The portal is configured to kerberos, when a user try to access the portal he gets an error, and in the events viewer I see this error " The portal was unable to complete a request and showed a user the default error page. An unhandled exception was caught. Check the product diagnostic log file and then check the SharePoint log file." I configured the Portal to use NTLM, by changing the Authentication in the central administration page to kerberos, user is getting the same error The Sharepoint -80- application is running under the networkservice account. user is alreday imported from AD and has SID configured. Any Help

enable tracing http://setspn.blogspot.com/2010/06/fim-2010-enable-advanced-error-logging.html

enable tracing http://setspn.blogspot.com/2010/06/fim-2010-enable-advanced-error-logging.html

after I did this, the error now is "You don't have permission to access this site" yet my user account is in AD, FIM DB, and already have SID in DB, fully syncronized ?? any help

after I did this, the error now is "You don't have permission to access this site" yet my user account is in AD, FIM DB, and already have SID in DB, fully syncronized ?? any help

do you have a complete call stack? or screenshot?

do you have a complete call stack? or screenshot?

the event viewer now showing another error: Log Name: Application Source: ASP.NET 2.0.50727.0 Date: 12/15/2010 4:31:10 PM Event ID: 1309 Task Category: Web Event Level: Warning Keywords: Classic User: N/A Computer: ndcfim1.ho.ndc.net Description: Event code: 3005 Event message: An unhandled exception has occurred. Event time: 12/15/2010 4:31:10 PM Event time (UTC): 12/15/2010 12:31:10 PM Event ID: ac151fafc1f4426f9c94f6718c7a9b27 Event sequence: 27 Event occurrence: 4 Event detail code: 0 Application information: Application domain: /LM/W3SVC/763543876/ROOT-1-129368895151922942 Trust level: WSS_Minimal Application Virtual Path: / Application Path: C:\inetpub\wwwroot\wss\VirtualDirectories\80\ Machine name: NDCFIM1 Process information: Process ID: 3368 Process name: w3wp.exe Account name: NT AUTHORITY\NETWORK SERVICE Exception information: Exception type: UserNotFoundException Exception message: This user does not have access to FIM store Request information: Request URL: http://ndcfim1/IdentityManagement/default.aspx Request path: /IdentityManagement/default.aspx User host address: 10.200.44.239 User: NDC_DOMAIN\009914 Is authenticated: True Authentication Type: Negotiate Thread account name: NT AUTHORITY\NETWORK SERVICE Thread information: Thread ID: 6 Thread account name: NT AUTHORITY\NETWORK SERVICE Is impersonating: False Stack trace: at Microsoft.IdentityManagement.WebUI.Controls.UIUserDataUtils.get_UserData() at Microsoft.IdentityManagement.WebUI.Controls.NavigationBarProvider.GetUserIdentityAndTimeZone(Guid& userIdentity, TimeZoneInfo& userTimeZone) at Microsoft.IdentityManagement.WebUI.Controls.NavigationBarProvider.AddChildren(SiteMapNode rootNode, NavigationBarItem[] navigationBars) at Microsoft.IdentityManagement.WebUI.Controls.NavigationBarProvider.BuildSiteMap() at Microsoft.IdentityManagement.WebUI.Controls.NavigationBarProvider.get_RootNode() at System.Web.UI.WebControls.SiteMapDataSource.GetNodes() at System.Web.UI.WebControls.SiteMapDataSource.GetTreeView(String viewPath) at System.Web.UI.WebControls.HierarchicalDataBoundControl.GetData(String viewPath) at System.Web.UI.WebControls.Menu.DataBindItem(MenuItem item) at System.Web.UI.WebControls.Menu.PerformDataBinding() at System.Web.UI.WebControls.HierarchicalDataBoundControl.PerformSelect() at System.Web.UI.WebControls.BaseDataBoundControl.EnsureDataBound() at System.Web.UI.WebControls.Menu.EnsureDataBound() at System.Web.UI.WebControls.Menu.OnPreRender(EventArgs e, Boolean registerScript) at