Excel documents attempting to use non-existing Secure Store target application for unattended account

Similar Messages

• Using SQL Server credentials with Secure Store Target Application for Data Connection in Dashboard Designer

  [Using SharePoint 2013 Enterprise SP1]
  I would like to use SQL Server credentials in a Secure Store Target Application, and
  this page makes it look like it's possible but when I attempt to use the new Target Application ID as authentication for a Data Connection in Dashboard Designer, I get a generic "Unable to access data source" with no error logged in SQL Server
  logs.
  I am able to use a Target Application with AD credentials to access the SQL db without a problem. Suggestions?

  Hi,
  1. Make sure that the credential is set to
  Secure Store Target Application. Navigate to the Central Administration. Click on the
  Application Management. Click on the Manage Service Applications. Click on the
  Secure Store Service Application. Select the application ID and from the ECB menu click on the
  Set Credentials. Enter the Credential Owner, Windows User Name and the
  Windows Password.
  2. Make sure that in the Dashboard Designer “Use a stored account” is selected in the “Authentication” and the proper application ID is mentioned.
  Please refer to the link below for more information:
  http://www.c-sharpcorner.com/Blogs/14527/unable-to-access-data-source-the-secure-store-target-applic.aspx
  Regards,
  Please remember to mark the replies as answers if they help and unmark them if they provide no help. If you have feedback for TechNet Subscriber Support, contact
  [email protected] .
  Rebecca Tu
  TechNet Community Support

• I need a excel document to be used on a mac.

  I need a excel document to be used on a mac.  I cannot unlock or use the document.  Is there a way to do this?
  THANK YOU!

  Others choices are iWork Numbers (inexpensive) and Open Office (free).

• The Secure Store Service application Secure Store Service Proxy is not accessible

  I am working on setting up a new SharePoint 2013 Farm for our external web site which is currently running on 2010 SharePoint. Because this is an External Website for our organization we have an internally available Publishing Site and there is an Web App
  Extension to provide Anon Access to users using the www address. Currently I am doing everything on a single server for testing with HOSTS entries to loop back so I can test with real host headers and not impact the 2010 prod environment. We will be setting
  up 2 more WFEs with a NLB before moving this into prod but it isn't there yet. We brought the Site Collection Databases over but are still running in 2010 mode for now.
  I migrated a copy of the Secure Store Database over from 2010 and had it put on the 2013 Farm's Database Server. Set up Secure Store and the Secure Store Proxy. I went into the Secure Store Proxy in CA and refreshed the Key with the proper Pass Phrase. After
  doing that I could see the Target Application IDs listed. Everything was looking good so I went off to test. If I am on the publishing site I can go to a page that has the solution on it and it operates as expected. It does a query to a non SharePoint database
  and returns information filtered based on the search parameters. The only odd thing I see is if I click on the "Site Actions" I get a message "An error has occurred with the data fetch. Please refresh page and retry." Need to look into
  that more but it only happens on pages that have these solutions. Maybe a clue. If I go to the Anonymous Access page (www......) and try and use the solution, it immediately (way too quick to appear like it is doing anything) comes back with "The security
  token request cannot be completed."
  If I dig through the usage logs I am finding the following.
  The Secure Store Service application Secure Store Service Proxy is not accessible. The full exception text is: The security token request cannot be completed.
  Unexpected exception from endpoint address : https://[Servername]:32844/4e87fd3aabb640fb8cc3ed52188cf5c0/SecureStoreService.svc/https
  Logging unknown/unexpected client side exception: InvalidOperationException. This will cause this application server to be removed from the load balancer queue. Exception: System.InvalidOperationException: The security token request cannot be completed.
      at Microsoft.SharePoint.SPSecurityContext.SecurityTokenForServiceContext(Uri contextUri)     at Microsoft.SharePoint.SPChannelFactoryOperations.InternalCreateChannelActingAsLoggedOnUser[TChannel](ChannelFactory`1 factory, EndpointAddress
  address, Uri via)     at Microsoft.Office.SecureStoreService.Server.SecureStoreServiceApplicationProxy.GetChannel(Uri address)     at Microsoft.Office.SecureStoreService.Server.SecureStoreServiceApplicationProxy.Execute[T](String operationName,
  Boolean validateCanary, ExecuteDelegate`1 operation).
  Initially I was fighting a firewall issue because it wasn't working (different errors) on both sides. Had Network Engineers open firewall ports needed and now it works on the publishing side. Still the same error on the Anon side. I suspect I have missed
  something when it comes to configuring the Secure Store to allow access to anonymous connections.
  Let me know if you need any more information but that should paint a pretty good picture as to how things are set up.
  Thanks for any help on this one. Searches haven't found much that has helped so far.

