locked
Admin Console of CCF 2009 giving error RRS feed

  • General discussion


  • When we click on any node under CCF Admin Console e.g. Agents, Groups, Hosted Applications then it is giving below error:

    System.ServiceModel.Security.MessageSecurityException: The HTTP request is unauthorised with client authetiaction
    scheme 'Negotiate' The authetication header received from server was 'Negotiate,NTLM'-->System.Net.WebException:
    The remote server returned an error:(401) Unauthorised.

    Please assist!
    Friday, January 22, 2010 12:24 PM

All replies

  • Hi,

    Can you attach your app.config of the CCF Admin Console, and your web.config of the Microsoft.Ccf.Csr.WebServices.AdminConsole service 
    Tuesday, February 9, 2010 9:20 AM
  • <?xml version="1.0" encoding="utf-8"?>
    <configuration>
      <configSections>
        <sectionGroup name="Microsoft.Ccf">
          <!-- Logging Listeners -->
          <section name="Common.Listeners" type="Microsoft.Ccf.Common.Listeners.Configuration.ListenerConfigurationHandler, 
    
    Microsoft.Ccf.Common.Listeners" />
          <section name="Ccf.TypeProviders" type="Microsoft.Ccf.Common.TypeProvider.Configuration.TypeProviderSection, 
    
    Microsoft.Ccf.Common.TypeProvider" />
        </sectionGroup>
      </configSections>
      <Microsoft.Ccf>
        <Common.Listeners>
          <listeners>
            <add name="LoggingLogFile" type="Microsoft.Ccf.Common.Logging.Providers.LoggingLogFile, 
    
    Microsoft.Ccf.Common.Logging.Providers" logfile="C:\CCFServer.log" appname="Contact Center Framework" />
          </listeners>
        </Common.Listeners>
        <Ccf.TypeProviders defaultProvider="default">
          <types>
            <add name="default" type="Microsoft.Ccf.Common.TypeProvider.DefaultTypeProvider, Microsoft.Ccf.Common.TypeProvider, 
    
