Hello,

We're working on it, we'll keep you posted.


Best regards,

Hello,

The issue is fixed and the version 4.0.1.0 of DVLS has been released.

Best regards,

Hi,

its not fixed! At all its worse than before.

After the Update to Version 4.0.1.0 I was able to connect with local Admin-Account (type: Custom (Devolutions)).
Domain-Accounts work sometimes. I got the following errors:



Credentials were definitive correct

A lot of upcoming Authentication-Windows (ca. 5 times)


And after a few tries to refresh with STRG + F5 I got this



Sometimes (very rarely) I could connect with a Domain Account. Then I saw the entries where the permissions come from nested groups, but not the entries where my account was granded access directly in an AD-Group.

Server thows the following Errors:

I hope this helps you troubleshooting the issues.

Benjamin Schrupp

Hello,

Best regards,

Hello,

Could you please send me the web.config file in a private message? Remove all passwords you will find in that file.

Best regards,

Hello,

Thank you for your file.

In the Server Settings of your Devolutions Server instance, have you set an Administration credentials account in the Domain tab of the Authentication tab?



The administrator account must have full read permissions over the domain to be able to get all information about AD users and AD groups.

Best regards,

Hi Erica,

here is what i did:

- Updating Devolutions Server to Version 4.0.1.0
- Updateing RDM to Version 12.0.2.0
- Clicking Edit on the Devolutions Server Tab



- Prompting for Credentials (Credentials were correct)






- Next Windows opens after reauthentication and clicking OK
- Tried Connection successfully (Logged on Account and specific AD-Account worked)




- Checked the Diagnostic and installed IIS Rewrite Module




- Authentication does not really work at all



- Here the Setting Pane



- Server throws these Exceptions:

I think this exception was during the Server Update...

Then I hab an idea:
It felt like, that the credentials used in RDM are passed to the SQL-Database. And there they are not allowed to login.
I created a user / group with no specific rights and tried again.




Authentication for this group / user worked well. No errors anymore.
But RDM loads only the elements with direct permission in AD. For the nested group elements I need to press STRG + F5.

Its alway the same behavior when restarting RDM. Only after pressing STRG + F5 I see the elements for nested groups.


Hope that helps to identify the issue.

regards,

Benjamin

Hello,

I will recommend you to restore, from a backup, your last working installation of DVLS 3.2.x and reinstall RDM 11.7.6.0.

Actually, we are working on a fix for this bug and we will not release a new version this week.

Best regards,

Hi,

sure, I've already done this.
Then I'm waiting for the next Update.
Thanks,

Benjamin

We have tried to reproduce the COMException that you are experiencing, but without success.

I have added locking instructions to protect a certain pathway. As soon as I have a build we would like to test it.

We will keep you posted


Best regards,

Hi,
are there any updates in VERSION 4.0.6.0 (January 3rd 2017) that makes its worth testing it with my AD nested Groups Problem?
regards,
Ben

Hello,

Sorry but no updates about nested AD group in that version. You can consult the Change History web page for more information about fixes and improvements of Devolutions Server.

But for sure, I will let you know when a fix will be available!

Best regards,

Is there any indication of when this will be fixed? We can't take our environment into production status with this bug being there, as it will cause to much problems.

I don't really fancy rebuilding the environment from scratch on 3.2.x at the moment :-(

Hello,

We feel that it is fixed in our latest internal builds, but we've asked Erica to test it out with a few customer because the bug was never reproduced in any of our three test domains.

If you'd like, just send her at note at support@devolutions.net and she'll book a session to go through the process with you.


Best regards,

Hi Maurice,

Erica is the one who turned it off during a session last week..
I'll test to see if the issue still exists.

Regards,

Hello,

With your binaries it wont do a thing, you need our latest builds, and the one for the server is not public yet if I'm not mistaken

Then I will plan something with Erica. Thanks!

Any Updates new Status here?

@Benjamin, we're having a hard time getting feed back from the customers that we have asked to test out the solution.

If you are willing to work with Erica on the matter, send us a note at support@devolutions.net


Best regards,

Sure, no problem.
I send u a note.