Setting up an additional central admin site via Powershell

Similar Messages

• SCCM 2012 Replication between Central Admin Site and all Primary Sites is failing

  Let me start by saying I have made a mistake and now I am paying for it and attempting to fix it. All of our SCCM servers are virtual and exist on an ESX environment. The mistake I made is I restored our Central Admin Site from a backup without also
  restoring the two Primary Sites at the same time. Now the databases between the sites simply refuse to synchronize. I can run the Replication Link Analyzer until I'm blue in the face and even though the data gets replicated once, the replication immediately
  breaks and fails after that.
  Regrettably I no longer have access to backups that would take me back to a point where the three servers were happy. The problem there is our ESX administrator only keeps a limited number of backups per server (we have in excess of 180 virtual servers in
  our ESX environment) and the backups from a point in time where they worked is no longer available.
  As I have said I have tried running the Replication Link Analyzer many times. I have also tried going into the SQL server console and running the stored procedure spDrsSendReplicationInvalid.
  Can anyone provide me with any assistance on how best to restore replication between the Central Admin server and the two Primary servers?

  http://blogs.msdn.com/b/scstr/archive/2012/05/31/how_2d00_to_2d00_site_2d00_server_2d00_recovery_2d00_central_2d00_or_2d00_primary.aspx
  Just an addition: the option called "Recover central administration site:
  Then specify the FQDN of a
  Reference primary site" is the one to try first.
  Torsten Meringer | http://www.mssccmfaq.de

• Ran the reprovision powersheel sripts still no Central admin site on a 404 error

  I still have no central admin site.
  When I call it thru the browser I get a 404 error.
  I ran these scripts:
  .\psconfig.exe -cmd adminvs
  -unprovision
  .\psconfig.exe -cmd adminvs
  -provision -port 9999
  -windowsauthprovider onlyusentlm
   the message came back telling me that the CA is at the location etc.. no errors were thrown when I ran the scripts.
  What Else can I check?

  I'm on  windows server 2012 and this is SharePoint 2013
  Windows Authentication is Enabled  has 401 challenge.
  I also did this:
  Problem: SharePoint Central Admin Page diplays HTTP 404 Error after Installation
  Cause: HTTP Verbs are not configured to allow in IIS
  Resolution: Go to the server where SharePoint Central Admin is hosted, Start -> Run -> Type inetmgr -> Click OK -> Expand Server_Name -> Expand Sites -> Click Web Application -> Click Request Filtering under IIS on the
  Right -> Double click "Request Filtering" -> Click on HTTP Verbs->Click Allow from the top right corner and enter GET and click OK. Repeat the same steps to allow other verbs POST, HEAD, CONNECT, PUT, DELETE, TRACE, OPTIONS and Central Administration
  started to load properly
  Note: If you require, future web applications not to face this issue, then the settings has to be applied to the IIS level as well. Following are the steps to apply the same
  Go to the server where SharePoint Central Admin is hosted, Start -> Run -> Type inetmgr -> Click OK -> Click on Server_Name -> Click Request Filtering under IIS on the Right -> Double click "Request Filtering" -> Click on HTTP Verbs->Click
  Allow from the top right corner and enter GET and click OK. Repeat the same steps to allow other verbs POST, HEAD, CONNECT, PUT, DELETE, TRACE, OPTIONS.
  Still no Central Admin Site, still get the Error message that the web page can not be found. hTTP 404

• Bulk Update Connected SharePoint Sites via powershell

  Hello
  Is there a way to Bulk Update Connected SharePoint Sites via powershell?
  Yasser

  Sure you can, call the following PSI method from PowerShell passing in the correct parameter values:
  http://msdn.microsoft.com/en-us/library/office/gg206217(v=office.15).aspx
  Paul
  Paul Mather | Twitter |
  http://pwmather.wordpress.com | CPS

• Central Admin site won't let anyone log in.

