Portal Authentication
The portal is configured to kerberos, when a user try to access the portal he gets an error, and in the events viewer I see this error
"
The portal was unable to complete a request and showed a user the default error page.
An unhandled exception was caught.
Check the product diagnostic log file and then check the SharePoint log file."
I configured the Portal to use NTLM, by changing the Authentication in the central administration page to kerberos, user is getting the same error
The Sharepoint -80- application is running under the networkservice account.
user is alreday imported from AD and has SID configured.
Any Help
December 15th, 2010 5:03am
enable tracing
http://setspn.blogspot.com/2010/06/fim-2010-enable-advanced-error-logging.html
Free Windows Admin Tool Kit Click here and download it now
December 15th, 2010 7:00am
enable tracing
http://setspn.blogspot.com/2010/06/fim-2010-enable-advanced-error-logging.html
December 15th, 2010 7:00am
after I did this, the error now is "You don't have permission to access this site"
yet my user account is in AD, FIM DB, and already have SID in DB, fully syncronized
??
any help
Free Windows Admin Tool Kit Click here and download it now
December 15th, 2010 7:33am
after I did this, the error now is "You don't have permission to access this site"
yet my user account is in AD, FIM DB, and already have SID in DB, fully syncronized
??
any help
December 15th, 2010 7:33am
do you have a complete call stack? or screenshot?
Free Windows Admin Tool Kit Click here and download it now
December 15th, 2010 7:42am
do you have a complete call stack? or screenshot?
December 15th, 2010 7:42am
the event viewer now showing another error:
Log Name: Application
Source: ASP.NET 2.0.50727.0
Date: 12/15/2010 4:31:10 PM
Event ID: 1309
Task Category: Web Event
Level: Warning
Keywords: Classic
User: N/A
Computer: ndcfim1.ho.ndc.net
Description:
Event code: 3005
Event message: An unhandled exception has occurred.
Event time: 12/15/2010 4:31:10 PM
Event time (UTC): 12/15/2010 12:31:10 PM
Event ID: ac151fafc1f4426f9c94f6718c7a9b27
Event sequence: 27
Event occurrence: 4
Event detail code: 0
Application information:
Application domain: /LM/W3SVC/763543876/ROOT-1-129368895151922942
Trust level: WSS_Minimal
Application Virtual Path: /
Application Path: C:\inetpub\wwwroot\wss\VirtualDirectories\80\
Machine name: NDCFIM1
Process information:
Process ID: 3368
Process name: w3wp.exe
Account name: NT AUTHORITY\NETWORK SERVICE
Exception information:
Exception type: UserNotFoundException
Exception message: This user does not have access to FIM store
Request information:
Request URL:
http://ndcfim1/IdentityManagement/default.aspx
Request path: /IdentityManagement/default.aspx
User host address: 10.200.44.239
User: NDC_DOMAIN\009914
Is authenticated: True
Authentication Type: Negotiate
Thread account name: NT AUTHORITY\NETWORK SERVICE
Thread information:
Thread ID: 6
Thread account name: NT AUTHORITY\NETWORK SERVICE
Is impersonating: False
Stack trace: at Microsoft.IdentityManagement.WebUI.Controls.UIUserDataUtils.get_UserData()