    Version=4.0.0.0, Culture=neutral, PublicKeyToken=4f00c1aa5320a4d9" />
            <!-- distinct types can be specified for ITypeResolver, ITypeLoader, and ITypeActivator if necessary -->
            <!-- the type="" attribute represents a convenience fallback value when the others have not been specified -->
            <!-- <add name="default" typeResolver="" typeLoader="" typeActivator="" /> -->
          </types>
        </Ccf.TypeProviders>
      </Microsoft.Ccf>
      <system.serviceModel>
        <client>
          <endpoint address="http://ccf/Microsoft.Ccf.Csr.WebServices.AdminConsole/AgentWS.svc"
              binding="basicHttpBinding" bindingConfiguration="Binding1"
              contract="Microsoft.Ccf.Tools.AdminConsole.Snapin.AgentService.AgentWS" />
          <endpoint address="http://ccf/Microsoft.Ccf.Csr.WebServices.AdminConsole/AppMappingWS.svc"
              binding="basicHttpBinding" bindingConfiguration="Binding1"
              contract="Microsoft.Ccf.Tools.AdminConsole.Snapin.AppMappingService.AppMappingWS" />
          <endpoint address="http://ccf/Microsoft.Ccf.Csr.WebServices.AdminConsole/ChannelWS.svc"
              binding="basicHttpBinding" bindingConfiguration="Binding1"
              contract="Microsoft.Ccf.Tools.AdminConsole.Snapin.ChannelService.ChannelWS" />
          <endpoint address="http://ccf/Microsoft.Ccf.Csr.WebServices.AdminConsole/ConfigurationWS.svc"
              binding="basicHttpBinding" bindingConfiguration="Binding1"
              contract="Microsoft.Ccf.Tools.AdminConsole.Snapin.ConfigurationService.ConfigurationWS" />
          <endpoint address="http://ccf/Microsoft.Ccf.Csr.WebServices.AdminConsole/DBAppMappingWS.svc"
              binding="basicHttpBinding" bindingConfiguration="Binding1"
              contract="Microsoft.Ccf.Tools.AdminConsole.Snapin.DBAppMappingService.DBAppMappingWS" />
          <endpoint address="http://ccf/Microsoft.Ccf.Csr.WebServices.AdminConsole/DBWorkflowMappingWS.svc"
              binding="basicHttpBinding" bindingConfiguration="Binding1"
              contract="Microsoft.Ccf.Tools.AdminConsole.Snapin.DBWorkflowMappingService.DBWorkflowMappingWS" />
          <endpoint address="http://ccf/Microsoft.Ccf.Csr.WebServices.AdminConsole/GroupsWS.svc"
              binding="basicHttpBinding" bindingConfiguration="Binding1"
              contract="Microsoft.Ccf.Tools.AdminConsole.Snapin.GroupService.GroupsWS" />
          <endpoint address="http://ccf/Microsoft.Ccf.Csr.WebServices.AdminConsole/HostedAppWS.svc"
              binding="basicHttpBinding" bindingConfiguration="Binding1"
              contract="Microsoft.Ccf.Tools.AdminConsole.Snapin.HostedAppService.HostedAppWS" />
          <endpoint address="http://ccf/Microsoft.Ccf.Csr.WebServices.AdminConsole/NonHostedAppWS.svc"
              binding="basicHttpBinding" bindingConfiguration="Binding1"
              contract="Microsoft.Ccf.Tools.AdminConsole.Snapin.NonHostedAppService.NonHostedAppWS" />
          <endpoint address="http://ccf/Microsoft.Ccf.Csr.WebServices.AdminConsole/RoleWS.svc"
              binding="basicHttpBinding" bindingConfiguration="Binding1"
              contract="Microsoft.Ccf.Tools.AdminConsole.Snapin.RoleService.RoleWS" />
          <endpoint address="http://ccf/Microsoft.Ccf.Csr.WebServices.AdminConsole/SettingsWS.svc"
              binding="basicHttpBinding" bindingConfiguration="Binding1"
              contract="Microsoft.Ccf.Tools.AdminConsole.Snapin.SettingsService.SettingsWS" />
          <endpoint address="http://ccf/Microsoft.Ccf.Csr.WebServices.AdminConsole/SkillWS.svc"
              binding="basicHttpBinding" bindingConfiguration="Binding1"
              contract="Microsoft.Ccf.Tools.AdminConsole.Snapin.SkillService.SkillWS" />
          <endpoint address="http://ccf/Microsoft.Ccf.Csr.WebServices.AdminConsole/WorkflowMappingWS.svc"
              binding="basicHttpBinding" bindingConfiguration="Binding1"
              contract="Microsoft.Ccf.Tools.AdminConsole.Snapin.WorkflowMappingService.WorkflowMappingWS" />
          <endpoint address="http://ccf/Microsoft.Ccf.Csr.WebServices.AdminConsole/WorkflowWS.svc"
              binding="basicHttpBinding" bindingConfiguration="Binding1"
              contract="Microsoft.Ccf.Tools.AdminConsole.Snapin.WorkflowService.WorkflowWS" />
          <endpoint address="http://ccf/Microsoft.Ccf.Csr.WebServices.AdminConsole/WorkflowStepWS.svc"
              binding="basicHttpBinding" bindingConfiguration="Binding1"
              contract="Microsoft.Ccf.Tools.AdminConsole.Snapin.WorkflowStepService.WorkflowStepWS" />
          <endpoint address="http://ccf/Microsoft.Ccf.Csr.WebServices.ContactCenter/Configuration.svc"
              binding="basicHttpBinding" bindingConfiguration="Binding1"
              contract="Microsoft.Ccf.Common.ConfigurationService.Configuration" />
        </client>
        <bindings>
          <basicHttpBinding>
            <binding name="Binding1">
              <security mode="TransportCredentialOnly">
                <transport clientCredentialType="Windows" />
              </security>
            </binding>
            <binding name="Binding2">
              <security mode="Transport">
                <transport clientCredentialType="Windows" />
              </security>
            </binding>
          </basicHttpBinding>
        </bindings>
      </system.serviceModel>
      <appSettings>
        <add key="UseAzman" value="true" />
        <add key="ConfigurationArea" value="AgentDesktop"/>
        <add key="DBConnectionString" value="Server=CRMSTAGINGNEW;Integrated 
    