  I am trying to set up our production multi-server farm.  I have run the configuration wizard after creating the configuration database manually using powershell, and Central Administration site loads fine when opened directly from the application server
  which it is hosted on while logged in as the setup user account.  However, if i am on any other server or machine, it prompts for credentials and doesn't accept anything.  Also, if i am on the application server hosting the central administration
  site, and i try to sign in as the farm administrator account, it will not accept those credentials.  It won't even then accept the setup users credentials.  I have to close IE then re-open the central administration page in order to be able to administer
  anything.
  Here is a little more information:
  I already ran through the same type of installation on a sandbox machine in a single server environment, and it was working fine.  The only major difference at this time is that i am using separate accounts for the setup user and the farm administrator.
  I have tried to push forward with my deployment, however, i get an error when trying to set up the search service.  After running a set-spenterpriseSearchService command i get an error: "The specified credentials are invalid"
  I am using Kerberos authentication just like i did on the sandbox, and i have set up the SPNs for the SQL service account, farm admin account, application pool account, and the setup user account just in case.
  I am at a complete loss on this one, it seems like it is not able to validate any credentials, but i don't know how to verify that at all.  I did try to verify kerberos was working, but i didn't see any security logs regarding verification of any account
  at all, so i don't technically know if kerberos is working or not.
  Please help.  Thanks.

  From the login issue you described in your last post, this sounds a lot like a Kerberos configuraiton issue.  IIS will challenge for Basic, NTLM, and Negotiate protocols before issuing an access denied message (which it appears you were not even getting). 
  So, you may want to run the get commands from the KB article I posted to check the CA web site to see if only NTLM is configured which could cause the problem.  The cscript commands in the KB I posted still work on IIS 7.  I used them in Beta to
  fix the triple login prompt I was getting from Central Admin.  Regardless, when you have a Kerberos issue, you need to check multiple facets of the configuration:
  Account trusted for delegation in AD?
  Computer trusted for delegation in AD?
  No duplicate or missing SPNs (ldifde or setspn -l commands can provide listings)?
  IIS Web Sites configured for Negotiate protocol
  Sometimes you need to go to Component Services and find the DCOM WAMREG properties and allow local activation for service accounts though I thought this wasn't necessary in SP2010.
  Is the correct Service being registered?
  For instance if my web application is on a machine with FQDN server.host.com so that the NETBIOS name is "server," then I'd issue the following SPNs:
  "setspn -a HTTP/server.host.com <Service account w/ domain>" and "setspn -a HTTP/server <Service account w/ domain>"
  That being said, if you are using the same service account for everything (such as port 80 web app pool and CA app pool), then you may be having a duplicate SPN issue due to the port numbers not being handled properly in the browser. However, this issue
  should only exist in IE6.
  http://sharepointspot.blogspot.com/2008/12/non-standard-port-numbers-hotfix-for.html
  http://support.microsoft.com/kb/908209/en-us
  I agree with Rob_H that you may want to only allow NTLM for Central Admin. 
  Dan Luciano - Sogeti USA - MCP, MCTS WSS 3.0 and MOSS 2007 Configuration WSS 3.0 Applicaton Development

• Why site database server for Central Admin site not accessible?

  Hello everyone,
  I've this issue where; when connecting a primary site to existing central administration site; setup prerequisite checker 
  continue to notify it cannot establish connection to SQL server having central administration site database. The SQL server 
  having central site database is installed locally on the server central administration site is hosted on. Both servers 
  (central administration site server, the new server to host child primary site required to join that central administration 
  site) having following configuration:
  A. Central Administration site server, with site database server installed locally: 
  Name:             HQCAS
  OS:                WS 2008 R2 SP1, fully patched.
  SQL Server:     SQL Server 2008 R2 with SP2. Correct required SQL server collation set supported by CM2012.
  SQL Server named instance: CASDB
  Local firewall ports opened: 1433, 4022  (via inbound rules created in group policy, same GPO applies to primary site 
  server)
  SQL Server broker service Enabled: True.
  TCP/IP: All dynamic ports left blank to support static port 1433.Static port 1433 configured for all IPs. 
  IP Address: 10.1.1.250/8
  Local SAM:      Both server computer accounts added to local 'Administrators' group on both servers.
  Domain service account: svcCASDB
  SPNs registered:        2x, one for HQCAS hostname on instance CASDB on port 1433, second for FQDN for HQCAS on instance 
  CASDB on port 1433.
  SQL Server Logins:   Security group containing both computer accounts for HQCAS & STPRS. Both account having sysadmin SQL 
  server role assigned.
  SQL Server browser service running.
  B. Primary site server, with SQL server installed locally: to join HQCAS CM2012 hierarchy:
  Name:             STPRS
  OS:        WS 2008 R2 SP1, fully patched.
  SQL Server: SQL Server 2008 R2 with SP2. Correct required SQL server collation set supported by CM2012.
  SQL Server named instance: CM12PRIMARY
  Local firewall ports opened: 1433, 4022  (via inbound rules created in group policy, same GPO applies to central 
  administration site server)
  SQL Server broker service Enabled: True.
  TCP/IP: All dynamic ports left blank to support static port 1433.Static port 1433 configured for all IPs. 
  IP Address: 172.168.1.250/16
  Local SAM:      Both server computer accounts added to local 'Administrators' group on both servers.
  Domain service account: svcCASDB
  SPNs registered:        2x, one for STPRS hostname on instance CM12PRIMARY on port 1433, second for FQDN for STPRS on 
  instance CM12PRIMARY on port 1433.
  SQL Server Logins:   Security group containing both computer accounts for HQCAS & STPRS. Both account having sysadmin SQL 
  server role assigned.
  SQL Server browser service running.
  Tests performed:
  Telnet to/from both HQCAS/STPRS on ports 1433, 4022 establishes connection. Please help
   

