password reset not working
Hi all, I am getting the following error in eventvwr when i try to register for password reset from the user test2user2 "A method call to an object in a COM+ application was rejected because the caller is not properly authorized to make this call. The COM+ application is configured to use Application and Component level access checks, and enforcement of these checks is currently enabled. The remainder of this message provides information about the component method that the caller attempted to invoke and the identity of the caller.Svc/Lvl/Imp = 10/6/3, Identity = ABC\test2user2" Can anyone let me know what permissions i have to give to the users who want to do password reset. I have followed the document by microsoft for the same but no help. I have DC in 32 bit windows server 2008 and FIM and SQL in windows server 2008 R2 64 bit. Thanks! Bundu
June 10th, 2011 9:12am

you hit an error when you try to REGISTER? If you refer to the screenshots at http://blogs.technet.com/b/aho/archive/2009/10/01/forefront-identity-manager-credential-management-part-1.aspx after which step do u see the error? Where did you see that error?
Free Windows Admin Tool Kit Click here and download it now
June 10th, 2011 9:45am

Thanks nTony for replying! Yes i get the error when i try to register. After referring to the screenshots at http://blogs.technet.com/b/aho/archive/2009/10/01/forefront-identity-manager-credential-management-part-1.aspx on the welcome screen itself i get the error.(screen shot1) additional eventvwr log: The description for Event ID 3 from source Application cannot be found. Either the component that raises this event is not installed on your local computer or the installation is corrupted. You can install or repair the component on the local computer. If the event originated on another computer, the display information had to be saved with the event. The following information was included with the event: mscorlib: System.ServiceModel.EndpointNotFoundException: There was no endpoint listening at http://http/ResourceManagementService/MEX that could accept the message. This is often caused by an incorrect address or SOAP action. See InnerException, if present, for more details. ---> System.Net.WebException: The remote name could not be resolved: 'http' at System.Net.HttpWebRequest.GetRequestStream(TransportContext& context) at System.Net.HttpWebRequest.GetRequestStream() at System.ServiceModel.Channels.HttpOutput.WebRequestHttpOutput.GetOutputStream() --- End of inner exception stack trace --- Server stack trace: at System.ServiceModel.Channels.HttpOutput.WebRequestHttpOutput.GetOutputStream() at System.ServiceModel.Channels.HttpOutput.Send(TimeSpan timeout) at System.ServiceModel.Channels.HttpChannelFactory.HttpRequestChannel.HttpChannelRequest.SendRequest(Message message, TimeSpan timeout) at System.ServiceModel.Channels.RequestChannel.Request(Message message, TimeSpan timeout) at System.ServiceModel.Dispatcher.RequestChannelBinder.Request(Message message, TimeSpan timeout) at System.ServiceModel.Channels.ServiceChannel.Call(String action, Boolean oneway, ProxyOperationRuntime operation, Object[] ins, Object[] outs, TimeSpan timeout) at System.ServiceModel.Channels.ServiceChannelProxy.InvokeService(IMethodCallMessage methodCall, ProxyOperationRuntime operation) at System.ServiceModel.Channels.ServiceChannelProxy.Invoke(IMessage message) Exception rethrown at [0]: at System.Runtime.Remoting.Proxies.RealProxy.HandleReturnMessage(IMessage reqMsg, IMessage retMsg) at System.Runtime.Remoting.Proxies.RealProxy.PrivateInvoke(MessageData& msgData, Int32 type) at System.ServiceModel.Description.IMetadataExchange.Get(Message request) at Microsoft.ResourceManagement.WebServices.MetadataClient.Get(String dialect, String identifier) at Microsoft.ResourceManagement.WebServices.Client.ResourceManagementClient.SchemaManagerImplementation.RefreshSchema() at Microsoft.ResourceManagement.WebServices.Client.ResourceManagementClient.SchemaManagerImplementation.get_Instance() at Microsoft.ResourceManagement.WebServices.Client.ResourceManagementClient.get_SchemaManager() at Microsoft.IdentityManagement.PasswordReset.GinaOperation.GetLoginId(String domainname, String username, UniqueIdentifier& userIdentifier) the message resource is present but the message is not found in the string/message table Any suggesstions where is the error? thanks! Bundu
June 10th, 2011 10:01am

when you installed the client, it asked for your server name. you must have entered the URL of it instead... either reinstall the client or update HKLM\SOFTWARE\Microsoft\Forefront Identity Manager\2010\Extensions\Intranet accordingly btw, the error you first post might be unrelated
Free Windows Admin Tool Kit Click here and download it now
June 10th, 2011 10:42am

Thanks! it worked!I was silly to add http instead of server name. My issue is resolved!Bundu
June 10th, 2011 11:10am

i am able to reset password from system but when i'm try to to change from portal htp://fim1/passwordportal it show error The fim password and Authentication Extensions experienced an error when trying to reset a password. please reinstall or contact your system Administrator what is the reason can u help pls RegardsBundu
Free Windows Admin Tool Kit Click here and download it now
June 10th, 2011 2:08pm

Hi, Has this been resolved? I have the same problem. "Register for Password Reset" and "Password Reset" succesful from the system and windows logon. "Register for Password Reset" succesful from the FIM Portal "Password Reset" from FIM Portal (http://FIMserver/PasswordPortal) shows the error: The fim password and Authentication Extensions experienced an error when trying to reset a password. please reinstall or contact your system Administrator I have set Anonymous Permissions directly in the PasswordReset Site under WSS and the same result. My current Sitelock box at client side is: I have removed the “:5725” and reset de “FIMPasswordReset” service in this last one, but the result not only is still the same but the registration process is damaged showing some error about “...proxy….or something…”.
October 25th, 2011 2:08pm

yes Fernando, Please perform the following steps:- Go to Internet explorer tools -->internet options-->Trusted sites zone. check the "enable " radio button for initialize and script activex control not marked as safe for scripting. This is disable by default. Restart IE and open FIM portal reset page.It should work. Thanks! HBB
Free Windows Admin Tool Kit Click here and download it now
November 3rd, 2011 3:02am

P.S. while that would work, you are lowering the security settings for your browser.The FIM Password Reset Blog http://blogs.technet.com/aho/
November 3rd, 2011 5:37am

This topic is archived. No further replies will be accepted.

Other recent topics Other recent topics