at Microsoft.IdentityManagement.WebUI.Controls.NavigationBarProvider.GetUserIdentityAndTimeZone(Guid& userIdentity, TimeZoneInfo& userTimeZone)
at Microsoft.IdentityManagement.WebUI.Controls.NavigationBarProvider.AddChildren(SiteMapNode rootNode, NavigationBarItem[] navigationBars)
at Microsoft.IdentityManagement.WebUI.Controls.NavigationBarProvider.BuildSiteMap()
at Microsoft.IdentityManagement.WebUI.Controls.NavigationBarProvider.get_RootNode()
at System.Web.UI.WebControls.SiteMapDataSource.GetNodes()
at System.Web.UI.WebControls.SiteMapDataSource.GetTreeView(String viewPath)
at System.Web.UI.WebControls.HierarchicalDataBoundControl.GetData(String viewPath)
at System.Web.UI.WebControls.Menu.DataBindItem(MenuItem item)
at System.Web.UI.WebControls.Menu.PerformDataBinding()
at System.Web.UI.WebControls.HierarchicalDataBoundControl.PerformSelect()
at System.Web.UI.WebControls.BaseDataBoundControl.EnsureDataBound()
at System.Web.UI.WebControls.Menu.EnsureDataBound()
at System.Web.UI.WebControls.Menu.OnPreRender(EventArgs e, Boolean registerScript)
at Microsoft.SharePoint.WebControls.AspMenu.OnPreRender(EventArgs e)
at System.Web.UI.Control.PreRenderRecursiveInternal()
at System.Web.UI.Control.PreRenderRecursiveInternal()
at System.Web.UI.Control.PreRenderRecursiveInternal()
at System.Web.UI.Control.PreRenderRecursiveInternal()
at System.Web.UI.Control.PreRenderRecursiveInternal()
at System.Web.UI.Control.PreRenderRecursiveInternal()
at System.Web.UI.Control.PreRenderRecursiveInternal()
at System.Web.UI.Page.ProcessRequestMain(Boolean includeStagesBeforeAsyncPoint, Boolean includeStagesAfterAsyncPoint)
Custom event details:
Event Xml:
<Event xmlns="http://schemas.microsoft.com/win/2004/08/events/event">
<System>
<Provider Name="ASP.NET 2.0.50727.0" />
<EventID Qualifiers="32768">1309</EventID>
<Level>3</Level>
<Task>3</Task>
<Keywords>0x80000000000000</Keywords>
<TimeCreated SystemTime="2010-12-15T12:31:10.000Z" />
<EventRecordID>16604</EventRecordID>
<Channel>Application</Channel>
<Computer>ndcfim1.ho.ndc.net</Computer>
<Security />
</System>
<EventData>
<Data>3005</Data>
<Data>An unhandled exception has occurred.</Data>
<Data>12/15/2010 4:31:10 PM</Data>
<Data>12/15/2010 12:31:10 PM</Data>
<Data>ac151fafc1f4426f9c94f6718c7a9b27</Data>
<Data>27</Data>
<Data>4</Data>
<Data>0</Data>
<Data>/LM/W3SVC/763543876/ROOT-1-129368895151922942</Data>
<Data>WSS_Minimal</Data>
<Data>/</Data>
<Data>C:\inetpub\wwwroot\wss\VirtualDirectories\80\</Data>
<Data>NDCFIM1</Data>
<Data>
</Data>
<Data>3368</Data>
<Data>w3wp.exe</Data>
<Data>NT AUTHORITY\NETWORK SERVICE</Data>
<Data>UserNotFoundException</Data>
<Data>This user does not have access to FIM store</Data>
<Data>http://ndcfim1/IdentityManagement/default.aspx</Data>
<Data>/IdentityManagement/default.aspx</Data>
<Data>10.200.44.239</Data>
<Data>NDC_DOMAIN\009914</Data>
<Data>True</Data>
<Data>Negotiate</Data>
<Data>NT AUTHORITY\NETWORK SERVICE</Data>
<Data>6</Data>
<Data>NT AUTHORITY\NETWORK SERVICE</Data>
<Data>False</Data>
<Data> at Microsoft.IdentityManagement.WebUI.Controls.UIUserDataUtils.get_UserData()
at Microsoft.IdentityManagement.WebUI.Controls.NavigationBarProvider.GetUserIdentityAndTimeZone(Guid& userIdentity, TimeZoneInfo& userTimeZone)
