Anonymous User Help

Similar Messages

• List View Web Part anonymous users paging is broken

  Hi I checked that list view web part do not work for anonymous users with paging. wanted to check if its known bug or there is some intention to keep it like that.
  Rohit Pasrija

  Hi,
  According to your description, there is an issue that if the paging is configured for a list view web part, it will be broken for anonymous users.
  I tried to reproduce this issue with the steps below, however, all work without issue.
  1. Enable anonymous access in Web Application level;
  2. Enable anonymous access in site collection level;
  3. By default, the permission settings of a list inherit the permissions from its parents, that’s say, anonymous access also enabled in the current list, “Anonymous
  Users” can “View Items”;
  4. Set paging for the “AllItems” view, add this list as a web part into a page, the paging works as expected for anonymous users.
  I suggest you create a new Web Application and configure to enable anonymous access following the steps above to see if the issue still exists.
  Thanks
  Patrick Liang
  Forum Support
  Please remember to mark the replies as answers if they help and unmark them if they provide no help. If you have feedback for TechNet Subscriber Support,
  contact [email protected]
  Patrick Liang
  TechNet Community Support

• Errors while consuming secured portlet on anonymous user

  Hello,
  I'm trying to configure security end-to-end Portlet as in this link http://fusionsecurity.blogspot.com/2010/09/hands-on-wsrp-security-in-oracle-fusion_04.html.
  I got WSRP security with authenticated users, but when I try to consume the portlet on anonymous users (unauthenticated), I receive the error below:
  Caused By: javax.xml.rpc.soap.SOAPFaultException: FailedAuthentication : The security token cannot be authenticated.
                  at oracle.j2ee.ws.client.StreamingSender._raiseFault(StreamingSender.java:669)
                  at oracle.j2ee.ws.client.StreamingSender._sendImpl(StreamingSender.java:475)
                  at oracle.j2ee.ws.client.StreamingSender._send(StreamingSender.java:149)
                  at oracle.portlet.wsrp.v2.soap.runtime.WSRP_v2_Markup_Binding_SOAP_Stub.initCookie(WSRP_v2_Markup_Binding_SOAP_Stub.java:343)
                  at oracle.portlet.wsrp.v2.WSRP_v2_Markup_PortTypeJaxbToSoap.initCookie(WSRP_v2_Markup_PortTypeJaxbToSoap.java:671)
                  at oracle.portlet.wsrp.v2.ServerToWSRPv2.initCookie(ServerToWSRPv2.java:22225)
                  at oracle.portlet.client.connection.wsrp.ActivityServerWrapper.initCookie(ActivityServerWrapper.java:1125)
                  at oracle.portlet.client.techimpl.wsrp.WSRPInitCookiePipe.execute(WSRPInitCookiePipe.java:130)
                  … more
  We have the following usecase:
  1) Created an ADF application with one JSP page and converted to portlet.
  2) Created a consumer application (Webcenter Portal Framework Application).
  3) In the consumer app, created a WSRP connection for this portlet (to register the producer).
  - In the "Configure Security Attributes" in the WSRP portlet producer wizard, we have selected the following:
  - Token Profile: WSS 1.0 SAML Token with Message Protection
  - Configuration: Default
  - Default user: anonymous
  4) Drag and drop the portlet on the consumer page and run.
  Would anyone tell me how do I set the permission for an anonymous user?
  Thanks.