    Security=true;Database=CcfInfrastructure;Pooling=true" />
        <!-- General settings for Admin tool-->
        <add key="AdminTool.LDAPPath" value = "LDAP://CN=Users,DC=FPS,DC=demo"/>
        <add key ="CurrentDomain" value="FPS"/>
        <add key ="ColumnNames.CustomUsername" value="CustomUsername"/>
        <add key ="ColumnNames.CustomDomain" value="CustomDomain"/>
        <add key ="ColumnNames.CCFUsername" value="CCFUsername"/>
        <add key ="SpreadSheetName" value="[Sheet1$]"/>
        <add key ="ADPasswordNeverExpires" value="true"/>
        <!-- value should be True/False-->
      </appSettings>
    </configuration>
    <?xml version="1.0"?>
    <configuration>
      <configSections>
        <sectionGroup name="Microsoft.Ccf">
          <section name="Common.Listeners" type="Microsoft.Ccf.Common.Listeners.Configuration.ListenerConfigurationHandler, 
    
    Microsoft.Ccf.Common.Listeners"/>
          <section name="Ccf.TypeProviders" type="Microsoft.Ccf.Common.TypeProvider.Configuration.TypeProviderSection, 
    
    Microsoft.Ccf.Common.TypeProvider" />
        </sectionGroup>
      </configSections>
      <Microsoft.Ccf>
        <Common.Listeners>
          <listeners>
            <add name="LoggingLogFile" type="Microsoft.Ccf.Common.Logging.Providers.LoggingLogFile, 
    
    Microsoft.Ccf.Common.Logging.Providers" logfile="C:\CCFServer.log" appname="Customer Care Framework"/>
          </listeners>
        </Common.Listeners>
        <Ccf.TypeProviders defaultProvider="default">
          <types>
            <add name="default" type="Microsoft.Ccf.Common.TypeProvider.DefaultTypeProvider, Microsoft.Ccf.Common.TypeProvider, 
    
    Version=4.0.0.0, Culture=neutral, PublicKeyToken=4f00c1aa5320a4d9" />
            <!-- distinct types can be specified for ITypeResolver, ITypeLoader, and ITypeActivator if necessary -->
            <!-- the type="" attribute represents a convenience fallback value when the others have not been specified -->
            <!-- <add name="default" typeResolver="" typeLoader="" typeActivator="" /> -->
          </types>
        </Ccf.TypeProviders>
      </Microsoft.Ccf>
      <system.serviceModel>
        <client>
          <endpoint address="http://ccf/Microsoft.Ccf.Csr.WebServices.ContactCenter/Configuration.svc"
            binding="basicHttpBinding" bindingConfiguration="Binding1" 
    
    contract="Microsoft.Ccf.Common.ConfigurationService.Configuration" />
        </client>
        <serviceHostingEnvironment aspNetCompatibilityEnabled="true" />
        <services>
          <service behaviorConfiguration="Behavior1" name="Microsoft.Ccf.Csr.WebServices.AgentWS">
            <endpoint address="http://ccf/Microsoft.Ccf.Csr.WebServices.AdminConsole/AgentWS.svc"
              binding="basicHttpBinding" bindingConfiguration="Binding1" contract="Microsoft.Ccf.Csr.WebServices.AgentWS" />
            <!-- When secure channel (SSL) is set to Required in IIS, change mexHttpBinding to mexHttpsBinding -->
            <endpoint address="mex" binding="mexHttpBinding" contract="IMetadataExchange" />
          </service>
          <service behaviorConfiguration="Behavior1" name="Microsoft.Ccf.Csr.WebServices.AppMappingWS">
            <endpoint address="http://ccf/Microsoft.Ccf.Csr.WebServices.AdminConsole/AppMappingWS.svc"
              binding="basicHttpBinding" bindingConfiguration="Binding1" contract="Microsoft.Ccf.Csr.WebServices.AppMappingWS" />
            <!-- When secure channel (SSL) is set to Required in IIS, change mexHttpBinding to mexHttpsBinding -->
            <endpoint address="mex" binding="mexHttpBinding" contract="IMetadataExchange" />
          </service>
          <service behaviorConfiguration="Behavior1" name="Microsoft.Ccf.Csr.WebServices.ChannelWS">
            <endpoint address="http://ccf/Microsoft.Ccf.Csr.WebServices.AdminConsole/ChannelWS.svc"
              binding="basicHttpBinding" bindingConfiguration="Binding1" contract="Microsoft.Ccf.Csr.WebServices.ChannelWS" />
            <!-- When secure channel (SSL) is set to Required in IIS, change mexHttpBinding to mexHttpsBinding -->
            <endpoint address="mex" binding="mexHttpBinding" contract="IMetadataExchange" />
          </service>
          <service behaviorConfiguration="Behavior1" name="Microsoft.Ccf.Csr.WebServices.ConfigurationWS">
            <endpoint address="http://ccf/Microsoft.Ccf.Csr.WebServices.AdminConsole/ConfigurationWS.svc"
              binding="basicHttpBinding" bindingConfiguration="Binding1" contract="Microsoft.Ccf.Csr.WebServices.ConfigurationWS" 
    