  Hello friends,
  My finding it finally is....there wasn't any configuration issue as I mentioned above.
  I'm using an evaluation edition of SQL Server 2008 R2; it just allows default instance (MSSQLSERVER) to be used, not a named instance. 
  The confirming test for this was...I re-installed SQL Server with all the same settings except changing from a named instance to default; once I finished applying service pack 3. I could initiate WSUS 3.0 SP2 x64 setup and point it to use this SQL server.
  WSUS setup completed without any errors. This was not happening when named instance was all configured properly. It was just not accessible from outside.
  Well this is what my finding is. For lab environment of CM2012 it suffices the need.
  Regards,
  Shahzad.

• How to set a BCS field in document library via PowerShell?

  Hi,
  In my  doclib there's a BCS field named "CUSTOMERS3". When I set it as:
  $item["CUSTOMERS3"]="BADO"
  I see the text "BADO" in "View All Properties". But if I click on "Edit Item" button in the toolbar I see the proper picker empty. How should I set my BCS field correctly via PS?

  Hi,
  According to your post, a problem occurred when you set an External Content Type field using PowerShell.
  Here is a similar thread for you to take a look at:
  Updating an “external content type” field on an SPList using PowerShell
  http://stackoverflow.com/questions/8402655/updating-an-external-content-type-field-on-an-splist-using-powershell
  Best Regards
  Dennis Guo
  TechNet Community Support

• Set 'work email' or other contact detail via PowerShell?

  I have a few users trying to set alerts on OneDrive documents. They can get through the Alert set up process, but they always get a warning about their emails being blank, and that they won't receive any email alerts. Turns out that their contact details
  shows their work email as blank. 
  I've enabled the Sharepoint settings to let users edit their work email, and that resolved the issue. But I want to use Powershell to fix that for all my users, instead of making them fix that up manually. Get-SPOuser doesn't bring back any email property
  (only DisplayName and LoginName), and there doesn't seem to be any way to get contact details when using Sharepoint online, unlike the on-site solution (get-spuser). 
  Just wondering if there's any way for me to accomplish this? 
  Thanks,
  Stephen

  You would instead use
  Set-MSOLUser or use DirSync to synchronize with an on-premises Active Directory domain that had this information.
  Trevor Seward
  Follow or contact me at...
  &nbsp&nbsp
  This post is my own opinion and does not necessarily reflect the opinion or view of Microsoft, its employees, or other MVPs.

• Team Foundation Server 2013 update 4 New Install - Error 503 Service Unavailable for Sharepoint Central Admin

  Hello,
  I ran a new install of Team Foundation Server and let it install the built in SharePoint pieces on a single server setup. After the install i'm able to access the
  http://teamfoundation:8080/tfs/ address without issue but am unable to create a project. When I attempt to create a project I get the following error:
  TF30172: You do not have permission to create a new team project (when checking security i'm a member of the project collection administrators and Team Foundation Administrators)
  This led me to look at the sharepoint central administration site where I receive the following error:
  Error 503 Service Unavailable
  I've gone through and validated the identity is set correctly in IIS for the following services:
  SharePoint Central Admin v4
  SharePoint15AppPool
  The SharePoint Web Services Root is set as LocalService instead of the domain user.
  The identity domain user is setup as local administrator on the Team Foundation Server. They are all set to use .net v4.0.30319 with integrated Pipeline mode.
  Any help would be great!
  Thanks!
  Eric