  Hi Sennister,
  I recommend to verify the things below:
  Did this issue occur with all the pages in the anonymous side?
  Check if the Claims to Windows Token Service is started.
  Change the <identity impersonate="true" /> in the web.config to see if the issue still occurs.
  Thanks,
  Victoria
  Forum Support
  Please remember to mark the replies as answers if they help and unmark them if they provide no help. If you have feedback for TechNet Subscriber Support, contact
  [email protected]
  Victoria Xia
  TechNet Community Support

• I cannot sign in.  "This Apple ID has not yet been used with the iTunes Store.  Please review your account information."  I click "Review", next message "You must turn on cookies to continue.   Cookies must be enabled if you want to create or edit.. etc."

  I applied and received an upgrade code to Redeem Mountain Lion for my new MBP. 
  I get this message when I try to Sign in to the App Store after entering the redemption content code, and also if I just try to "Sign In".   The first part of the error is true - I haven't used the AppleID with the iTunes store.  
  I received the upgrade code using this same AppleID, so I don't think I can use a different AppleID.
  I also tried to re-create this appleID...(it was one suggestion I saw for this issue) It doesn't let me since the ID already exists...
  The error is:
  "This Apple ID has not yet been used with the iTunes Store.  Please review your account information."  I click "Review", next message "You must turn on cookies to continue.   Cookies must be enabled if you want to create or edit.. etc." 
  It's clearly not a cookie issue..   Stuck...

  The first part of the error is true - I haven't used the AppleID with the iTunes store. 
  Try here >  Using an existing Apple ID with the iTunes Store and Mac App Store
  received the upgrade code using this same AppleID, so I don't think I can use a different AppleID.
  Correct.
  It's clearly not a cookie issue..
  As for cookies. Quit the App Store. Now open the Finder. From the Finder menu bar click Go > Go to Folder.
  Type this exactly as you see it here:   ~/Library/Cookies
  Click Go the move the   com.apple.appstore.plist   file from the Cookies folder to the Trash.
  Relaunch the App Store.

• Secure Store Service Application takes a lot of time and does not create the database

  Hi everybody,
  I was trying to configure sharepoint performance point and I was following the instruction. After I created the performance point services application I tried to creat the secure store service application. When I do this, the progress window stays open forever
  even after 2 hours. If I close the window, I will see that the secure store service and proxy app is created and the application pool also is created in IIS but the database is not and the application service is stopped. even when I want to delete it, it's
  the same story and the progress window stays until I close it manually. Nothing has been logged in the event viewer because it doesn't throw any exceptions.
  I don't think that I have permission issues on the database server side because I have created the performance point service app and the database is there. I have used the same credentials to crete the secure store.
  I have restarted the secure store service and IIS for many times and even the server itself.
  I'm wondering if anybody has had this issue because I couldn't find anything on the web.
  Thanks,
  Edwin 

