Month: April 2011

Categories
Knowledge Support Support exacqVision Client Products

Troubleshooting Active Directory Error Messages

Error: “Client Side Kerberos Authentication Failed”

Cause: The setspn command was not run on all Active Directory Servers, or there is a duplicate SPN.

Solution: On the DC, run the setspn command as directed in the appropriate ExacqVision Active Directory setup guide, or run setspn -X to check for duplicates. If a duplicate is found, remove the SPN attribute from all but one of the accounts.

Error: “User not authenticated in LDAP”

Cause: Windows 2000 or earlier Active Directory Domain Functional Level.

Solution: Upgrade the Functional Level of your Domain to Windows 2003 or higher.
See How to raise Active Directory domain and forest functional levels for details.

Alternate Solution:

  • If you are using ExacqVision 4.8 or newer, you can edit the StreamPI.xml file. Change the value of EnableActiveDirectoryUserDisabling from 1 to 0.
  • If you are using an ExacqVision version earlier than 4.8, contact support@exacq.com to obtain an updated DLL.

Error: The connection to the server always shows “Disconnected” in the ExacqVision Client.

Cause: The Binding DN is incorrect.

Solution: Complete the following procedure:

  1. Download Softerra LDAP Browser. (Be sure to click the tab for Browser, NOT Administrator.)
  2. Install and Run LDAP Browser.
  3. Click File and then New Profile.
  4. Enter a name for your new profile and click Next.
  5. Enter the hostname of your AD server in the Host field (or click the Lookup Servers button if you don’t know the host).
  6. Click Next.
  7. Select Currently Logged On User.
  8. Click Finish.
  9. Highlight the new profile you just created in the left panel.
  10. In the Find What box at the top of the right panel, enter the username used to connect to Active Directory in the ExacqVision software.
  11. Press Enter.
  12. After the search completes, find the correct user account.
  13. Right-click the user account and select Properties.
  14. Copy the string in the top portion of the Properties Panel (it should start with CN=).
  15. Paste this string into the Binding DN section of your ExacqVision Client and click Apply.

Error: “Connected, SPN not found”

While there are other possible causes, it’s common for a ‘Binding DN’ to be an extended string that is easy to mistype. For instance the following Distinguished Name will work, but must be typed exactly: 

CN=exacqSVC,OU=ServiceAccounts,OU=SecurityGroups,OU=Indiana,OU=US,DC=exacqts,DC=local

Any incorrect spacing or punctuation will not allow proper setting of the SPN and you will see the following Server log:

StreamPI Warning LDAP: Bind DN was not found. Unable to create SPN.

You can also try the Username instead. In this instance, the username (UPN) for that account is:

exacqSVC@exacqts.local

<br>

Categories
Knowledge Support Support exacqVision Client Categories Products

No Audio from PC Speaker on Linux-Based exacqVision Systems

If you cannot hear audio on Linux-based exacqVision (eV) systems, try adjusting the volume setting on the front speaker (the default setting is for this volume is zero). To adjust the volume setting, complete the following steps:

  1. Exit the eV Client software and log out of the user account.
  2. Log in to Linux using an administrator account.
  3. In the bottom-right corner of the main window, left-click the speaker icon and select Open Volume Control from the pop-up menu.
  4. Make sure Mute is NOT selected for the Master or Front volume settings. You can tell that Mute is selected if the speaker icon below the settings’ slider bars is obscured by a red “x.”
  5. Move the Master and Front volume settings sliders up.
  6. Test the audio in eV Client.
  7. If necessary, repeat these steps to change the volume settings to an appropriate level.

<br>

No-Audio-from-PC-Speaker-on-Linux-Based-exacqVision-Systems.pdf
Categories
Knowledge Support Support exacqVision Mobile Categories Products

VGA/DVI Monitor Adapter for First-generation iPad Not Compatible with exacqVision Client

The external VGA/DVI monitor adapter for a first-generation iPad is not compatible with Exacq Mobile 3. However, the adapter for iPad 2 is compatible with Exacq Mobile 3.

<br>

Categories
Knowledge Support Support exacqVision Server Categories Products

On-screen Time Display is Incorrect and Recorded Video Cannot be Found

Background Information

  • The exacqVision Server receives time-stamped video from most camera models, which indexes stored video.<br><br>
  • The exacqVision Server configures the cameras to receive time synchronization from a network time server (normally the exacqVision Server itself) and sets the camera time zone to GMT-0.<br><br>
  • If the camera and server times aren’t synchronized, video is stored with the wrong time stamp.<br><br>

Diagnostic Steps

  1. Monitor the affected camera’s video on the Live video page. If the on-screen time and date display are enabled, but the information is incorrect, skip to Resolution. Otherwise continue to step 2, below.<br><br>
  2. On the Live video page, monitor the camera’s video until the panel border turns blue (indicating motion recording) or red (indicating alarm recording). Use the Search page to find the video matching this occurrence. If you cannot locate the video that you saw recorded, skip to Resolution. Otherwise, proceed to step 3, below.<br><br>
  3. Browse to the camera’s web page and observe whether the correct date and GMT time (not local) are displayed. If the camera isn’t configured to receive NTP updates from the IP address of the exacqVision Server, skip to Resolution, item 3. Otherwise, the exacqVision system is correctly recording video from the tested camera.<br><br>

Resolution

  1. On the Config page for the server, select Configure System and then the Date/Time tab. Ensure that the Time Server field contains a valid NTP server IP address or domain name.<br><br>
  2. If the date or time displayed on the Date/Time tab is incorrect, the time server connection is not working. Ensure that the IP address or domain name can be reached from the server.<br><br>
  3. Ping the NTP server using the domain name or IP address entered in the Time Server field. If the server is unreachable, confirm the correct gateway was entered on the Network settings tab.<br><br>
  4. If the problem persists, contact your network administrator.<br><br>
  5. If the camera’s NTP server is set to an invalid IP address, such as 0.0.0.0 or 127.0.0.1, antivirus software may be blocking the server software from receiving the IP address of the server from the operating system. You can reconfigure the antivirus software to allow exacqVision access to the server’s IP address. Alternatively, you can designate the exacqVision Server as the IP Camera Time Server.
    See also: Time Settings and Time Zone Information<br><br>
  6. Some cameras do not accept time updates from servers with a stratum of 16. You may need to check the stratum level on your system using the steps found in Explaining NTP.<br><br>
  7. Linux servers may also display “sync_alarm” to indicate that the server is not synchronized with the NTP server. The server may require up to 30 minutes of synchronization before the alarm disappears.<br><br>
  8. If the server is installed on a totally isolated network that will never have access to an internet-based time server, changing the address in the Time Server field to 127.127.1.0 should force the exacqVision Server to decrease the system’s stratum level to a lower value.<br><br>
  9. On the Add IP Cameras page, within the IP Camera List panel, disable then re-enable each device to reset the camera connection. During the reconnection process, exacqVision sends the new time server IP address to the cameras.<br><br>
  10. Refresh the camera’s web interface that displays the NTP server address; it should now show the time server address entered in the steps above.<br><br>

<br>