at Microsoft.IdentityManagement.WebUI.Controls.NavigationBarProvider.AddChildren(SiteMapNode rootNode, NavigationBarItem[] navigationBars)
at Microsoft.IdentityManagement.WebUI.Controls.NavigationBarProvider.BuildSiteMap()
at Microsoft.IdentityManagement.WebUI.Controls.NavigationBarProvider.get_RootNode()
at System.Web.UI.WebControls.SiteMapDataSource.GetNodes()
at System.Web.UI.WebControls.SiteMapDataSource.GetTreeView(String viewPath)
at System.Web.UI.WebControls.HierarchicalDataBoundControl.GetData(String viewPath)
at System.Web.UI.WebControls.Menu.DataBindItem(MenuItem item)
at System.Web.UI.WebControls.Menu.PerformDataBinding()
at System.Web.UI.WebControls.HierarchicalDataBoundControl.PerformSelect()
at System.Web.UI.WebControls.BaseDataBoundControl.EnsureDataBound()
at System.Web.UI.WebControls.Menu.EnsureDataBound()
at System.Web.UI.WebControls.Menu.OnPreRender(EventArgs e, Boolean registerScript)
at Microsoft.SharePoint.WebControls.AspMenu.OnPreRender(EventArgs e)
at System.Web.UI.Control.PreRenderRecursiveInternal()
at System.Web.UI.Control.PreRenderRecursiveInternal()
at System.Web.UI.Control.PreRenderRecursiveInternal()
at System.Web.UI.Control.PreRenderRecursiveInternal()
at System.Web.UI.Control.PreRenderRecursiveInternal()
at System.Web.UI.Control.PreRenderRecursiveInternal()
at System.Web.UI.Control.PreRenderRecursiveInternal()
at System.Web.UI.Page.ProcessRequestMain(Boolean includeStagesBeforeAsyncPoint, Boolean includeStagesAfterAsyncPoint)
</Data>
</EventData>
</Event>
this user account has sharepoint admin privilage, part of the set administrators in FIM, fully sync with AD
??
Free Windows Admin Tool Kit Click here and download it now
December 15th, 2010 7:45am
the event viewer now showing another error:
Log Name: Application
Source: ASP.NET 2.0.50727.0
Date: 12/15/2010 4:31:10 PM
Event ID: 1309
Task Category: Web Event
Level: Warning
Keywords: Classic
User: N/A
Computer: ndcfim1.ho.ndc.net
Description:
Event code: 3005
Event message: An unhandled exception has occurred.
Event time: 12/15/2010 4:31:10 PM
Event time (UTC): 12/15/2010 12:31:10 PM
Event ID: ac151fafc1f4426f9c94f6718c7a9b27
Event sequence: 27
Event occurrence: 4
Event detail code: 0
Application information:
Application domain: /LM/W3SVC/763543876/ROOT-1-129368895151922942
Trust level: WSS_Minimal
Application Virtual Path: /
Application Path: C:\inetpub\wwwroot\wss\VirtualDirectories\80\
Machine name: NDCFIM1
Process information:
Process ID: 3368
Process name: w3wp.exe
Account name: NT AUTHORITY\NETWORK SERVICE
Exception information:
Exception type: UserNotFoundException
Exception message: This user does not have access to FIM store
Request information:
Request URL:
http://ndcfim1/IdentityManagement/default.aspx
Request path: /IdentityManagement/default.aspx
User host address: 10.200.44.239
User: NDC_DOMAIN\009914
Is authenticated: True
Authentication Type: Negotiate
Thread account name: NT AUTHORITY\NETWORK SERVICE
Thread information:
Thread ID: 6
Thread account name: NT AUTHORITY\NETWORK SERVICE
Is impersonating: False
Stack trace: at Microsoft.IdentityManagement.WebUI.Controls.UIUserDataUtils.get_UserData()
