The last day I'm experiencing a really weird problem. Whenever I try to access FIM Portal the only thing I see is an error page with the big red title "Servicenot available" (in url it shows as http://fabrikamdc1/_layouts/MSILM2/ErrorPage.aspx?ErrorCode=3000). In the event viewer I can see only one error which reads as follows: Log Name: Application Source: Microsoft.ResourceManagement.PortalHealthSource Date: 11/29/2009 5:18:28 PM Event ID: 10 Task Category: None Level: Error Keywords: Classic User: N/A Computer: FABRIKAMDC1.fabrikam.com Description: The Portal cannot connect to the middle tier using the web service interface. This failure prevents all portal scenarios from functioning correctly. The cause may be due to a missing or invalid server url, a downed server, or an invalid server firewall configuration. Ensure the portal configuration is present and points to the resource management service. Event Xml: <Event xmlns="http://schemas.microsoft.com/win/2004/08/events/event"> <System> <Provider Name="Microsoft.ResourceManagement.PortalHealthSource" /> <EventID Qualifiers="0">10</EventID> <Level>2</Level> <Task>0</Task> <Keywords>0x80000000000000</Keywords> <TimeCreated SystemTime="2009-11-29T16:18:28.000Z" /> <EventRecordID>21963</EventRecordID> <Channel>Application</Channel> <Computer>FABRIKAMDC1.fabrikam.com</Computer> <Security /> </System> <EventData> <Data>The Portal cannot connect to the middle tier using the web service interface. This failure prevents all portal scenarios from functioning correctly. The cause may be due to a missing or invalid server url, a downed server, or an invalid server firewall configuration. Ensure the portal configuration is present and points to the resource management service.</Data> </EventData> </Event> Firstly, I thought that I haven't done configuration properly but than I realized that this problem starts to occur even on the preconfigured FIM 2010 RC1 eval hyper-v image. My custom testing environment and the preconfigured hyper-v image are on the same server. Yesterday this error dissapeared of itself and now it appears again. Does somebody have an idea what could be the problem.Any help appreciated.

Check that the FIM Service is running when you get the error. The Service is on a delayed start up so on the eval Hyper-V image can take some time tio start. You can go and start it yourself though.

OK. It turned out that I've forgot toestablish SPN for FIM in my custom environment :-(. Nevertheless, it's still a mystery for me that it happened in the fabrikam preconfigured environment. I'm pretty sure that FIM Service was still running, cause that machine has been powered on for acouple days. I'll see if that error occurs again. Anyway, thanks for the tip.

Hi The same problem: Service not available (http://fim2010/_layouts/MSILM2/ErrorPage.aspx?ErrorCode=3000) Tell my what I did wrong: "Fim2010" - server name "Domain" - my domain "Domain \ user1" - the user to install the components (administrator at fim2010) 1. Installed SQL Server 2008 SP1 2. Installed Sharepoint Services 3.0 SP2 (site http://fim2010 works) 3. Create user domain \ fim2010service, domain \ fim2010agent, domain \ fim2010notify 3.1 setspn-S HTTP/fim2010 domain \ fim2010notify 3.2 setspn-S FIMService/fim2010 domain \ fim2010notify 4. Established FIM Sync Service (using user domain \ fim2010service) 5. Established FIM Service and Portal 5.1 Certificate: Generate a new self-issued certificate 5.2 Service account name: fim2010agent 5.3 Service account domain: domain 5.4 Service email account: fim2010agent@domain.com 5.5 Synchronization Server: fim2010 5.6 FIM Management Agent Account: domain \ fim2010notify 5.7 FIM Service Server address: fim2010 5.8 Sharepoint site collection URL: http://fim2010 5.9 Check Grant authenticated users access to the FIM Portal site 5.10 Check Grant authenticated users access to the FIM Password Reset site After the installation has successfully entered the portal at http://fim2010/IdentityManagement/default.aspx under the user domain \ user1 In Management Policy Rules General: Users can read schema related resources = allow General: Users can read non-administrative configuration resources = allow User management: Users can read attributes of their own = allow User management: Users can read selected attributes of other users = allow In the Synchronization Service Manager configure agents to import users from Active Directory: 1. Management Agents -> Create 2. Name: Sync from Ad 3.1 Forest name: domain.com 3.2 User name: user1 3.3 Domain: domain 4 reported a special OU with a test user in Active Directory 5 Select Object Types - Posted by User 6 Select Attributes - displayName, givenName, objectSid, sAMAccountName, sn Adding a Run Profile follow these steps: Full Import (Stage Only), Full Synchronization, Export, Delta Import (Stage Only) The agent has successfully started and finds the test users. Make a second agent for the FIM 1. Management Agents -> Create 2. Name: Sync with FIM DB 3.1 Server: fim2010 3.2 Datebase: FIMService 3.3 FIM Service base address: http://fim2010:5725 3.4 Authentication mode - Windows integrated authentication 3.5 User name: fim2010notify 3.6 Domain: domain 4 Select object type - Added Group and Person 5 Configure object type mappings - Added Group = group, and Person = person 6.1 Configure attribute flow Data soutce object type: Person Metaverse object type: person Mapping Type: Direct Flow Direction: Export DisplayName <- displayName Domain <- domain FirstName <- firstName LastName <- lastName ObjectSID <- objectSid 6.2 Configure attribute flow Data soutce object type: Group Metaverse object type: group Mapping Type: Direct Flow Direction: Export DisplayName <- displayName Domain <- domain ObjectSID <- objectSid Adding a Run Profile follow these steps: Full Import and Full Synchronization, Export Under User1 I go to the portal without any problems. Under the test user - error Service Not Available PowerShell script http://social.technet.microsoft.com/Forums/en-US/ilm2/thread/3ec55d52-df26-4c09-9d92-24716636e460 fails: Error: Registry configuration and FIM MA configuration for MA account don't match! Where I was mistaken, and that missed?

Hi FighterZP Did you find a resolution? If so please could you share it as i have the same issue. Regards, Bradley

There are multiple ways of fixing this but you need to find out the cause. Some issues are: 1) SPN's set incorrectly. (Kerberos) 2) web.config file has localhost and not the NetBIOS name of the portal server.. Can you connect to the portal from the local machine using localhost ? What errors are you getting in the error logs ?

Having the same Issues, The FIM admins are fine but the regular users are having the problems, It has some thing to do with one of the MPR's when I disable it the user logs in and I see the message "welcome ( Username) " but when I enable the MPR back the user is not allowed to login. The user is present in FIM , is a member of AD What do I need to do ??????