    />
            <!-- When secure channel (SSL) is set to Required in IIS, change mexHttpBinding to mexHttpsBinding -->
            <endpoint address="mex" binding="mexHttpBinding" contract="IMetadataExchange" />
          </service>
          <service behaviorConfiguration="Behavior1" name="Microsoft.Ccf.Csr.WebServices.DBAppMappingWS">
            <endpoint address="http://ccf/Microsoft.Ccf.Csr.WebServices.AdminConsole/DBAppMappingWS.svc"
              binding="basicHttpBinding" bindingConfiguration="Binding1" contract="Microsoft.Ccf.Csr.WebServices.DBAppMappingWS" 
    
    />
            <!-- When secure channel (SSL) is set to Required in IIS, change mexHttpBinding to mexHttpsBinding -->
            <endpoint address="mex" binding="mexHttpBinding" contract="IMetadataExchange" />
          </service>
          <service behaviorConfiguration="Behavior1" name="Microsoft.Ccf.Csr.WebServices.DBWorkflowMappingWS">
            <endpoint address="http://ccf/Microsoft.Ccf.Csr.WebServices.AdminConsole/DBWorkflowMappingWS.svc"
              binding="basicHttpBinding" bindingConfiguration="Binding1" 
    
    contract="Microsoft.Ccf.Csr.WebServices.DBWorkflowMappingWS" />
            <!-- When secure channel (SSL) is set to Required in IIS, change mexHttpBinding to mexHttpsBinding -->
            <endpoint address="mex" binding="mexHttpBinding" contract="IMetadataExchange" />
          </service>
          <service behaviorConfiguration="Behavior1" name="Microsoft.Ccf.Csr.WebServices.GroupsWS">
            <endpoint address="http://ccf/Microsoft.Ccf.Csr.WebServices.AdminConsole/GroupsWS.svc"
              binding="basicHttpBinding" bindingConfiguration="Binding1" contract="Microsoft.Ccf.Csr.WebServices.GroupsWS" />
            <!-- When secure channel (SSL) is set to Required in IIS, change mexHttpBinding to mexHttpsBinding -->
            <endpoint address="mex" binding="mexHttpBinding" contract="IMetadataExchange" />
          </service>
          <service behaviorConfiguration="Behavior1" name="Microsoft.Ccf.Csr.WebServices.HostedAppWS">
            <endpoint address="http://ccf/Microsoft.Ccf.Csr.WebServices.AdminConsole/HostedAppWS.svc"
              binding="basicHttpBinding" bindingConfiguration="Binding1" contract="Microsoft.Ccf.Csr.WebServices.HostedAppWS" />
            <!-- When secure channel (SSL) is set to Required in IIS, change mexHttpBinding to mexHttpsBinding -->
            <endpoint address="mex" binding="mexHttpBinding" contract="IMetadataExchange" />
          </service>
          <service behaviorConfiguration="Behavior1" name="Microsoft.Ccf.Csr.WebServices.NonHostedAppWS">
            <endpoint address="http://ccf/Microsoft.Ccf.Csr.WebServices.AdminConsole/NonHostedAppWS.svc"
              binding="basicHttpBinding" bindingConfiguration="Binding1" contract="Microsoft.Ccf.Csr.WebServices.NonHostedAppWS" 
    
