Ping a Specific Port

Question

Colin Dekker

Asked: 2011-03-17 03:55:09 +0800 CST2011-03-17 03:55:09 +0800 CST 2011-03-17 03:55:09 +0800 CST

Active Directory Claims based Authentication error in SharePoint

772

I am trying to log into a new SharePoint application, which has it's authentication method set to Claims based authentication (CBA). The user I am logging in with is Site collection admin. When trying to log in I get the access denied page. When looking in the event log on the WFE the site is running on, I see the following error:

An exception occurred in Active Directory claim provider when calling SPClaimProvider.FillResolveClaim(): Requested registry access is not allowed.

Event ID: 8307

User: NT AUTHORITY\IUSR

I get why IUSR would not have registry access, but why would SharePoint run a request under that account, the webapp is running under a domain service account? Pretty much everything is running as it should except this web app. The Claims based authentication is needed because of search requirements (one-way domain trusts).

1 Answers

Voted

Colin Dekker · Answer 1 · 2011-03-19T04:18:19+08:00

Best Answer

Colin Dekker

2011-03-19T04:18:19+08:002011-03-19T04:18:19+08:00

Ended up rebuilding the farm, after a clean install verything worked. One-way domain trusts need a lot of pre work is all i can say...

2

Active Directory Claims based Authentication error in SharePoint

Ping a Specific Port

Check if port is open or closed on a Linux server?

How to automate SSH login with password?

How do I tell Git for Windows where to find my private RSA key?

What's the default superuser username/password for postgres after a new install?

What port does SFTP use?

Resolve host name from IP address

Command line to list users in a Windows Active Directory group?

What is a Pem file and how does it differ from other OpenSSL Generated Key File Formats?

How to determine if a bash variable is empty?