  Alex, please ignore my previous answer. I found more information in the ULS. At the time that I started creating the service application by power shell these things are logged and they are repeated several times:
     it starts with:
  11/13/2013 15:19:55.52 PowerShell.exe (0x1698)                
  0x170C
  Secure Store Service          
  Secure Store                  
  esj6 High    
  Creating Secure Store Service Application 'Secure Store Service Application'.
  c402af0c-5ff6-4995-83b8-3f95210a8b3d
  11/13/2013 15:19:55.54 PowerShell.exe (0x1698)                
  0x170C
  Secure Store Service          
  Secure Store                  
  esj9 Medium  
  Creating "database object" 'SP_SecureStore' for application. At this time database is not created.
  c402af0c-5ff6-4995-83b8-3f95210a8b3d
  11/13/2013 15:19:55.54 PowerShell.exe (0x1698)                
  0x170C
  Secure Store Service          
  Secure Store                  
  esk0 Medium  
  Saving "database object" 'SP_SecureStore' in the config db.
  c402af0c-5ff6-4995-83b8-3f95210a8b3d
  11/13/2013 15:19:55.83 w3wp.exe (0x0944)                      
  0x0DB4
  Secure Store Service          
  Secure Store                  
  d4gx Verbose
  BackgroundTasks instance accesed.
  11/13/2013 15:19:55.83 SPUCWorkerProcessProxy.exe (0x13A0)    
  0x02B0
  Secure Store Service          
  Secure Store                  
  d4gx Verbose
  BackgroundTasks instance accesed.
  11/13/2013 15:19:55.83 PowerShell.exe (0x1698)                
  0x1740
  Secure Store Service          
  Secure Store                  
  f7wk Verbose
  StartTracker called for secure store ''
  11/13/2013 15:19:55.83 PowerShell.exe (0x1698)                
  0x1740
  Secure Store Service          
  Secure Store                  
  f7wl Verbose
  Tracker not started because call not made from Service Host.
  11/13/2013 15:19:55.83 WebAnalyticsService.exe (0x0A6C)        
  0x1B88 Secure Store Service          
  Secure Store                  
  f7wk Verbose
  StartTracker called for secure store ''
  Finally it says:
  11/13/2013 15:19:55.90 PowerShell.exe (0x1698)                
  0x170C
  Secure Store Service          
  Secure Store                  
  esk9 High    
  Secure Store Service Application 'Secure Store Service Application' created.
  c402af0c-5ff6-4995-83b8-3f95210a8b3d

• I have an Apple ID and trying to sign in for the 1st time on iTunes. When I do, I get the message: "This Apple ID has not been used with the iTunes Store. Please review your account information." When I do, I get stuck in the same loop and can't sign in!

  I have an Apple ID and trying to sign in for the 1st time on iTunes. When I do, I get the message: "This Apple ID has not been used with the iTunes Store. Please review your account information." When I do, it brings me to the same AppleID login window, and I get stuck in the same loop. I never get to the following screen to enter my account info. What's going on?? This is MADDENING!

  If you want to use it, click Review and check your account information.  Or you could contact the store support staff if you are concerned at http://www.apple.com/emea/support/itunes/contact.html for further help.

• I erase my mac book pro to factory setting and cannot re-install the software. I received a message saying my Apple ID has not yet used with the App store. Please review your account information. Could anyone help please. I need to re-install my os.

  I erase my mac book pro to factory setting and cannot re-install the software. I received a message saying my Apple ID has not yet used with the App store. Please review your account information. Could anyone help please. I need to re-install my os.

  Use Internet Recovery. You shouldn't need an AppleID. http://support.apple.com/kb/ht4718
  Internet Recovery will install the OS that shipped with the Mac. You can then upgrade to Mavericks if that was not it.
  Do you have an App Store account? Did you ever use it to install the OS?

• HT1688 why do i have to reauthorize a computer that was already authorized, the computer i purchased some songs on does not exist anymore, and the email for that account does not exist anymore.

  why do i have to reauthorize a computer that was already authorized, the computer i purchased some songs on does not exist anymore, and the email for that account does not exist anymore. i can reset password because i doent know what the old one was

  Hi lgmmo,
  I think your best best to get this resolved is to contact Adobe Customer Care. Here's the contact info: Contact Customer Care.
  A quick Chat session should get you fixed up.
  Please let us know if you have additional questions.
  Best,
  Sara

• WLI attempts to execute non existent template definition ID

  Reproduce Bug:
  Delete existing template definition and import again from jar.
  Input an XML event into EventQueue.
  WLI provides the following stack:
  <Aug 27, 2002 10:45:17 AM EDT> <Debug> <BPM> <000000> <EventProcessor 6442868
  ExecuteThread: '9' for queue: 'default': This EventCandidate TemplateDefinition:
  2003 is not the most active>
  I looked inside the TemplateDefinition table and it holds only one templateDefinitionID
  which is 5001. Clearly the WLI runtime attempts to execute a non existent templateDefinionID.
  Suggestions?