Microsoft.SharePoint.WebControls.AspMenu.OnPreRender(EventArgs e) at System.Web.UI.Control.PreRenderRecursiveInternal() at System.Web.UI.Control.PreRenderRecursiveInternal() at System.Web.UI.Control.PreRenderRecursiveInternal() at System.Web.UI.Control.PreRenderRecursiveInternal() at System.Web.UI.Control.PreRenderRecursiveInternal() at System.Web.UI.Control.PreRenderRecursiveInternal() at System.Web.UI.Control.PreRenderRecursiveInternal() at System.Web.UI.Page.ProcessRequestMain(Boolean includeStagesBeforeAsyncPoint, Boolean includeStagesAfterAsyncPoint) Custom event details: Event Xml: <Event xmlns="http://schemas.microsoft.com/win/2004/08/events/event"> <System> <Provider Name="ASP.NET 2.0.50727.0" /> <EventID Qualifiers="32768">1309</EventID> <Level>3</Level> <Task>3</Task> <Keywords>0x80000000000000</Keywords> <TimeCreated SystemTime="2010-12-15T12:31:10.000Z" /> <EventRecordID>16604</EventRecordID> <Channel>Application</Channel> <Computer>ndcfim1.ho.ndc.net</Computer> <Security /> </System> <EventData> <Data>3005</Data> <Data>An unhandled exception has occurred.</Data> <Data>12/15/2010 4:31:10 PM</Data> <Data>12/15/2010 12:31:10 PM</Data> <Data>ac151fafc1f4426f9c94f6718c7a9b27</Data> <Data>27</Data> <Data>4</Data> <Data>0</Data> <Data>/LM/W3SVC/763543876/ROOT-1-129368895151922942</Data> <Data>WSS_Minimal</Data> <Data>/</Data> <Data>C:\inetpub\wwwroot\wss\VirtualDirectories\80\</Data> <Data>NDCFIM1</Data> <Data> </Data> <Data>3368</Data> <Data>w3wp.exe</Data> <Data>NT AUTHORITY\NETWORK SERVICE</Data> <Data>UserNotFoundException</Data> <Data>This user does not have access to FIM store</Data> <Data>http://ndcfim1/IdentityManagement/default.aspx</Data> <Data>/IdentityManagement/default.aspx</Data> <Data>10.200.44.239</Data> <Data>NDC_DOMAIN\009914</Data> <Data>True</Data> <Data>Negotiate</Data> <Data>NT AUTHORITY\NETWORK SERVICE</Data> <Data>6</Data> <Data>NT AUTHORITY\NETWORK SERVICE</Data> <Data>False</Data> <Data> at Microsoft.IdentityManagement.WebUI.Controls.UIUserDataUtils.get_UserData() at Microsoft.IdentityManagement.WebUI.Controls.NavigationBarProvider.GetUserIdentityAndTimeZone(Guid&amp; userIdentity, TimeZoneInfo&amp; userTimeZone) at Microsoft.IdentityManagement.WebUI.Controls.NavigationBarProvider.AddChildren(SiteMapNode rootNode, NavigationBarItem[] navigationBars) at Microsoft.IdentityManagement.WebUI.Controls.NavigationBarProvider.BuildSiteMap() at Microsoft.IdentityManagement.WebUI.Controls.NavigationBarProvider.get_RootNode() at System.Web.UI.WebControls.SiteMapDataSource.GetNodes() at System.Web.UI.WebControls.SiteMapDataSource.GetTreeView(String viewPath) at System.Web.UI.WebControls.HierarchicalDataBoundControl.GetData(String viewPath) at System.Web.UI.WebControls.Menu.DataBindItem(MenuItem item) at System.Web.UI.WebControls.Menu.PerformDataBinding() at System.Web.UI.WebControls.HierarchicalDataBoundControl.PerformSelect() at System.Web.UI.WebControls.BaseDataBoundControl.EnsureDataBound() at System.Web.UI.WebControls.Menu.EnsureDataBound() at System.Web.UI.WebControls.Menu.OnPreRender(EventArgs e, Boolean registerScript) at Microsoft.SharePoint.WebControls.AspMenu.OnPreRender(EventArgs e) at System.Web.UI.Control.PreRenderRecursiveInternal() at System.Web.UI.Control.PreRenderRecursiveInternal() at System.Web.UI.Control.PreRenderRecursiveInternal() at System.Web.UI.Control.PreRenderRecursiveInternal() at System.Web.UI.Control.PreRenderRecursiveInternal() at System.Web.UI.Control.PreRenderRecursiveInternal() at System.Web.UI.Control.PreRenderRecursiveInternal() at System.Web.UI.Page.ProcessRequestMain(Boolean includeStagesBeforeAsyncPoint, Boolean includeStagesAfterAsyncPoint) </Data> </EventData> </Event> this user account has sharepoint admin privilage, part of the set administrators in FIM, fully sync with AD ??