  Hi Bijesh,
  Yes, I have tried not specifying a default user and I got the error below:
  <Feb 3, 2015 2:53:48 PM BRST> <Notice> <Stdout> <BEA-000000> <<Feb 3, 2015 2:53:48 PM BRST> <Error> <oracle.wsm.resources.security> <WSM-00008> <Web service authentication failed.
  javax.security.auth.login.LoginException: wsrp:minimal
                  at oracle.security.jps.internal.jaas.module.saml.JpsAbstractSAMLLoginModule.login(JpsAbstractSAMLLoginModule.java:127)
                  at sun.reflect.NativeMethodAccessorImpl.invoke0(Native Method)
                  at sun.reflect.NativeMethodAccessorImpl.invoke(NativeMethodAccessorImpl.java:39)
                  at sun.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImpl.java:25)
                  at java.lang.reflect.Method.invoke(Method.java:597)
                  at javax.security.auth.login.LoginContext.invoke(LoginContext.java:769)
                  at javax.security.auth.login.LoginContext.access$000(LoginContext.java:186)
                  at javax.security.auth.login.LoginContext$5.run(LoginContext.java:706)
                  at javax.security.auth.login.LoginContext.invokeCreatorPriv(LoginContext.java:703)
                  at javax.security.auth.login.LoginContext.login(LoginContext.java:575)
                  at oracle.wsm.security.jps.JpsManager.authenticate(JpsManager.java:184)
                  at oracle.wsm.security.jps.JpsManager.samlAuthenticate(JpsManager.java:325)
  Caused By: javax.security.auth.login.FailedLoginException: [Security:090304]Authentication Failed: User wsrp:minimal javax.security.auth.login.FailedLoginException: [Security:090302]Authentication Failed: User wsrp:minimal denied
                  at weblogic.security.providers.authentication.LDAPAtnLoginModuleImpl.login(LDAPAtnLoginModuleImpl.java:261)
                  at com.bea.common.security.internal.service.LoginModuleWrapper$1.run(LoginModuleWrapper.java:110)
                  at com.bea.common.security.internal.service.LoginModuleWrapper.login(LoginModuleWrapper.java:106)
                  at sun.reflect.NativeMethodAccessorImpl.invoke0(Native Method)
                  at sun.reflect.NativeMethodAccessorImpl.invoke(NativeMethodAccessorImpl.java:39)
                  at sun.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImpl.java:25)
                  at java.lang.reflect.Method.invoke(Method.java:597)
                  at javax.security.auth.login.LoginContext.invoke(LoginContext.java:769)
                  at javax.security.auth.login.LoginContext.access$000(LoginContext.java:186)
                  at javax.security.auth.login.LoginContext$4.run(LoginContext.java:683)
                  at javax.security.auth.login.LoginContext.invokePriv(LoginContext.java:680)
                  at javax.security.auth.login.LoginContext.login(LoginContext.java:579)
  I’ve set ADF Security for my Portlet Application following the steps below:
  Create an Enterprise Role ‘Participante’. (The authenticated user has this group 'Participante' in LDAP)
  Create an Application Role ‘participante-role’ and map to the enterprise role ‘Participante’.
  Assign ‘participante-role’ to Web Page or Task Flow in Resources Grants.
  Those steps work well when I am using Task Flows. If I use Portlets based on Page instead of Task Flow, the security does not work.
  I have already tested the second option (create a guest user). The problem here is that the user has the authenticated-role associated to it.
  Thanks for help.

• Anonymous User forms in Sharepoint 2013 Online (Office 365)

  I'm using Sharepoint 2013 online with Office 365.
  Is there any way for an anonymous user to communicate with the site using forms (preferably Infopath)?
  There are many, many versions of this question on the web, but most answers seem to talk about features I just don't have in Office 365 Sharepoint - such as Application Management in Central Administration, which just isn't there.
  The only feature I can find is the Excel Survey in Form Templates. This is at least a start, but what I really want is the ability for an anonymous user (a customer) to submit information into a Custom List using a form; or, second best, in an email (WITHOUT
  having to have Infopath Filler installed). this is all do-able for a fully-subscribed user of the intranet site, but I can't afford to buy individual subscriptions for all my customers. Nor do I want them seeing each other's data, or accessing my intranet!
  I have spent so long researching this and getting nowhere, and really need to know if it's just a straight 'no, it's impossible', or keep trying.
  Thanks
  Jonathan

  Hi Jonathan,
  According to your description, my understanding is that you want to enable anonymous user with forms in SharePoint 2013 Online.
  There is a Sandbox solution from CodePlex, it manages anonymous access on Office 365 / SharePoint 2013. Please have a try.
  https://anonymous365.codeplex.com/
  In addition, I am not an expert for SharePoint 2013 Online, I suggest you create a new thread on SharePoint Online forum, more experts will assist you with SharePoint Online.
  SharePoint Online forum:
  http://social.technet.microsoft.com/Forums/en-US/home?forum=onlineservicessharepoint
  I hope this helps.
  Thanks,
  Wendy
  Wendy Li
  TechNet Community Support

• WPC content for anonymous user

  Dear SDNites
  We have recently started a project in which we are using Web Page Composer(WPC) for web content development. We have configured the WPC content for anonymous users. After the configurations, anonymous users could access this content without entering any user id and password. But after the restart of the portal, it started prompting login screens even for the anonymous users.We have checked all the required configurations and these seem fine to me. Can you please help me on how to resolve this issue?
  Best Regards
  Pavan