at Microsoft.IdentityManagement.WebUI.Controls.NavigationBarProvider.GetUserIdentityAndTimeZone(Guid& userIdentity, TimeZoneInfo& userTimeZone)
at Microsoft.IdentityManagement.WebUI.Controls.NavigationBarProvider.AddChildren(SiteMapNode rootNode, NavigationBarItem[] navigationBars)
at Microsoft.IdentityManagement.WebUI.Controls.NavigationBarProvider.BuildSiteMap()
at Microsoft.IdentityManagement.WebUI.Controls.NavigationBarProvider.get_RootNode()
at System.Web.UI.WebControls.SiteMapDataSource.GetNodes()
at System.Web.UI.WebControls.SiteMapDataSource.GetTreeView(String viewPath)
at System.Web.UI.WebControls.HierarchicalDataBoundControl.GetData(String viewPath)
at System.Web.UI.WebControls.Menu.DataBindItem(MenuItem item)
at System.Web.UI.WebControls.Menu.PerformDataBinding()
at System.Web.UI.WebControls.HierarchicalDataBoundControl.PerformSelect()
at System.Web.UI.WebControls.BaseDataBoundControl.EnsureDataBound()
at System.Web.UI.WebControls.Menu.EnsureDataBound()
at System.Web.UI.WebControls.Menu.OnPreRender(EventArgs e, Boolean registerScript)
at Microsoft.SharePoint.WebControls.AspMenu.OnPreRender(EventArgs e)
at System.Web.UI.Control.PreRenderRecursiveInternal()
at System.Web.UI.Control.PreRenderRecursiveInternal()
at System.Web.UI.Control.PreRenderRecursiveInternal()
at System.Web.UI.Control.PreRenderRecursiveInternal()
at System.Web.UI.Control.PreRenderRecursiveInternal()
at System.Web.UI.Control.PreRenderRecursiveInternal()
at System.Web.UI.Control.PreRenderRecursiveInternal()
at System.Web.UI.Page.ProcessRequestMain(Boolean includeStagesBeforeAsyncPoint, Boolean includeStagesAfterAsyncPoint)
Custom event details:
Event Xml:
<Event xmlns="http://schemas.microsoft.com/win/2004/08/events/event">
<System>
<Provider Name="ASP.NET 2.0.50727.0" />
<EventID Qualifiers="32768">1309</EventID>
<Level>3</Level>
<Task>3</Task>
<Keywords>0x80000000000000</Keywords>
<TimeCreated SystemTime="2010-12-15T12:31:10.000Z" />
<EventRecordID>16604</EventRecordID>
<Channel>Application</Channel>
<Computer>ndcfim1.ho.ndc.net</Computer>
<Security />
</System>
<EventData>
<Data>3005</Data>
<Data>An unhandled exception has occurred.</Data>
<Data>12/15/2010 4:31:10 PM</Data>
<Data>12/15/2010 12:31:10 PM</Data>
<Data>ac151fafc1f4426f9c94f6718c7a9b27</Data>
<Data>27</Data>
<Data>4</Data>
<Data>0</Data>
<Data>/LM/W3SVC/763543876/ROOT-1-129368895151922942</Data>
<Data>WSS_Minimal</Data>
<Data>/</Data>
<Data>C:\inetpub\wwwroot\wss\VirtualDirectories\80\</Data>
<Data>NDCFIM1</Data>
<Data>
</Data>
<Data>3368</Data>
<Data>w3wp.exe</Data>
<Data>NT AUTHORITY\NETWORK SERVICE</Data>
<Data>UserNotFoundException</Data>
<Data>This user does not have access to FIM store</Data>
<Data>http://ndcfim1/IdentityManagement/default.aspx</Data>
<Data>/IdentityManagement/default.aspx</Data>
<Data>10.200.44.239</Data>
<Data>NDC_DOMAIN\009914</Data>
<Data>True</Data>
<Data>Negotiate</Data>
<Data>NT AUTHORITY\NETWORK SERVICE</Data>
<Data>6</Data>
<Data>NT AUTHORITY\NETWORK SERVICE</Data>
<Data>False</Data>
<Data> at Microsoft.IdentityManagement.WebUI.Controls.UIUserDataUtils.get_UserData()