    />
            <!-- When secure channel (SSL) is set to Required in IIS, change mexHttpBinding to mexHttpsBinding -->
            <endpoint address="mex" binding="mexHttpBinding" contract="IMetadataExchange" />
          </service>
          <service behaviorConfiguration="Behavior1" name="Microsoft.Ccf.Csr.WebServices.AutomationWS">
            <endpoint address="http://ccf/Microsoft.Ccf.Csr.WebServices.AdminConsole/AutomationWS.svc"
              binding="basicHttpBinding" bindingConfiguration="Binding1" contract="Microsoft.Ccf.Csr.WebServices.AutomationWS" />
            <!-- When secure channel (SSL) is set to Required in IIS, change mexHttpBinding to mexHttpsBinding -->
            <endpoint address="mex" binding="mexHttpBinding" contract="IMetadataExchange" />
          </service>
          <service behaviorConfiguration="Behavior1" name="Microsoft.Ccf.Csr.WebServices.RoleWS">
            <endpoint address="http://ccf/Microsoft.Ccf.Csr.WebServices.AdminConsole/RoleWS.svc"
              binding="basicHttpBinding" bindingConfiguration="Binding1" contract="Microsoft.Ccf.Csr.WebServices.RoleWS" />
            <!-- When secure channel (SSL) is set to Required in IIS, change mexHttpBinding to mexHttpsBinding -->
            <endpoint address="mex" binding="mexHttpBinding" contract="IMetadataExchange" />
          </service>
          <service behaviorConfiguration="Behavior1" name="Microsoft.Ccf.Csr.WebServices.SettingsWS">
            <endpoint address="http://ccf/Microsoft.Ccf.Csr.WebServices.AdminConsole/SettingsWS.svc"
              binding="basicHttpBinding" bindingConfiguration="Binding1" contract="Microsoft.Ccf.Csr.WebServices.SettingsWS" />
            <!-- When secure channel (SSL) is set to Required in IIS, change mexHttpBinding to mexHttpsBinding -->
            <endpoint address="mex" binding="mexHttpBinding" contract="IMetadataExchange" />
          </service>
          <service behaviorConfiguration="Behavior1" name="Microsoft.Ccf.Csr.WebServices.SkillWS">
            <endpoint address="http://ccf/Microsoft.Ccf.Csr.WebServices.AdminConsole/SkillWS.svc"
              binding="basicHttpBinding" bindingConfiguration="Binding1" contract="Microsoft.Ccf.Csr.WebServices.SkillWS" />
            <!-- When secure channel (SSL) is set to Required in IIS, change mexHttpBinding to mexHttpsBinding -->
            <endpoint address="mex" binding="mexHttpBinding" contract="IMetadataExchange" />
          </service>
          <service behaviorConfiguration="Behavior1" name="Microsoft.Ccf.Csr.WebServices.WorkflowStepWS">
            <endpoint address="http://ccf/Microsoft.Ccf.Csr.WebServices.AdminConsole/WorkflowStepWS.svc"
              binding="basicHttpBinding" bindingConfiguration="Binding1" contract="Microsoft.Ccf.Csr.WebServices.WorkflowStepWS" 
    
    />
            <!-- When secure channel (SSL) is set to Required in IIS, change mexHttpBinding to mexHttpsBinding -->
            <endpoint address="mex" binding="mexHttpBinding" contract="IMetadataExchange" />
          </service>
          <service behaviorConfiguration="Behavior1" name="Microsoft.Ccf.Csr.WebServices.WorkflowWS">
            <endpoint address="http://ccf/Microsoft.Ccf.Csr.WebServices.AdminConsole/WorkflowWS.svc"
              binding="basicHttpBinding" bindingConfiguration="Binding1" contract="Microsoft.Ccf.Csr.WebServices.WorkflowWS" />
            <!-- When secure channel (SSL) is set to Required in IIS, change mexHttpBinding to mexHttpsBinding -->
            <endpoint address="mex" binding="mexHttpBinding" contract="IMetadataExchange" />
          </service>
          <service behaviorConfiguration="Behavior1" name="Microsoft.Ccf.Csr.WebServices.WorkflowMappingWS">
            <endpoint address="http://ccf/Microsoft.Ccf.Csr.WebServices.AdminConsole/WorkflowMappingWS.svc"
              binding="basicHttpBinding" bindingConfiguration="Binding1" 
    