  Hi Pavan,
  Please refer to this thread.
  https://forums.sdn.sap.com/thread.jspa?threadID=948170&tstart=0
  https://www.sdn.sap.com/irj/sdn/thread?threadID=943740&tstart=150
  Hope this helps.
  Cheers,
  Sandeep Tudumu
  Edited by: Sandeep Tudumu on Jul 7, 2008 10:22 PM

• BI 7.0 version report  for  anonymous user

  Dear Gurus,
  Greetings for the day!
  I want to display the BEX BI 7.0 version  report on Portal 7.0 for anonymous user. But I am not able to do the same. Can somebody please help me to achieve my task. Thanks.
  Regards,
  P.Swarna

  HI,
  Thanks for your reply,
  Its already configured and the reports working perfectly with login user ids( like end user).But when we assign same report
  to anonymous user with authentication scheme = anonymous in iview properties still its redirecting to logon page.
  Please suggest how to configure BI 7.0 report for anonymous users.
  Regards,
  P.Swarna

• Authorization Issue with Custom Pending Value Object and Anonymous Users

  Hi,
  I am just converting my demo from version 7.1 to 7.2. I am not doing upgrade. The demo uses a custom pending value object USER_REQUEST. The idea is that new employee goes to Java AS as anonymous user and enters her details and store where she will work. After submitting request there is an approval process using custom entry type USER_REQUEST. If the request is approved then IdM converts USER_REQUEST into MX_PERSON entry. This works nice in 7.1 but I am having problems with replicating this in 7.2. I created new UI task accessible by anonymous that creates new USER_REQUEST entry. I also assigned role idm.anonymous with UME action idm_anonymous to UME built in group Anonymous users.
  My problem is with the field STORE. This field is a reference field to another custom entry type STORE (this entry type will be used in context based assignment). Every new employee must selects a store where she will work. The problem is when user clicks on button "Select". Web dynpro terminates and returns authorization error. I also tested this with entry type MX_ROLE. I added attribute MXREF_MX_ROLE and same issue. So it seems that just assigning UME action idm_anonymous is not enough to list objects from identity store. I found a workaround for this issue. When I assign also UME action idm_authenticated to Anonymous users then it does not dump and I get a pop up window where I can search for store. It does not seem right to assign idm_authenticated to anonymous users.
  Another issue is with display task for entry type USER_REQUEST. I assigned a display task to entry STORE and I set that Anonymous have access to this task in Access control tab. I assigned default value to the field store. So when a user opens page she can see a hyper link to display already assigned store. When user clicks on this hyper link it opens a new pop up window and user must authenticate against Java AS. After successful authentication the display task for entry STORE is displayed. I would assume that anonymous user can display it without authentication.
  So to me it seems like authorization checks have been changed in 7.2 versions and are more strict for anonymous tasks. Hence my question is how can I implement my scenario. Am I missing some configuration or what's the proper solution to my two issues? I don't count assigning idm_authenticated to Anonymous users as a solution. This workaround does not solve my second issue.
  Thanks

  Some of the folks from Trondheim labs check, but rather infrequently.  There's another person who I guess is in consulting that also checks from time to time.
  Sorry I can't help you with your main question...
  Matt

• WPC for Anonymous user

  Dear All,
  We are on SAP NW 7.3 and trying to provide the WPC page for anonymous users.
  Have designed the WPC content, connected to a role and gave the role to anonymous user, but when we go to portal
  http://<host>:<port>/irj/portal/anonymous it gives a logon page. To resolve the issue have gone thru all the posts and recommendations but still the same error.
  Tried to follow the blog 'Webpage composer Anonymous User access' but in NW 7.3 can find the PCD location 'WebpageComposer', - but in templates we have the WPC Templates and have given the required permissions
  Also the security zones are changed.
  Has it something to do with the 'Staging Area' folder  (Navigating through the role Accesible Area Management -> content Editor), because when we create any new Area/Page(WPC Area/Page) it creates the same in this folder, which is present as a KM Folder. This folder does not allow to set the permissions (Accesible Area Management -> Content Library -> Staging Area -> Details -> Permissions)
  Your valuable suggestions would really help me to resolve this issue.
  Thanks,
  Srv

