Pertino - Is Anyone Successfully Using Any Version Above 510 with DNS/AD Connect?
- 
 @scottalanmiller said: We only run so many apps, so nearly everything is inside of Office 365. So not SSO itself, but it acts basically that way. That makes sense. 
 For those of us with legacy apps, we have to wait for our vendors to "catch up"
- 
 @FATeknollogee said: @scottalanmiller said: We only run so many apps, so nearly everything is inside of Office 365. So not SSO itself, but it acts basically that way. That makes sense. 
 For those of us with legacy apps, we have to wait for our vendors to "catch up"Or not use AD. Always an option. 
- 
 @Dashrender The cloud is the devil. Problem is that local servers are also the devil.  
- 
 @scottalanmiller said: Or not use AD. Always an option. Not when you need the app & AD is the only option to authenticate! 
- 
 @FATeknollogee said: @scottalanmiller said: Or not use AD. Always an option. Not when you need the app & AD is the only option to authenticate! What app requires AD for all authentication? 
- 
 @FATeknollogee For us though, ZT always tends to focus on the future. We don't work too hard to support things that are too legacy, at least right now, because we are a very lean little startup. If we had more resources we might if there were a demonstrated market. 
- 
 @FATeknollogee said: @scottalanmiller said: Or not use AD. Always an option. Not when you need the app & AD is the only option to authenticate! huh - have you asked that vendor if they are developing to be able to use Azure AD as well as legacy AD? 
- 
 @Dashrender said: @FATeknollogee said: @scottalanmiller said: Or not use AD. Always an option. Not when you need the app & AD is the only option to authenticate! huh - have you asked that vendor if they are developing to be able to use Azure AD as well as legacy AD? Or just, you know, local authentication! 
- 
 @adam.ierymenko said: @FATeknollogee For us though, ZT always tends to focus on the future. We don't work too hard to support things that are too legacy, at least right now, because we are a very lean little startup. If we had more resources we might if there were a demonstrated market. Believe me, I love ZT. Getting ready to spend the $4/mo on a couple of networks  
- 
 @Dashrender said: huh - have you asked that vendor if they are developing to be able to use Azure AD as well as legacy AD? Not lately, thx for reminding me. Let me check! 
- 
 @Dashrender said: @FATeknollogee said: @Dashrender said: Oh i agree - and I'm trying to do the same, and I've already one it for one client. Same question for you @Dashrender What is your "AD"? Personally I have a Windows 2012R2 onsite AD system. VM's of course. Same here. 
- 
 @hubtechagain said: yeah, i've never not had issues with it. for atleast a year or so now. Bummer. I kept seeing everyone in SW always say how great it was and easy it is, blah blah blah. I am starting to think the greatness aspect is a thing of the past. If I can't get this thing dialed in by the end of next week, then I am just going to ask for a refund and look into another way to provide VPN services. Kinda bummed about this. 
- 
 @wrx7m said: @hubtechagain said: yeah, i've never not had issues with it. for atleast a year or so now. Bummer. I kept seeing everyone in SW always say how great it was and easy it is, blah blah blah. I am starting to think the greatness aspect is a thing of the past. If I can't get this thing dialed in by the end of next week, then I am just going to ask for a refund and look into another way to provide VPN services. Kinda bummed about this. Do you have it deployed to everything in the environment? One thing Scott told me a while ago was that something like Pertino is not meant to be on just a device here or there - it's meant to be on all device everywhere. 
- 
 Sounds like he's having issues with versions after 510. We stopped using VPN before that, so haven't seen those issues. 
- 
 @Dashrender said: @wrx7m said: @hubtechagain said: yeah, i've never not had issues with it. for atleast a year or so now. Bummer. I kept seeing everyone in SW always say how great it was and easy it is, blah blah blah. I am starting to think the greatness aspect is a thing of the past. If I can't get this thing dialed in by the end of next week, then I am just going to ask for a refund and look into another way to provide VPN services. Kinda bummed about this. Do you have it deployed to everything in the environment? One thing Scott told me a while ago was that something like Pertino is not meant to be on just a device here or there - it's meant to be on all device everywhere. Sames goes for ZeroTier as well, just in case you were checking that one out. 
- 
 @Dashrender I am attempting to use it for remote devices only and use their gateway feature to allow access to certain servers from those remote locations. You only have to install the client on DNS/DC servers and those clients that you want to provide access to. For the gateway, it needs to be ubuntu or centos. Pertino, in intent, is perfect for what I am trying to do. In practice it doesn't seem to do much of anything correctly. 
- 
 @dafyre Yeah, I am aware of that, as well. Thanks. 
- 
 @wrx7m said: @Dashrender I am attempting to use it for remote devices only and use their gateway feature to allow access to certain servers from those remote locations. You only have to install the client on DNS/DC servers and those clients that you want to provide access to. For the gateway, it needs to be ubuntu or centos. Pertino, in intent, is perfect for what I am trying to do. In practice it doesn't seem to do much of anything correctly. The gateway is likely part of the issue. It adds a tremendous amount of complication and isn't something that any of us have tested. So there is a chance that that is where the issues come from. In a pure mesh mode as it was always used in the past, it was solid. 
- 
 @scottalanmiller Yeah. If I have 510 on my DCs, DNS works fine for my entire network. Later builds have really screwed me. And the gateway has never worked. 
- 
 Are you paying for the AD add-on? 


