SharePoint 2013 + ADFS 3.0 -- Office SSO
Hello
We have installed a SharePoint 2013 SP1 farm with multiple Web Applications (Portal and OneDrive). The users log in on an ADFS server 3.0 in the internal network and externally. This is working fine. Now we have 2 problems:
The user has to sign in to the ADFS server again everytime he opens an Office document externally. We don't have this problem in the internal network because of the Windows Authentification.
The user cannot open the explorer view in a document library externally. He gets the message, that he has to insert the url to the trusted site altough he has already done that. Again internally no problem.
Can anyone help us?
ADFS v3 is the only way to use MSFT SAML w/ SharePoint Apps, so yes it is supported.
I don't think Explorer View (WebDAV) will work with SAML. I think that requires Windows Auth, if I'm not mistaken.
Trevor Seward
Follow or contact me at...
  
This post is my own opinion and does not necessarily reflect the opinion or view of Microsoft, its employees, or other MVPs.
Similar Messages
-
Sharepoint 2013 ADFS Integration duplicates User Profiles for each Authentication Type
Hello everyone
i am building up a sharepoint farm which is hosting some of our corporate web sites. before integration Adfs and using SAML-Based Authentication every user had a single User Profile and were happy.
when i integrated adfs 3.0 and sharepoint 2013 SP1 i found whoun a user logs into sharepoint by using trusted identity token issuer (adfs 3.0) they get redirected to a new profile which is totally different from their old Profile. what is the problem ?The problem is that SharePoint does not support Multilogon accounts. I asked for that here -
http://sharepoint.uservoice.com/forums/282887-customer-feedback-for-sharepoint-server/suggestions/7085002-multilogon-accounts
If you're just moving to ADFS only, then you can migrate users with Convert-SPWebApplication -
https://technet.microsoft.com/en-us/library/jj219696(v=office.15).aspx or with a script provided here:
http://blogs.msdn.com/b/sambetts/archive/2014/09/03/how-to-migrate-sharepoint-users-to-adfs.aspx (uses Move-SPUser). -
SharePoint 2013 - Unable to open Office documents in Internet Explorer - cannot access file
In SharePoint 2013 some of our users receive an error message when trying to open an Office application from Internet Explorer 11. Other users on the same browser don't have this issue.
Any ideas on how to resolve?HI Greg,IE11 is having some issues with the SharePoint 2013.
http://expertsharepoint.blogspot.de/2014/08/issues-with-sharepoint-2013-and.html
Since
SharePoint 2013 fully support IE 32-bit version above 7, there might be compatibility issue with other browsers. I’d recommend you use IE 8,9,10 32-bit for optimal
Performance.
3.
Make sure the IE (Internet Explorer) Version should be 32-bit and not
a 64-bit
- See more at: http://expertsharepoint.blogspot.de/search/label/Known%20Issues?updated-max=2014-08-19T17:33:00%2B08:00&max-results=20&start=4&by-date=false#sthash.a2N14nDL.dpuf
Anil Avula[MCP,MCSE,MCSA,MCTS,MCITP,MCSM] See Me At: http://expertsharepoint.blogspot.de/ -
Using SharePoint 2013 Document Library for Office 2010 Workgroup Templates
Dear all,
we are about to introduce SharePoint 2013 and are looking for a way to use it as location for our Office 2010 workgroup templates. But when I try to configure it with in Word options it tells me that URLs are not allowed here.
I've searched this forum but saw no thread that has a solution so far.
So I just want to know if anyone implemented this feature or even has an idea that could work...
Thank you in advance,
UweHi,
Based on my tested in my environment ( Word 2010 & Share Point 2013), we can't point to the SharePoint library URL directly with Workgroup Templates.
Please try the workaround:
Sync the SharePoint site libraries to local disk.
http://office.microsoft.com/en-us/support/sync-onedrive-for-business-or-sharepoint-site-libraries-to-your-computer-HA102832401.aspx
Set the Workgroup Template to a local drive (to create the reg key)
Open regedit and set the location to the mapped drive:
Setting Name: SharedTemplates (Type REG_SZ)
Reg Key: HKEY_CURRENT_USER\Software\Microsoft\Office\14.0\Common\General
Quote From:
http://social.technet.microsoft.com/Forums/sharepoint/en-US/93f2e50b-9af7-43ac-8151-ea66072afc5b/how-do-i-get-ms-word-to-look-at-sharepoint-for-workgroup-templates?forum=sharepointadminlegacy
http://sharepointfeaturesandfailures.blogspot.com/2010/11/mapping-office-shared-template-location.html
http://www.experts-exchange.com/OS/Microsoft_Operating_Systems/Server/MS-SharePoint/Q_27950770.html
http://www.endusersharepoint.com/EUSP2010/2010/07/01/consuming-sharepoint-content-types-in-office-2010/
Please Note: Since the web site is not hosted by Microsoft, the link may change without notice. Microsoft does not guarantee the accuracy of
this information.