  Dear All,
  Got the reply from SAP to perform the below steps and its working fine for us.. just in case any one of you needs this info.
  1. Add the "authentication scheme" property to the WPC design time page template: a. Go to "System Administration" ' "Content Model Management" ' "Property Classification" b. Under "Object Type" select "Page" c. Under "Template" select "WPC Design Time Page" d. Under "Available Properties" locate "Authentication Scheme" and add it to the "Selected Properties" 2. Go to the Area Management Role and locate the area and the page that you would like to be available to anonymous users 3. Set End User permissions for "Anonymous" group on the area 4. Publish the page(s) and the area 5. Navigate to "Content Administration". Make sure the "Area Management"role isn't open in some other tab or browser window 6. In the Portal Content Catalog, locate the role which is available to anonymous users and has the WPC area connected to it. 7. Open the role, open the connection 8. For each page under the workset (area): a. Open the page b. For each iview and page under the page, open the iview/page and navigate to its properties: i. Locate the "Authentication Scheme" property and change it to "anonymous" ii. Save the object iii. For pages, open the page and perform the same process for each iview under the page iv. Save

• Login Page coming for Anonymous User

  Hi All,
  we have configured anonymous user for our portal. Created a role for anonymous access - added pages and iViews under that. All the iViews and pages are modified with authentication scheme property to Anonymous.
  Now when we access the portal with the url http://host:port/irj its showing the login box in the top part of the page and in the bottom part its showing the anonymous role which we created.
  Let me tell you what we have done...
  Created role, iViews for Anonymous role, set the authentication property to 'Anonymous'.
  In Visual Admin-> Server-> Services-> UME Provider set the variable ume.login.anonymous_user.mode to 1.
  Variable ume.login.basicauthentication to 1.
  Variable ume.login.guest_user.uniqueids to Guest.
  Then we have updated the index.html file under <drive>:\usr\sap\<SID>\<instance_number>\j2ee\cluster\serverX\apps\sap.com\irj\servlet_jsp\irj\root .. we changed
  <b><body onload="location.replace('portal' + document.location.search)"></body></b>
  to <b><body onload="location.replace('servlet/prt/portal/prtroot/com.sap.portal.navigation.portallauncher.anonymous' + document.location.search)"></body></b>
  But now when a guest user accesses the portal http://host:port/irj it gived the strange screen (logon + content page) as I described earlier.
  Please let us know where are we missing...
  thanks & regards,
  Shubhadip

  Hi,
  1 .  I have created a iView and set the authentication scheme anonymous.
  2.  Also I created a role and added the iview to a role.
  3. The role has only 1 iview.  The entry pt is yes  for the iview
  4.  The role has permissions of end user for anonymous user.
  5 I checked the masthead iview also.. It aslo has authentication scheme anonymous
  When I try accessing the iView  in the form <http/https>://<server>:<port>/irj/servlet/prt/portal/prtroot/pcd!3aportal_content!2fmyfolder!2fmyiView
  I am able to view it without any login..
  But when the url is accessed <http/https>://<server>:<port>/irj/portal/anonymous
  I see a login page in the Detailed navigation..
  Please help me solve this problem ..
  Thanks,
  Preeti

• Error with anonymous user

  I have configured an anonymous user and created a new framework page to display the content.  When the page first loads, the correct framework page, theme, and content appear.  However, if I click on one of the content tabs (even if it is the first one, which is currently showing correctly), I get the error <b>"No portal desktop is defined for this user.If this problem persists, contact your system administrator."</b>
  I have checked all permissions on everything to ensure that they are set correctly.  Is there some type of session management that needs to be configured for anonymous users?  It seems to load great the first time, and then after that is when the error occurs.  Logged in users do not have this error.
  Thanks for any help offered.

  Hi,
  go thru this thread...
  Re: "No portal desktop defined for this user."
  thanks,
  Padmanaban

• Anonymous user access to GP Process iView

  Hi GP/Portal Gurus,
  I've created an iView for my GP process. The problem is only authenticated users can successfully access to this GP Process iView. Anonymous users will get an error in accessing GP process iView. I've given the Page and iView authentication scheme as anonymous. But still, it doesn't work.
  The error message is:
  "com.sap.tc.webdynpro.clientserver.session.SessionExpiredLongJumpException: Application session has expired: No application session with ID oJji4PrZdG5ox8ITkiHTpAsDdNOJtMyv78EPQ66xiLlA/pcd:portal_content/cafUAT/formBrole/sap.com/cafeugpuiinst/AInstantiation/base exists. Hint: A follow-up request was sent to Web Dynpro, but no corresponding session was found under the existing sessions. Reasons: a) Session has expired; b) Web Dynpro is called with incorrect session parameters; c) Application session has been destroyed due to proceeding exception. Please restart the application..."
  Appreciate any help.
  Rgds,
  Hapizorr

