Monday, 1 June 2015

Access denied to SSO affiliate application


 Using the BTDF 6.0 (BETA) I built a build server msi and deployed it to a test environment. After beginning testing I noticed it was failing in my very first receive pipeline. I found the following error in the event log:
Access denied. The client user must be a member of one of the following accounts to perform this function.

SSO Administrators: OOOOOOO\TEST-BizTalk-SSO Administrators
SSO Affiliate Administrators: OOOOOOO\TEST-BizTalk-SSO Affiliate Administrators

Application Administrators: OOOOOOO\DEV-BizTalk Server Administrators
Application Users: OOOOOOO\DEV-BizTalk Application Users

Additional Data: OOOOOOO\TEST-IT-HOSTT-SVC OOO.Integration OOO.Integration Configuration Data
This really confused me as the error was mentioning security groups I had configured in the development environment. This led me to suspect my environmental settings file was incorrect. Sure enough I checked the file and two of the settings SsoAppUserGroup and SsoAppAdminGroup were still using the development environmental settings.

 I made the necessary changes, rebuilt the msi and redeployed the msi to the test environment.

 Ran a test....

 Same error.

 I stumbled across the following blog which described my issues to perfection. The automatically created affiliate application that the BTDF creates had incorrect values.
http://www.solidsoftreply.com/blog/posts/2013/updating-the-sso-config-store-application-using-btdf.aspx

So I updated the SSOX_ApplicationInfo table with the corrected group names and restarted every related service I could think of.

Ran a test....

 Same error.

 It was only after I manually removed the affiliate with the below command and redeployed the msi did the error correct itself:

C:\Program Files\Common Files\Enterprise Single Sign-On\ssomanage –deleteapp OOO.Integration

Special thanks to:

 Carlo Garcia-Mier and Nethra

Posted by at No comments:

Thursday, 14 May 2015


Configuring BizTalk's SQL Server Agent Jobs


Backup BizTalk Server (BizTalkMgmtDb)


Edit step  2.

exec [dbo].[sp_BackupAllFull_Schedule] 'd' /* Frequency */
, 'BTS' /* Name */
, 'C:\Program Files\Microsoft SQL Server\MSSQL12.MSSQLSERVER\MSSQL\Backup' /* location of backup files */


Edit step 3.

exec [dbo].[sp_MarkAll] 'BTS' /* Log mark name */
, 'C:\Program Files\Microsoft SQL Server\MSSQL12.MSSQLSERVER\MSSQL\Backup' /* location of backup files */


DTA Purge and Archive (BizTalkDTADb)


Edit Step 2.


exec dtasp_BackupAndPurgeTrackingDatabase 0 --@nLiveHours tinyint
,1 --@nLiveDays tinyint = 0, --will be deleted along with all associated data
,30 --@nHardDeleteDays tinyint = 0, --all data older than this will be deleted.
,'C:\Program Files\Microsoft SQL Server\MSSQL12.MSSQLSERVER\MSSQL\Backup' --backup folder
,null --@nvcValidatingServer sysname = null,
,0 --@fForceBackup int = 0

MessageBox_Message_Cleanup_BizTalkMsgBoxDb


Leave disabled

Posted by at No comments:

Monday, 12 January 2015

Using a custom Itinerary Service to call another Itinerary and go back again


Posted by at No comments:
Subscribe to: Posts (Atom)