Regards,
George Zhao
TechNet Community Support
It's recommended to download and install
Configuration Analyzer Tool (OffCAT), which is developed by Microsoft Support teams. Once the tool is installed, you can run it at any time to scan for hundreds of known issues in Office
programs. -
Search SharePoint 2013 On-Prem with Office 365
We're trying to understand federated search in SharePoint 2013, when it comes to Office 365. We have both a SharePoint 2013 on-prem environment, and an Office 365 environment. The 2 are completely separate, and have not been configured to use a hybrid model.
Is it possible to configure a Result Source in either the SharePoint environment or the Office 365 environment to index the other? Reading this
article from Technet, it indicates that you can configure a remote SharePoint farm as a Result Source:
"Remote SharePoint provides
results from the index of a search service in another farm."
But I've read on another
thread on here that this is not possible from O365.
I'm hoping that someone can provide some guidance, or point me in the right direction.
Thanks,
cflbasserYes, you can receive search results from an on-premise SharePoint Server 2013 farm within SharePoint Online.
Hybrid search between SharePoint Server and SharePoint online uses federated search results. Neither the on-premise farm nor SPO crawl the other location, they just send a federated search query over the fence and wait for the results.
You can search in either direction (one-way hybrid search) or both ways (bidirectional hybrid search).
The one-way search can either be SharePoint Server sending search queries to SPO or SPO sending queries to SharePoint Server which also needs a reverse proxy for securely publishing your on-premise farm to SPO.
Bi-directional hybrid search just combines both one-way methods together so either location can receive search results from the other location.
Here are some further resources to help you plan and implement hybrid search:
Hybrid for SharePoint Server 2013
Configure hybrid Search for SharePoint Server 2013
Chris O'Brien has an excellent article that describes the actual search experience. Check out Office 365 SharePoint hybrid - what you
DO and DO NOT get
Jason Warren
@jaspnwarren
jasonwarren.ca
habaneroconsulting.com/Insights -
Hello,
how is the Registry Key HKCU\Software\AppDataLow\Microsoft\Office\15.0\Common\Portal
for "PersonalSiteURL" supposed to be set in SharePoint 2013 / Office 2013?
Or is there another way to tell the Office Clients where to look for the user profile / published links? In SharePoint 2007 there was a button "Set as default MySite" which creates the Registry key as far as I know.
How is Office 2013 supposed to get this Information?
Any kind of help will be appreciated.
Thanks,
DennisHi Dennis ,
Thank you for your posting!
According to your description, my understanding is that you want to get the Published links using Office 2013 on client.
Yes, you can get the Published links using Office 2013 on client. For achieving your demand, you need to have the 15.0/Common/Portal registry key setup with a PersonalSiteURL defined . For detailed information,
you can refer to the article and note that everything is 15 instead of 12 now:
http://paulliebrand.com/2009/08/25/publishing-links-to-office-2007-without-enabling-my-sites-in-sharepoint/
Also the comments of the blog is helpful:
http://paulliebrand.com/2011/09/27/set-as-default-my-site-sharepoint-sites-or-my-sharepoint-sites-missing-in-office-2010-on-sharepoint-2007/
Thank you for your understanding and support.
Best Regards,
Eric
Eric Tao
TechNet Community Support -
Office Web Apps 2013 with SharePoint 2013 Server
Hi All,
I have installed a separate server for Office Web Apps 2013 on Windows Server 2012 VM. I have followed TechNet's article on
Deploying Office Web Apps Server & exactly followed steps.
On SharePoint Server 2013 (Windows Server 2012), I followed TechNet’s article on
Configure Office Web Apps for SharePoint. The Office Web Apps on SharePoint 2013 environment works for
Excel document that shows “View in Browser” but
no Preview.
However, PowerPoint and Word documents doesn’t show “View in Browser”. I thought Internet Explorer 10 has some issue with Office Web Apps and checked on Chrome and results were same.
On SharePoint Server 2013 environment, I have configured 3 services applications, MMS, UPS and Excel Service.