  Hi Hapizorr
  From what you have posted, please try to login again into portal and then proceed with the creation of iView.
  Please let us know the behaviour this time.
  Regards
  Navneet

• Anonymous user - getting id/password popup when accessing KM folder & files

  Hi All,
  We are trying to expose a KM folder [/documents/myDocs] to anonymous users (User: Guest assigned to 'Anonymous Users' group)
  i've created a KM Navigation iview and assigned to 'anonymous' role (and this role assigned to 'Anonymous Users' group).
  when i open the page as a Guest user, i get:
  - i see that an image (annotations image : /etc/public/mimes/images/ico16_note.gif ) opens the popup even though i have given '/etc' folder READ permissions to 'Anonymous Users' group; and FULLCONTROL to 'Everyone' group)
  - Also, when I navigate to an inner folder and try opening a PDF file, i get a popup asking for id & password
  i checked default trace and i see this error:
  Guest | ACCESS.ERROR | /documents/myDocs/RPT/RPT_NOTIFY/RPT_HELP.pdf | leaf_delete
  Guest | ACCESS.ERROR | /documents/myDocs/RPT/RPT_NOTIFY | node_delete
  i have already gone through SAP NOTE:  837898 - How to configure anonymous CM access. Doesn't help.
  Can anyone help?
  Waiting for ur response, Thank you,
  SK.

  Hello SK,
  Download com.sap.km.cm.par and open it on Developer Studio, check if Authentication Scheme=anonymous for both docs and navigation components
  When you open the page the image is displayed by the docs (com.sap.km.cm.docs) component, if the system is displaying a login screen at navigation the solution above might fix it
  regards,
  Rafael

• Anonymous User Login

  Hi All,
  I have an issue with 'Forgot Password' button in the end user login. When a Forgot Password button is clicked, a Question Login workflow will trigger (I think I am right?) .Now I would like to customize the 'Question Login' workflow as per my requirements, but unfortunately I am not, I modified the system configuration object, but still with no luck I am not able to customize that workflow.
  So I thought of using anonymous login page and I can launch my own workflow as per my requirements. I have registered my workflow at 'anonymous end user tasks'. and I try to launch the anonymous login page using the url 'http://localhost:8080/idm/user/anonlogin.jsp'. I am getting the following errors.
  An unrecoverable error has occurred processing the request. Contact your system administrator.
  Syslog ID = LG-1111-024933.
  Only the Reset Administrator may access this view.
  I don't know, where I am doing wrong. For the first time I am trying to use anonymous login page.
  Did anybody faced similar problems?
  Can anybody please post some points, like what is the procedure to use a Anonymous login page?
  Thanks in advance

  Well, first, I visited Configure > User Interface, and enabled Anonymous Enrollment.
  Next, I went to user/login.jsp, and saw "Request Account". I clicked on it, and up popped the user/anonEnrollment.jsp page. (I was looking at using this for one of our requirements; turned out I didn't need it, and did something else).
  Anyway, a quick check with Live HTTP Headers for Firefox shows that the post was directly to anonEnrollment.jsp; anonEnrollment.jsp has this at the top:
  String anonUser = LoginHelper.getAnonymousUser(session);
  if (anonUser == null) {
      String url = "user/login.jsp";
      LoginHelper.redirect(req, out, url);
      return;
  }Not a huge amount of help. However, it does establish that there is an "getAnonymousUser" method, which is documented to return "the currently registered anonymous user name if any". And reading the Workflows, Forms, and Views manual, it states that the anonymous main page is for "... when a user who does not have a Identity Manager account logs in, an Identity Manager user object is created ...". Basically, if you're using pass through auth, and have a source system that will let a user authenticate, they can then set themselves up.
  So, I visited "anonmain.jsp" after clearing all cookies, and up popped "anonlogin.jsp", with a login box. I entered "anonymous", and lo!, I was logged in, and saw the anonymous user menu. In other words, I was "provisionally" logged in with an account that doesn't really exist (anonymous).
  However, I had to provide that extra bit of information, namely, my "fake" user name of "anonymous". I don't know how you'd do that without JSP customization.
  Basically, "anonymous" means "has a username, but we don't have an account", rather than "truely anonymous" as near as I can tell. The system will do it for you in the case of "Request Account" (the generated login page has some Javascript code to redirect to anonEnrollment.jsp), but it doesn't seem to be an exposed API.
  You might get somewhere with customizing the "Request Account" string in the messages catalogue, and then customizing the anonymous enrollment workflow.