  Hi Eric,      
  Thanks for your post.
  Please share your detailed team project creation log here.
  In your TFS Admin Console>>Extensions for SharePoint Products tab, ensure SharePoint Web Application shows correctly in the right panel. And go to TFS Admin Console>>Application Tier>>SharePoint Web Applications tab, ensure your SharePoint
  web application displays in the right panel, then select your SharePoint web application and click Repair Connection, ensure can repair successfully.
  In your IIS Manager, select your SharePoint Central Administration V4 site and click Browser:17012(http) in the right panel, check if your SharePoint Central site can be opened successfully or not. If your SharePoint Central site cannot be accessed, I think
  this issue relate to your SharePoint site, you should contact SharePoint experts to resolve this issue first. After you resolved this issue and your SharePoint Central Admin site can be accessed correctly, then try to create your team project(within SharePoint
  site) again, if there still has issue when creating team project, please share the detailed error message here, we will try to resolve it.
  We are trying to better understand customer views on social support experience, so your participation in this interview project would be greatly appreciated if you have time. Thanks for helping make community forums a great place.
  Click
  HERE to participate the survey.

• Are there guidelines for setting up a secondary central administration?

  We created a multiple server SP 2010 farm to have some redundancy.
  One of the things I am trying to figure out is how to set up a second central admin in case the server on which central admin resides has to be taken down for repair.
  Is this functionality even possible?
  If not, then I won't bother with it right now.
  But if it is, I want to get things set up to handle this case.
  Thank you so much for sharing your experience.

  Yes, it is possible. Refer to the following post for more information
  http://blog.fpweb.net/how-to-run-sharepoint-central-admin-on-two-servers/#.VFhZyPmUcsY
  http://www.mssharepointtips.com/tip.asp?id=1006
  Cheers,

• Trying to add Admin account in project server 2010 via powershell

  Dear All
  Unfortunately some one removed admin account from PWA 2010 so i have tried to add admin account via powershell command
  New-SPProjectSiteAdministrator -AdminAccount "dir\santosh" -Url "https://myserver/PWA"
  New-SPProjectSiteAdministrator : <nativehr>0x80070005</nativehr><nativestack></nativestack> At line:1 char:31 + New-SPProjectSiteAdministrator <<<<  -AdminAccount "dir\santosh"
  -Url "https://myserver/PWA"     + CategoryInfo          : InvalidData: (Microsoft.Offic...ewAdministrator:PSCmdletNewAdministrator) [New-SPProjectSiteAdministrator], Unaut   
  horizedAccessException     + FullyQualifiedErrorId : Microsoft.Office.Project.Server.Cmdlet.PSCmdletNewAdministrator
  Getting above error
  Help me
  Regards
  Santhu

  Hello,
  Can't you log in with an account that is already in the Administrators group then add the new account? I think you will need to run the command with a user account that already has admin access to PWA - I don't currently have an environment to test this
  on.
  Paul
  Paul Mather | Twitter |
  http://pwmather.wordpress.com | CPS

• Powershell script for Use this termset for site navigation in tem store management tool in central admin

  can anyone pls point out whats the power shell script for "use this  termset for site navigation" in the termstore management tool in my central  admin';s manage serv appln-->managed metadata serv appln ->term styore mgmnt tool
  i would like to check this "checked" through powershell script
  help is appreciated!

  Hi,
  To check if the term set has been set to be used for site navigation, we need to check the
  NavigationTermSet.IsNavigationTermSet property for the term set.
  Here is the code example for using PowerShell to get the setting:
  $site=Get-SPSite "your site collection URL";
  $session = Get-SPTaxonomySession -Site "your site collection URL ";
  $termStore = $session.TermStores["Managed Metadata Service"];
  $Group = $termStore.Groups[“Group Name”];
  $TermSet = $Group.TermSets[“Term Set Name”];
  $navTermSet = [Microsoft.SharePoint.Publishing.Navigation.NavigationTermSet]::GetAsResolvedByWeb($termset, $site.RootWeb, "GlobalNavigationTaxonomyProvider");
  write-host $navTermSet.IsNavigationTermSet
  Best regards.
  Thanks
  Victoria Xia
  TechNet Community Support

• Not able to access Central admin or any other site

  My machine name has been changed from abc-xyz to DT-012
  After changing my machine name am not able to access Central admin or any other site in sharepoint. which says '
  Server Error in '/' Application.'
  Please tell me after changing machine name what else i have to change so i can access my SharePoint back.