  To find the problem in the underlying WLI data, run the following SQL:
  select ew.EventDescriptor, ek.expression, t.name,td.templateDefinitionId, to.Templateid,
  to.orgid
  From EventWatch ew, EventKey ek, Template t, TemplateDefinition td, TemplateOrg
  to
  where ew.eventdescriptor = ew.eventdescriptor
  and t.templateid = ew.templateid
  and td.templateid = t.templateid
  and to.templateid = t.templateid
  "Giora Katz-Lichtenstein" <[email protected]> wrote:
  >
  Reproduce Bug:
  Delete existing template definition and import again from jar.
  Input an XML event into EventQueue.
  WLI provides the following stack:
  <Aug 27, 2002 10:45:17 AM EDT> <Debug> <BPM> <000000> <EventProcessor
  6442868
  ExecuteThread: '9' for queue: 'default': This EventCandidate TemplateDefinition:
  2003 is not the most active>
  I looked inside the TemplateDefinition table and it holds only one templateDefinitionID
  which is 5001. Clearly the WLI runtime attempts to execute a non existent
  templateDefinionID.
  Suggestions?

• I received the following error when attempting to use HP ProtectTools Security Manager to manage my passwords; Firefox doesn't know how to open this address, b

  I use HP ProtectTools Security Manager to control my passwords. When i updated to Firefox 30. I received the following error message ; Firefox doesn't know how to open this address, because the protocol (dpql) isn't associated with any program. How can I solve this problem ?

  Hi le.hamzou,
  Previous suggestions were to update the Security Manager if there was one. There were also these add ons:
  [https://addons.mozilla.org/en-US/firefox/addon/fingerfox-se/ Fingerfox], but I am not sure if it will work on win8, it does on win7.
  Another work around I saw was [https://addons.mozilla.org/en-US/firefox/search/?q=ietab&appver=29.0&platform=all IE Tab].
  This reference may also help [http://kb.mozillazine.org/Register_protocol]
  Please post back with the results!

• When I attempt to use software Update, and am then prompted for my Apple ID and password, my apple ID is not complete and it is 'grayed out' so I cannot change it.

  When I attempt to use Software Update, then go to 'Update All', I am then prompted to enter the password for my Apple ID, however my Apple ID does not come up as complete, and it is 'grayed out' and I cannot change it, therefore it is impossible for me to update my software.  How can I change the Apple ID to the correct ID?

  You need to delete the application and then download it from the desired Apple ID.
  (96010)

• How can one use one specific security realm per application ? The realm-name attribute of the login-config tag of web.xml does not make any difference

  Hi,
  I have different sets of users coming from different databases and using different
  roles mapping for each of my web applications. I would like to configure a specific
  security realm per application in my weblogic server 7.0 . Is it possible ?
  I try to specify the realm-name of the login-config tag from the web-xml deployement
  descriptor but it doesn't make any difference. The default realm is always used.
  I also would like to tell the Weblogic server to use the default realm in case
  the realm isn't specified or isn't found. For example, the default would contains
  my admin users.
  Thanks a lot for your answer.
  Iz

  I thik this is a common mistake the ralm-name tag in the deployment descriptor is used
  just by the browser for display purposes (when it opens the basic auth dialog box) so as
  of now there is only 1 active realm which can have multiple providers as Kevin pointed
  out
  Kevin Lewis wrote:
  WebLogic 7 now ignores the realm-name tag (I found that out yesterday).
  My understanding is that there is only one realm active at a time for a domain
  (I would be interested in being contradicted in this).
  However, you can have multiple providers in each category of a realm: authentication,
  authorization, etc. Therefore, what you can do is key authentication, et al,
  off of some other information. We have our users enter their company, for example,
  and use the TextInputCallback to get it. You could also encode something in the
  initial page, based on the URL they hit, or whatever, and get that back in your
  callback.
  You can store that information in your own Principal implementation, and key off
  of that in your authorization provider, going to a different database as appropriate,
  or abstaining when a specific provider doesn’t have anything to say about a subject.
  Anyway, there should be a way to do it, even if it's more complex than you would
  have hoped.
  --Kevin