1.) Do I need any other service applications to be enabled for OWA 2013?
I read number of blogs,
Installing Office Web Apps Server for SharePoint 2013 (Steve Mann),
Install Office Web Apps 2013 with SharePoint 2013 (Max Melcher) and Spence Harbar
(Enabling Office Web Apps Preview editing with SharePoint 2013). and all these blogs give more or less same steps that I have followed.
Strange thing is that Excel documents on my SharePoint 2013 sites are working but neither word or PowerPoint documents are not showing option for “View in Browser”.
I am using HTTP and not HTTPS.
2. Can someone please advice how could I solve the Office Web Apps 2010 on Word and PPT?
3. How to can enable preview for Excel, Word and PPT documents.
Thanks you.
Regards,
Aroh
Aroh ShuklaHi Inderjeet and Olafur,
Thanks for your reply.
@Inderjeet: That site collection feature on SP2010 works on our production environment but on SP2013 site collection there is no OWA feature. Microsoft recommends to have a separate OWA2013 server and what I create
a separate VM for OWA2013 server.
@Olafur: Your suggestion looks spot on. The OWA server does show the discovery:
Our SP2013 development server has limited RAM (4GB) and it think is causing the issue.
Let me check if increasing RAM solves the issue.
Thanks again for your suggestions. (Interjeet and Olafur).
--Aroh
Aroh Shukla -
Office Web Apps not working externally SharePoint 2013
In the production farm we have connected office web apps server which is FQDN server name ( xxx.xxx.corp.local) , we can open the sites internally without any issues, but when we open from externally office web apps asking for authentication and not working
properly.
Please help me how to make it work in external.
Thanks, Ram ChYou will need a public facing URL or IP address. Check below
You need to configure your OWA for internet
New-OfficeWebAppsFarm –InternalUrl "md1xxx95.jdaxx.corp.local" -ExternalUrl "http://198.xxx.xxx.xxx" -EditingEnabled
Set-SPWOPIZone –zone
“external-http”
Detailed steps in
http://social.technet.microsoft.com/wiki/contents/articles/19039.sharepoint-2013-how-to-enable-office-web-apps-to-work-in-both-internal-and-external-environments.aspx
Set-SPWOPIZone –zone “external-http”
Set-SPWOPIZone –zone “external-http”
If this helped you resolve your issue, please mark it Answered -
What is Office 365 in sharepoint 2013
HI
what is Office 365 in sharepoint 2013
adilHi adil,
According to your post, my understanding is that you want to know what is Office 365.
“SharePoint” can refer to one or more Microsoft SharePoint products or technologies including SharePoint Online. SharePoint 2013 is on its way and currently its preview is available both for on-premises and SharePoint Online as a service.
SharePoint Online is a cloud-based service, hosted by Microsoft, for businesses of all sizes. Instead of installing and deploying SharePoint Server on premises, any business can now simply subscribe to an Office 365 plan, or the standalone SharePoint Online
service, and their employees can create sites to share documents and information with colleagues, partners, and customers.
For more information, you can refer to the following articles:
http://office.microsoft.com/en-us/office365-sharepoint-online-small-business-help/what-is-sharepoint-HA010378184.aspx
http://office.microsoft.com/en-001/office365-sharepoint-online-enterprise-help/get-started-with-sharepoint-2013-HA102772778.aspx
http://office.microsoft.com/en-001/office365-sharepoint-online-enterprise-help/sharepoint-online-planning-guide-for-office-365-enterprise-and-midsize-HA101988931.aspx
http://technet.microsoft.com/en-us/library/sharepoint-online-service-description.aspx
http://blogs.msdn.com/b/jibranj/archive/2012/09/21/office365-try-sharepoint-2013-online-consumer-preview.aspx
Best Regards,
Yumi Fu -
Hybrid Search not working from SharePoint 2013 Online to SharePoint On-premise
Hi,
I have setup a SharePoint 2013 Hybrid environment setup with the following –
Windows Server 2012 R2
SharePoint Server 2013 with April 2014 CU
SQL Server 2014
ADFS 3.0 using SSO with Web proxy and DirSync
SharePoint 2013 Online tenant on Office 365 Enterprise Subscription
I have configured the Hybrid following the article
http://technet.microsoft.com/en-us/library/jj838715(v=office.15).aspx and configured Hybrid Search. The hybrid environment was working fine including Search both ways initially
but after upgrade to April CU 2014 (along with upgrade to SQL 2014 from SQL 2012), now search from SharePoint online to SharePoint in-Premise is not working anymore.