the event viewer now showing another error: Log Name: Application Source: ASP.NET 2.0.50727.0 Date: 12/15/2010 4:31:10 PM Event ID: 1309 Task Category: Web Event Level: Warning Keywords: Classic User: N/A Computer: ndcfim1.ho.ndc.net Description: Event code: 3005 Event message: An unhandled exception has occurred. Event time: 12/15/2010 4:31:10 PM Event time (UTC): 12/15/2010 12:31:10 PM Event ID: ac151fafc1f4426f9c94f6718c7a9b27 Event sequence: 27 Event occurrence: 4 Event detail code: 0 Application information: Application domain: /LM/W3SVC/763543876/ROOT-1-129368895151922942 Trust level: WSS_Minimal Application Virtual Path: / Application Path: C:\inetpub\wwwroot\wss\VirtualDirectories\80\ Machine name: NDCFIM1 Process information: Process ID: 3368 Process name: w3wp.exe Account name: NT AUTHORITY\NETWORK SERVICE Exception information: Exception type: UserNotFoundException Exception message: This user does not have access to FIM store Request information: Request URL: http://ndcfim1/IdentityManagement/default.aspx Request path: /IdentityManagement/default.aspx User host address: 10.200.44.239 User: NDC_DOMAIN\009914 Is authenticated: True Authentication Type: Negotiate Thread account name: NT AUTHORITY\NETWORK SERVICE Thread information: Thread ID: 6 Thread account name: NT AUTHORITY\NETWORK SERVICE Is impersonating: False Stack trace: at Microsoft.IdentityManagement.WebUI.Controls.UIUserDataUtils.get_UserData() at Microsoft.IdentityManagement.WebUI.Controls.NavigationBarProvider.GetUserIdentityAndTimeZone(Guid& userIdentity, TimeZoneInfo& userTimeZone) at Microsoft.IdentityManagement.WebUI.Controls.NavigationBarProvider.AddChildren(SiteMapNode rootNode, NavigationBarItem[] navigationBars) at Microsoft.IdentityManagement.WebUI.Controls.NavigationBarProvider.BuildSiteMap() at Microsoft.IdentityManagement.WebUI.Controls.NavigationBarProvider.get_RootNode() at System.Web.UI.WebControls.SiteMapDataSource.GetNodes() at System.Web.UI.WebControls.SiteMapDataSource.GetTreeView(String viewPath) at System.Web.UI.WebControls.HierarchicalDataBoundControl.GetData(String viewPath) at System.Web.UI.WebControls.Menu.DataBindItem(MenuItem item) at System.Web.UI.WebControls.Menu.PerformDataBinding() at System.Web.UI.WebControls.HierarchicalDataBoundControl.PerformSelect() at System.Web.UI.WebControls.BaseDataBoundControl.EnsureDataBound() at System.Web.UI.WebControls.Menu.EnsureDataBound() at System.Web.UI.WebControls.Menu.OnPreRender(EventArgs e, Boolean registerScript) at Microsoft.SharePoint.WebControls.AspMenu.OnPreRender(EventArgs e) at System.Web.UI.Control.PreRenderRecursiveInternal() at System.Web.UI.Control.PreRenderRecursiveInternal() at System.Web.UI.Control.PreRenderRecursiveInternal() at System.Web.UI.Control.PreRenderRecursiveInternal() at System.Web.UI.Control.PreRenderRecursiveInternal() at System.Web.UI.Control.PreRenderRecursiveInternal() at System.Web.UI.Control.PreRenderRecursiveInternal() at System.Web.UI.Page.ProcessRequestMain(Boolean includeStagesBeforeAsyncPoint, Boolean includeStagesAfterAsyncPoint) Custom event details: Event Xml: <Event xmlns="http://schemas.microsoft.com/win/2004/08/events/event"> <System> <Provider Name="ASP.NET 2.0.50727.0" /> <EventID Qualifiers="32768">1309</EventID> <Level>3</Level> <Task>3</Task> <Keywords>0x80000000000000</Keywords> <TimeCreated SystemTime="2010-12-15T12:31:10.000Z" /> <EventRecordID>16604</EventRecordID> <Channel>Application</Channel> <Computer>ndcfim1.ho.ndc.net</Computer> <Security /> </System> <EventData> <Data>3005</Data> <Data>An unhandled exception has occurred.