• SDK service using domain user trying to set SPN for computer account

  I have a SDK service running under a domain user account, but it tries to register the SPN for the computer account of the machine?!
  Therefore I get the following alert: 
  The System Center Data Access service failed to register an SPN. A domain admin needs to add MSOMSdkSvc/WIN-9IAJC0HS9RJ and MSOMSdkSvc/WIN-9IAJC0HS9RJ.domainxx.local to the servicePrincipalName of CN=WIN-9IAJC0HS9RJ,CN=Computers,DC=domainxx,DC=local
  Which makes sense because it has not the permissions to do that.
  When I make the domain user account member of domain admins it has the concerning permissions and it indeed registers that SPN to the computer account. But why?? The SPN should be registered to the domain user account instead (and therefore I had given the
  domain user account the read/write permissions to itself to do that).
  I have the following SPN registered now for the computer and domain user account:
  setspn -l WIN-9IAJC0HS9RJ
  Registered ServicePrincipalNames for CN=WIN-9IAJC0HS9RJ,CN=Computers,DC=domainxx
  DC=local:
          MSOMSdkSvc/WIN-9IAJC0HS9RJ
          MSOMSdkSvc/WIN-9IAJC0HS9RJ.domainxx.local
          MSOMHSvc/WIN-9IAJC0HS9RJ
          MSOMHSvc/WIN-9IAJC0HS9RJ.domainxx.local
          TERMSRV/WIN-9IAJC0HS9RJ
          TERMSRV/WIN-9IAJC0HS9RJ.domainxx.local
          WSMAN/WIN-9IAJC0HS9RJ
          WSMAN/WIN-9IAJC0HS9RJ.domainxx.local
          RestrictedKrbHost/WIN-9IAJC0HS9RJ
          HOST/WIN-9IAJC0HS9RJ
          RestrictedKrbHost/WIN-9IAJC0HS9RJ.domainxx.local
          HOST/WIN-9IAJC0HS9RJ.domainxx.local
  setspn -l domainxx\omdas
  Registered ServicePrincipalNames for CN=OMDAS,CN=Users,DC=domainxx,DC=local:
  none for this account
  I don't get it. Anyone?
  I am using SCOM 2012 R2
  Pls help.
  Thanx in advance.
  Regards
  Chris

  SCOM SDK service really tries to set its SPN to the computer account (although the SDK service is running using a domain user account). The alert is no bug!
  I know this for sure because I gave the SDK service permission to do it - by making the domain user account member of the domain admins security group - and it indeed sets the SPN on the computer account.
  The latter is the actual bug I would say! It should try to set the SPN for the domain user account the sdk service is running with.
  Then again, nog having the SPN been set correctly to this domain user account, does not seem to bother SCOM at all indeed. Perhaps it uses NTLM instead in this scenario.
  Can anyone comfirm?

• Can I use TNSI Payment gateway in iOS application for making product purchases of Pizza for one of our major client.

  Hello Sir/Madam,
  I am representing my company to ask this quest, your quick response is much appreicated.
  We are making an application for one of our client for Pizza and food product purchased and advertisements. We are trying to implement a payment gateway so users can make purchases using their credit cards. Our client have used TNSI payment gateway on website however we are not sure whether we can use the same TNSI payment service in iOS Application.
  Would you please confirm with us whether apple have an approval for using this Gateway service inside the app. Please let us know ASAP so we can make the integration for completing the app.
  Also it would be real great if we are suggested some approved and valid payment gateways apple have approved for the apps submitted over appstore as this would help us to use the same services firmly wihtout the appstore rejection issue.
  Link for gateway service provider : http://www.tnsi.com/products-services/payments/payment-services/secure-managed-p ayment-solutions/tns-payment-gateways
  Thanks for you kind reply in advance.
  Regards,
  Vicky Dhas
  Solutions Architect | Nano Equipment Pte Ltd.

  What is the appstore rejection issue? It is best not to pay too much attention to what you read on internet media outlets as they are typically full of lies.
  Food is the easy part. You cannot use Apple's payment systems for physical products. You must do that yourself using whatever system you have. Advertising is trickier. You talked about pizza and food and then slipped in that little tidbit. Why?
  The bottom line is that the only people who get their apps rejected are people trying to scam either Apple or Apple's users. Sadly, not enough of them get rejected. You know if you are trying to scam someone or not. If so, then your chances of rejection are higher. When in doubt, consult Apple's In-App Purchase guidelines.