at Microsoft.IdentityManagement.WebUI.Controls.NavigationBarProvider.GetUserIdentityAndTimeZone(Guid& userIdentity, TimeZoneInfo& userTimeZone)
at Microsoft.IdentityManagement.WebUI.Controls.NavigationBarProvider.AddChildren(SiteMapNode rootNode, NavigationBarItem[] navigationBars)
at Microsoft.IdentityManagement.WebUI.Controls.NavigationBarProvider.BuildSiteMap()
at Microsoft.IdentityManagement.WebUI.Controls.NavigationBarProvider.get_RootNode()
at System.Web.UI.WebControls.SiteMapDataSource.GetNodes()
at System.Web.UI.WebControls.SiteMapDataSource.GetTreeView(String viewPath)
at System.Web.UI.WebControls.HierarchicalDataBoundControl.GetData(String viewPath)
at System.Web.UI.WebControls.Menu.DataBindItem(MenuItem item)
at System.Web.UI.WebControls.Menu.PerformDataBinding()
at System.Web.UI.WebControls.HierarchicalDataBoundControl.PerformSelect()
at System.Web.UI.WebControls.BaseDataBoundControl.EnsureDataBound()
at System.Web.UI.WebControls.Menu.EnsureDataBound()
at System.Web.UI.WebControls.Menu.OnPreRender(EventArgs e, Boolean registerScript)
at Microsoft.SharePoint.WebControls.AspMenu.OnPreRender(EventArgs e)
at System.Web.UI.Control.PreRenderRecursiveInternal()
at System.Web.UI.Control.PreRenderRecursiveInternal()
at System.Web.UI.Control.PreRenderRecursiveInternal()
at System.Web.UI.Control.PreRenderRecursiveInternal()
at System.Web.UI.Control.PreRenderRecursiveInternal()
at System.Web.UI.Control.PreRenderRecursiveInternal()
at System.Web.UI.Control.PreRenderRecursiveInternal()
at System.Web.UI.Page.ProcessRequestMain(Boolean includeStagesBeforeAsyncPoint, Boolean includeStagesAfterAsyncPoint)
</Data>
</EventData>
</Event>
this user account has sharepoint admin privilage, part of the set administrators in FIM, fully sync with AD
??
December 15th, 2010 7:45am
after I changed the auth. to NTLM I still get the same error.
Request information:
Request URL: http://ndcfim1/IdentityManagement/default.aspx
Request path: /IdentityManagement/default.aspx
User host address: ::1
User: NDC_DOMAIN\009914
Is authenticated: True
Authentication Type: NTLM
Thread account name: NT AUTHORITY\NETWORK SERVICE
Free Windows Admin Tool Kit Click here and download it now
December 15th, 2010 7:48am
after I changed the auth. to NTLM I still get the same error.
Request information:
Request URL: http://ndcfim1/IdentityManagement/default.aspx
Request path: /IdentityManagement/default.aspx
User host address: ::1
User: NDC_DOMAIN\009914
Is authenticated: True
Authentication Type: NTLM
Thread account name: NT AUTHORITY\NETWORK SERVICE
December 15th, 2010 7:48am
Besides the SID for the user in the Portal do you also have the following attributes covered?
FIM Portal Access:
Every user who accesses the FIM Portal must have an Account in Active Directory and a resource in the FIM Service database with the ObjectSID, Domain, and Accountname attributes representing the user in Active Directory.
From:
http://social.technet.microsoft.com/Forums/en-US/ilm2/thread/f4f5b0a8-38c2-4fff-ac71-88dd8aa6acc9/http://setspn.blogspot.com
Free Windows Admin Tool Kit Click here and download it now
December 15th, 2010 8:51am
it was the domain attribute that was missing.
THANKS
December 19th, 2010 12:20am