• Anonymous Users can see pages and files only about 10 minutes

  We have set Anonymous access permission to an KM repository. After the portal restarting very strange things are happen. An user who belongs to the Anonymous Users group can see and open pages (created by WPC),  files and hyperlinks. But after about ten minutes of such browsing a login screen begins to appear. Since that time the user canu2019t see and open any file of the repository.
  We have accurately read and applied recommendations of the Note 837898 - How to configure anonymous CM access.
  All URL Generator Service properties are exactly satisfied recommended values (e.g. /irj/go/*).
  We have granted Read permissions to all required repositories and recourses for Everyone and Anonymous Users groups (checked End User fieled as well).
  The site navigation structure and pages have been developed by mean of Web Page Composer (WPC).
  Security Zone (no safety) of WPC has been set with Read permission of Everyone and Anonymous Users groups.
  How to work around this?

  >
  Kyle Lawrence wrote:
  > Vladimir -
  >
  > Vladimir -
  >
  > Does this behaviour occur outside of WPC? 
  This behavior occurs then we click link inside pages generated in WPC. After that the anonymous see the login screen.
  > For example, if the anonymous user only has portal content, does the timeout occur? 
  What do you mean? Between ten and twenty minutes an anonymous user lost the ability to access any pages generated in WPC, any file contained in the portal, any XML Forms generated by XML Forms Builder (e.g. the News XML pages).
  > Does the timeout occur if the user does not navigate anywhere in the portal? 
  I'm not sure we didn't check. It's most likely that after a number previews of the pages it happens.
  > Does the timeout occur with  only KM and not WPC?
  >
  Again between ten and twenty minutes an anonymous user lost the ability to access any pages generated in WPC, any file contained in the portal, any XML Forms generated by XML Forms Builder (e.g. the News XML pages).
  Please read the following clarification of our situation.
  During setting up access of anonymous user to Web Page Composer pages we need to use Web Content repository that is not in the Documents repository.
  As is in the note 837898 there are no prefixes for WPC pages in the URL Generator Service.
  So the an anonymous user get login screen then attempt to access any WPC pages of the Web Content repository.
  How to achieve that content in the Web Content repository get as Content Link property the value '/irj/go/km/docs/wpccontent/u2026', rather than '/irj/servlet/prt/prtroot/...'?
  > It almost sounds like the user's logonticket has expired after 10 minutes.
  >
  As far as I know an anonymous user doesn't provided with logon ticket at all. You can check this in the SDN SAP Help.
  > Regards,
  >
  > Kyle

• How to use search REST api to get custom managed property data for anonymous user?

   
  I am trying build a public portal with anonymous access and i am trying to read some
  content from custom managed property using search REST api in sharepoint 2013. I have tried to enable all possible attributes of the managed prop. Like searchable,queryable,safe etc. also i am including queryparametertemplate in my REST api search query. But
  still i am not able to retrieve the managed prop. For an anonymous user. The same query returns the value if i am logged in.
  Any Help is greatly appreciated. 
  Thanks,
  Rakesh
  Thanks, Rakesh

  Hi Rakesh,
  To enable anonymous Search REST queries, we need to create queryparametertemplate.xml and upload it to the correct library in SharePoint.
  From your description I can know that you have created the file, then I recommend to check the things below:
  Please use “QueryTemplatePropertiesUrl” instead of “queryparametertemplate” in the Search REST API query as following: &QueryTemplatePropertiesUrl='spfile://webroot/queryparametertemplate.xml'.
  Make sure that the Query Properties you need have been added to the QueryProperties element in the queryparametertemplate.xml file.
  Make sure that the query parameters you need have been added to the WhiteList element in the
  queryparametertemplate.xml file. For example, if you want to use Refiners in the REST API, then the Refiners should be added to the
  WhiteList element in the queryparametertemplate.xml file as following:
  <a:string>Refiners</a:string>.
  You can also debug setting properties in anonymous Search Rest queries following the link below:
  http://www.mavention.com/blog/debugging-setting-properties-anonymous-search-rest-queries
  More references about anonymous Search REST:
  http://blog.mastykarz.nl/configuring-sharepoint-2013-search-rest-api-anonymous-users/
  http://msdn.microsoft.com/en-us/library/office/jj163876%28v=office.15%29.aspx#bk_AnonymousREST
  Thanks,
  Victoria
  Forum Support
  Please remember to mark the replies as answers if they help and unmark them if they provide no help. If you have feedback for TechNet Subscriber Support, contact
  [email protected]
  Victoria Xia
  TechNet Community Support