Latest Contributions by ChristopherPawlyszyn

I published a zipped file geodatabase, but the publishing process should be analogous for a hosted feature layer through the Portal Home application. ... View more

Happy to help, glad it was easy to resolve! ... View more

Is this dealing with ArcGIS Enterprise on Kubernetes, by chance? I am thinking so from the mentions of pods and replica sets.   If so, the forward proxy settings will be set in the Admin -> Security -> Config API with the appropriate non-proxy hosts defined, but that can only be done after the organization is configured. Another thing to make sure of is that the SSL certificate used for decryption is imported as a trusted certificate prior to setting those values. Configuration (Security)—ArcGIS REST APIs | ArcGIS Developers https://developers.arcgis.com/rest/enterprise-administration/enterprise/security-configuration.htm   That leaves us with a few options. You can install ArcGIS Server on a separate machine and go through either the online of offline authorization process, then use the keycodes file to authorize your ArcGIS Enterprise on Kubernetes deployment. This file is typically located in C:\Program Files\Esri\License10.9\sysgen\ and would need to be renamed with a '.ecp' extension before using during the create organization process. An existing keycodes file at the same version (10.9.x) would be adequate as well. Hope that helps! ... View more

Where/how did you create your certificate signing request (CSR) that you submitted to register.com?   Typically the private key is generated when you create the CSR, and the combined signed certificate (public key) and private key can be converted to PFX using a number of different tools. If you used IIS to create the CSR, you can import the signed certificate then export the combined public/private keys as a PFX file directly. ... View more

You should be able to run the utility and point the config-store field to a different directory. Since DyanamoDB/S3 are going to use either the access key or IAM role, it won't have the analogous filesystem permissions to reset. I used 'C:\arcgisserver\local' in my test, which proceeded without issue; I would also recommend checking the permissions on the 64-bit Python 2.7 installation (if present, was optional in 10.9.1). ... View more

With a SAML-based identity store, you'll want to include group membership as part of the SAML assertion for each user. There is a setting in the Portal settings for enabling enterprise group membership as part of the IDP configuration (under advanced settings), which will then allow you to specify the string that matches the value(s) sent in the user's SAML response from the IDP. The group store configuration you've displayed is specific to Windows AD/LDAP group membership, so wouldn't apply in this circumstance. See step 7 here: https://enterprise.arcgis.com/en/portal/latest/administer/windows/configure-azure-active-directory.htm#GUID-6E16C8E9-9FFD-4D89-8FBB-E08828B5369F ... View more

I would try making sure that the installation owner is able to write to the temp directory, another alternative may be to define the IATEMPDIR environment variable to redirect the installer to a known-working directory. Even though it isn't outlined in the docs, it applies to the License Manager installation in the same fashion it does for the other ArcGIS Enterprise components. Monthly Linux Tip: Handling Temp Space in ArcGIS Server https://www.esri.com/arcgis-blog/products/arcgis-enterprise/administration/monthly-linux-tip-handling-temp-space-in-arcgis-server/ ... View more

Typically customers would be using a subdomain of their primary domain, so gis.2nformspatial.com (for example) would be more common although using the primary domain shouldn't cause any issues outside of the validation that you mentioned. Regardless, the A record needs to be configured prior to kicking-off the deployment, so whatever site domain you've input points to the specified elastic IP address. Hopefully the chef-run logs have some more information to crack into this a bit further. ... View more

First, ArcGIS Server requires both DynamoDB and S3 when hosted in AWS cloud storage. DynamoDB is the primary store of config-store information while items that exceed the DynamoDB size limits are stored as pointers in the database to S3 objects. This means that mimicking this deployment style on-prem would require a DynamoDB-compatible database as well. DynamoDB Local is not supported for production deployments by AWS, so that may be a non-starter for ArcGIS Server in this deployment pattern. I did have success with configuring a private S3-compliant object store for Portal for ArcGIS content, but there are a few additional requirements that we will work to incorporate in our documentation. Additionally, the entries in the regionsforcloudstorage.dat are recognized from the .../Portal/framework/etc/ directory as you surmised, but require virtual-hosted style access to be available. This article from AWS goes into the differences in virtual-hosted style and path-style routing and the eventual deprecation of the path-style access. Amazon S3 Path Deprecation Plan – The Rest of the Story | AWS News Blog https://aws.amazon.com/blogs/aws/amazon-s3-path-deprecation-plan-the-rest-of-the-story/   My sample regionsforcloudstorage.dat contained the following information in both the 'regions' and 'Amazon' sections: { "name": "Custom In-house", "id": "custom-in-house", "s3endpoint": "objectstore.domain.com", "blobStoreEndpoint": "objectstore.domain.com" } I confirmed my object storage was configured to allow access to portalcontent.objectstore.domain.com and DNS was configured properly for both aliases. Then my Portal for ArcGIS site creation JSON was (using a pre-created bucket named 'portalcontent'): { "type": "cloudStore", "provider": "Amazon", "connectionString": {"accessKeyId":"<accessKey>","secretAccessKey": "<secretKey>","region": "custom-in-house","credentialType": "accessKey"}, "objectStore": "portalcontent" }   FYI: Here is the current latest AWS S3 region file: https://s3.amazonaws.com/esriresources/1091/regionsforcloudstorage.dat ... View more