  Hi Niraj, 
  Thanks for posting your issue, Just wanted to know have you changed server name  using below mentioned command?
  stsadm -o renameserver -oldservername oldservername -newservername newservername
  I hope, you have not changed your SQL Server name/instance. If changed SQL too. Kindly re-run the configuration Wizard of SQL server to set up Alias.
  Also, Browse below mentioned URLs to know more about the fixes of this issue
  http://www.ericjochens.com/2013/03/change-sharepoint-server-hostname-and.html
  http://www.bluesphereinc.com/blog/renaming-a-sharepoint-20102013-server/
  I hope this is helpful to you, mark it as Helpful.
  If this works, Please mark it as Answered.
  Regards,
  Dharmendra Singh (MCPD-EA | MCTS)
  Blog : http://sharepoint-community.net/profile/DharmendraSingh

• How to rename a site without accessing the Central Admin if there is a treshold...

  SP2010 - I'm SCA of a site collection...
  I need to rename a site, (site settings, title etc), but when  I rename and try to save, it says   "The
  attempted operation is prohibited because it exceeds the list view threshold enforced by the administrator."
  ok I understand the problem, but I don't have access to Central Admin and increase the Treshold or whatever.
  I need to do that within the Site collection  - I've rights use Sandbox solution.
  Please advise how to rename the site?  (LINK)

  As Alex said, it is one of the biggest weaknesses in SharePoint.
  You need to decide when and how you are going to reduce the size of the list.  And put a governance policy (written document that is vetted through management) in place that states that lists need to be below the default 5000 item limit. 
  I DO NOT recommend increasing the limit, although I have seen companies do this.  All it leads to is the eventual crash of your farm and many, many more lists that then need to be paired down.
  to fix your issue though, you could increase the limit, then export the list to excel, then decrease the limit back to default 5000 and then do your work in excel by parsing the list into however many you want, based on some criteria that you decide (date,
  unit numbers, or what ever makes sense)
  then import the excel files to new lists, after you have the new lists imported, business could test, then you could increase the limit one more time, so you can delete the original list.
  and for renaming the site, if you don't want to do all the list work, you could increase the limit, and rename the site with set-spsite, assuming you're using host named site collections.  If you're using path based, you could export the site, then
  create the site and all its subsites, and perform the import; which is one more reason why HNSC is the way to go.
  Stacy Simpkins | MCSE SharePoint | www.sharepointpapa.com

• People picker works in Central Admin but not other site collections

  Hello
  I am having a sudden problem with adding users to permissions for document libraries. It appears to only affect the main site collection. The people picker displays some users that are already in site collection when you start typing letters of the name
  of the user. However at some point in the typing the message appears "sorry we're having trouble reaching the server." The problem does not occur in Central Admin when adding permissions. Using Fiddler there is an error when I get the message "sorry..."
  "500, HTTP, SERVERNAME, /_vti_bin/client.svc/ProcessQuery." Also when I go to the library and select "shared with" I get error "Unexpected response from server. The status code of response is '500'. The status text of response
  is 'System.ServiceModel.ServiceActivationException'." I believe they are connected. Any help is appreciated.

  Hi Jeffrey,
  Please try to verify “HTTP Activation” feature per the article below:
  http://blog.karstein-consulting.com/2014/02/18/sharepoint-2013-people-picker-error-sorry-were-having-trouble-reaching-the-server/
  Are you using custom FBA provider for web application other than CA site which might be causing misconfiguration in web.config?
  Could you please provide more complete related error message from ULS log for troubleshooting?
  Regards,
  Rebecca Tu
  TechNet Community Support
  Please remember to mark the replies as answers if they help, and unmark the answers if they provide no help. If you have feedback for TechNet Support, contact
  [email protected]