</Data> <Data>12/15/2010 4:31:10 PM</Data> <Data>12/15/2010 12:31:10 PM</Data> <Data>ac151fafc1f4426f9c94f6718c7a9b27</Data> <Data>27</Data> <Data>4</Data> <Data>0</Data> <Data>/LM/W3SVC/763543876/ROOT-1-129368895151922942</Data> <Data>WSS_Minimal</Data> <Data>/</Data> <Data>C:\inetpub\wwwroot\wss\VirtualDirectories\80\</Data> <Data>NDCFIM1</Data> <Data> </Data> <Data>3368</Data> <Data>w3wp.exe</Data> <Data>NT AUTHORITY\NETWORK SERVICE</Data> <Data>UserNotFoundException</Data> <Data>This user does not have access to FIM store</Data> <Data>http://ndcfim1/IdentityManagement/default.aspx</Data> <Data>/IdentityManagement/default.aspx</Data> <Data>10.200.44.239</Data> <Data>NDC_DOMAIN\009914</Data> <Data>True</Data> <Data>Negotiate</Data> <Data>NT AUTHORITY\NETWORK SERVICE</Data> <Data>6</Data> <Data>NT AUTHORITY\NETWORK SERVICE</Data> <Data>False</Data> <Data> at Microsoft.IdentityManagement.WebUI.Controls.UIUserDataUtils.get_UserData() at Microsoft.IdentityManagement.WebUI.Controls.NavigationBarProvider.GetUserIdentityAndTimeZone(Guid&amp; userIdentity, TimeZoneInfo&amp; userTimeZone) at Microsoft.IdentityManagement.WebUI.Controls.NavigationBarProvider.AddChildren(SiteMapNode rootNode, NavigationBarItem[] navigationBars) at Microsoft.IdentityManagement.WebUI.Controls.NavigationBarProvider.BuildSiteMap() at Microsoft.IdentityManagement.WebUI.Controls.NavigationBarProvider.get_RootNode() at System.Web.UI.WebControls.SiteMapDataSource.GetNodes() at System.Web.UI.WebControls.SiteMapDataSource.GetTreeView(String viewPath) at System.Web.UI.WebControls.HierarchicalDataBoundControl.GetData(String viewPath) at System.Web.UI.WebControls.Menu.DataBindItem(MenuItem item) at System.Web.UI.WebControls.Menu.PerformDataBinding() at System.Web.UI.WebControls.HierarchicalDataBoundControl.PerformSelect() at System.Web.UI.WebControls.BaseDataBoundControl.EnsureDataBound() at System.Web.UI.WebControls.Menu.EnsureDataBound() at System.Web.UI.WebControls.Menu.OnPreRender(EventArgs e, Boolean registerScript) at Microsoft.SharePoint.WebControls.AspMenu.OnPreRender(EventArgs e) at System.Web.UI.Control.PreRenderRecursiveInternal() at System.Web.UI.Control.PreRenderRecursiveInternal() at System.Web.UI.Control.PreRenderRecursiveInternal() at System.Web.UI.Control.PreRenderRecursiveInternal() at System.Web.UI.Control.PreRenderRecursiveInternal() at System.Web.UI.Control.PreRenderRecursiveInternal() at System.Web.UI.Control.PreRenderRecursiveInternal() at System.Web.UI.Page.ProcessRequestMain(Boolean includeStagesBeforeAsyncPoint, Boolean includeStagesAfterAsyncPoint) </Data> </EventData> </Event> this user account has sharepoint admin privilage, part of the set administrators in FIM, fully sync with AD ??

after I changed the auth. to NTLM I still get the same error. Request information: Request URL: http://ndcfim1/IdentityManagement/default.aspx Request path: /IdentityManagement/default.aspx User host address: ::1 User: NDC_DOMAIN\009914 Is authenticated: True Authentication Type: NTLM Thread account name: NT AUTHORITY\NETWORK SERVICE

after I changed the auth. to NTLM I still get the same error. Request information: Request URL: http://ndcfim1/IdentityManagement/default.aspx Request path: /IdentityManagement/default.aspx User host address: ::1 User: NDC_DOMAIN\009914 Is authenticated: True Authentication Type: NTLM Thread account name: NT AUTHORITY\NETWORK SERVICE

Besides the SID for the user in the Portal do you also have the following attributes covered? FIM Portal Access: Every user who accesses the FIM Portal must have an Account in Active Directory and a resource in the FIM Service database with the ObjectSID, Domain, and Accountname attributes representing the user in Active Directory. From: http://social.technet.microsoft.com/Forums/en-US/ilm2/thread/f4f5b0a8-38c2-4fff-ac71-88dd8aa6acc9/http://setspn.blogspot.com

it was the domain attribute that was missing. THANKS