    contract="Microsoft.Ccf.Csr.WebServices.WorkflowMappingWS" />
            <!-- When secure channel (SSL) is set to Required in IIS, change mexHttpBinding to mexHttpsBinding -->
            <endpoint address="mex" binding="mexHttpBinding" contract="IMetadataExchange" />
          </service>
        </services>
        <bindings>
          <basicHttpBinding>
            <binding name="Binding1">
              <!--  default maxStringContentLength is insufficient for Configuration service -->
              <readerQuotas maxStringContentLength="99999999" />
              <security mode="TransportCredentialOnly">
                <transport clientCredentialType="Windows" />
              </security>
            </binding>
            <binding name="Binding2">
              <!--  default maxStringContentLength is insufficient for Configuration service -->
              <readerQuotas maxStringContentLength="99999999" />
              <security mode="Transport">
                <transport clientCredentialType="Windows" />
              </security>
            </binding>
          </basicHttpBinding>
        </bindings>
        <behaviors>
          <serviceBehaviors>
            <behavior name="Behavior1">
              <serviceDebug includeExceptionDetailInFaults="True" />
              <!-- When secure channel (SSL) is set to Required in IIS, change httpGetEnabled to httpsGetEnabled -->
              <serviceMetadata httpGetEnabled="True"/>
            </behavior>
          </serviceBehaviors>
        </behaviors>
      </system.serviceModel>
      <system.web>
        <!--  DYNAMIC DEBUG COMPILATION
              Set compilation debug="true" to enable ASPX debugging.  Otherwise, setting this value to
              false will improve runtime performance of this application. 
              Set compilation debug="true" to insert debugging symbols (.pdb information)
              into the compiled page. Because this creates a larger file that executes
              more slowly, you should set this value to true only when debugging and to
              false at all other times. For more information, refer to the documentation about
              debugging ASP.NET files.
        -->
        <compilation defaultLanguage="c#" debug="true">
          <compilers>
            <compiler language="c#" type="Microsoft.CSharp.CSharpCodeProvider, System, Version=2.0.0.0, Culture=neutral, 
    
    PublicKeyToken=B77A5C561934E089" extension=".cs" compilerOptions="/d:DEBUG;TRACE"/>
          </compilers>
        </compilation>
        <!--  CUSTOM ERROR MESSAGES
              Set customErrors mode="On" or "RemoteOnly" to enable custom error messages, "Off" to disable. 
              Add <error> tags for each of the errors you want to handle.
    
              "On" Always display custom (friendly) messages.
              "Off" Always display detailed ASP.NET error information.
              "RemoteOnly" Display custom (friendly) messages only to users not running 
               on the local Web server. This setting is recommended for security purposes, so 
               that you do not display application detail information to remote clients.
        -->
        <customErrors mode="RemoteOnly"/>
        <!--  AUTHENTICATION 
              This section sets the authentication policies of the application. Possible modes are "Windows", 
              "Forms", "Passport" and "None"
    
              "None" No authentication is performed. 
              "Windows" IIS performs authentication (Basic, Digest, or Integrated Windows) according to 
               its settings for the application. Anonymous access must be disabled in IIS. 
              "Forms" You provide a custom form (Web page) for users to enter their credentials, and then 
               you authenticate them in your application. A user credential token is stored in a cookie.
              "Passport" Authentication is performed via a centralized authentication service provided
               by Microsoft that offers a single logon and core profile services for member sites.
        -->
        <authentication mode="Windows"/>
        <!--		<identity impersonate="true" userName="registry:HKLM\SOFTWARE\CCF\AdminUser,userName"
                                    password="registry:HKLM\SOFTWARE\CCF\AdminUser,password"/>     -->
        <!--  AUTHORIZATION 
              This section sets the authorization policies of the application. You can allow or deny access
              to application resources by user or role. Wildcards: "*" mean everyone, "?" means anonymous 
              (unauthenticated) users.
        -->
        <authorization>
          <allow roles="FPS\ccfusers" />
    		
          <!--<deny users="*" />-->
    
          <!-- Allow all users -->
          
                    <allow users="*" />
                
          <!-- Allow specified users and/or roles -->
          <!--	
                    <allow users="[comma separated list of users]"
                           roles="[comma separated list of roles]"/>
                -->
          <!-- Deny specified users and/or roles -->
          <!--
                    <deny users="[comma separated list of users]"
                          roles="[comma separated list of roles]"/>
                -->
        </authorization>
        <!--  APPLICATION-LEVEL TRACE LOGGING
              Application-level tracing enables trace log output for every page within an application. 
              Set trace enabled="true" to enable application trace logging.  If pageOutput="true", the
              trace information will be displayed at the bottom of each page.  Otherwise, you can view the 
              application trace log by browsing the "trace.axd" page from your web application
              root. 
        -->
        <trace enabled="false" requestLimit="10" pageOutput="false" traceMode="SortByTime" localOnly="true"/>
        <!--  SESSION STATE SETTINGS
              By default ASP.NET uses cookies to identify which requests belong to a particular session. 
              If cookies are not available, a session can be tracked by adding a session identifier to the URL. 
              To disable cookies, set sessionState cookieless="true".
        -->
        <sessionState mode="InProc" stateConnectionString="tcpip=127.0.0.1:42424" sqlConnectionString="data 
    
    source=127.0.0.1;Trusted_Connection=yes" cookieless="false" timeout="20"/>
        <!-- GLOBALIZATION
              This section sets the globalization settings of the application. 
        -->
        <globalization requestEncoding="utf-8" responseEncoding="utf-8"/>
        <xhtmlConformance mode="Legacy"/>
      </system.web>
      <appSettings>
        <add key="Microsoft.Ccf.Csr.WebServices.AdminConsole.ConfigurationWS.ConnectionString" 
    
    value="Server=CRMSTAGINGNEW;Integrated Security=true;Database=CcfInfrastructure;Pooling=true"/>
        <add key="ConfigurationArea" value="AdminConsoleWS"/>
      </appSettings>
    </configuration>
    
    

     

    Initially Admin console was working fine but when we did changes according to site http://support.microsoft.com/kb/969803 as we were facing same problem mentioned in this site it start throwing error. Now alise name of IIS server is ccf. SQL server and IIS server are on same machine.

     

    Thanks!
    Wednesday, February 10, 2010 6:10 AM
  • Hi,

    I was getting the same error yesterday,

    I did SPN on the DC and verified all webservice config for <allow users = *>
    When all webservices were working, I launched the admin console again and it was working.

    Aman
    Wednesday, March 3, 2010 10:54 AM
  • Can you check the following on your CCF server to determine the settings for NTAuthentication providers for the W3svc. You can determine this by running the following commands on the CCF server:

    cscript adsutil.vbs get w3svc/NTAuthenticationProviders
    cscript adsutil.vbs get w3svc/1/root/NTAuthenticationProviders

    Let me know what is the authentication set to after running each of these commands.

    SK

    Friday, March 5, 2010 2:53 PM
  • I would start by looking in your IIS log to see which account is trying to authenticate and to which service (likely the ContactCenter/Configuration.svc).  Check that services’ web.config and validate that the user has access.   Access is controlled via the <Allow> and <deny> elements of the web.config.  The default values set for the config service are:

     

    <Allow roles = “<your domain>\ccfusers” />

    <deny users = “*” />

     

    This is a snip of my IIS log if I remove the ASPUSER account from the ccfUsers group in AD.

     

    /Microsoft.Ccf.Csr.WebServices.ContactCenter/Configuration.svc - 80 CCF\ASPUSER xxx.xxx.xxx.xxx - 401 5 0

     

    Hope that help,

    Bill[MSFT]

    Tuesday, March 9, 2010 4:54 PM