I am still able login with the federated IDs in both the environments and get results from SharePoint Online in SharePoint in-Premise environment.
I have already tried most of the troubleshooting steps mentioned at
http://technet.microsoft.com/en-us/library/dn518363(v=office.15).aspx
Now every time, we perform a search in our SharePoint Online site, which is configured to show hybrid results from SharePoint in-premise, we don’t get results from in-premise and instead we see the following error logged in SharePoint
In-premise Web Server –
Error - An exception occurred when trying to issue security token: Exception of type 'System.ArgumentException' was thrown. Parameter name: value.
And ULS log shows the following – Even though the message seems apparent that there could be duplicate users in user profile Application, but that’s not the case. There are just 2 unique users added there.
06/04/2014 12:58:41.59 w3wp.exe (0x1C88) 0x2494 SharePoint Portal Server
User Profiles ae0sx
Unexpected Error trying to search in the UPA. The exception message is 'System.ArgumentException: Exception of type 'System.ArgumentException' was thrown. Parameter name: value at Microsoft.SharePoint.Administration.Claims.SPIdentityProviders.GetIdentityProviderType(String
value) at Microsoft.Office.Server.Security.UserProfileIdentityClaimMapper.SearchUsingNameIdOrThrow(UserProfileManager upManager, String nameId, String nameIdIssuer) at Microsoft.Office.Server.Security.UserProfileIdentityClaimMapper.GetSingleUserProfileFromClaimsList(UserProfileManager
upManager, IEnumerable`1 identityClaims)' 4c8b979c-f112-d050-9764-c834ee4cf36d
06/04/2014 12:58:41.59 w3wp.exe (0x1C88) 0x2494 SharePoint Foundation
Monitoring b4ly Verbose
Leaving Monitored Scope (Executing the user mapping operation in GetMappedIdentityClaim()). Execution Time=1.4449 4c8b979c-f112-d050-9764-c834ee4cf36d
06/04/2014 12:58:41.59 w3wp.exe (0x1C88) 0x2494 SharePoint Portal Server
User Profiles ae0su High The set of claims
could not be mapped to a single user identity. Exception Exception of type 'System.ArgumentException' was thrown. Parameter name: value has occured. 4c8b979c-f112-d050-9764-c834ee4cf36d
06/04/2014 12:58:41.59 w3wp.exe (0x1C88) 0x2494 SharePoint Foundation
Monitoring b4ly Verbose
Leaving Monitored Scope (Inside SPIdentityClaimMapperOperations.GetClaimFromExternalMapper(); calling the registered SPIdentityClaimMapper). Execution Time=1.5596
4c8b979c-f112-d050-9764-c834ee4cf36d
06/04/2014 12:58:41.59 w3wp.exe (0x1C88) 0x2494 SharePoint Foundation
Claims Authentication ae0tc
High The registered mappered failed to resolve to one identity claim. Exception: System.InvalidOperationException: Exception of type 'System.ArgumentException' was thrown. Parameter name: value ---> System.ArgumentException:
Exception of type 'System.ArgumentException' was thrown. Parameter name: value at Microsoft.SharePoint.Administration.Claims.SPIdentityProviders.GetIdentityProviderType(String value) at Microsoft.Office.Server.Security.UserProfileIdentityClaimMapper.SearchUsingNameIdOrThrow(UserProfileManager
upManager, String nameId, String nameIdIssuer) at Microsoft.Office.Server.Security.UserProfileIdentityClaimMapper.GetSingleUserProfileFromClaimsList(UserProfileManager upManager, IEnumerable`1 identityClaims)
--- End of inner exception stack trace --- at Microsoft... 4c8b979c-f112-d050-9764-c834ee4cf36d
06/04/2014 12:58:41.59* w3wp.exe (0x1C88)
0x2494 SharePoint Foundation Claims Authentication
ae0tc High ....Office.Server.Security.UserProfileIdentityClaimMapper.GetSingleUserProfileFromClaimsList(UserProfileManager
upManager, IEnumerable`1 identityClaims) at Microsoft.Office.Server.Security.UserProfileIdentityClaimMapper.<>c__DisplayClass2.<GetMappedIdentityClaim>b__0() at Microsoft.SharePoint.SPSecurity.<>c__DisplayClass5.<RunWithElevatedPrivileges>b__3()
at Microsoft.SharePoint.Utilities.SecurityContext.RunAsProcess(CodeToRunElevated secureCode) at Microsoft.SharePoint.SPSecurity.RunWithElevatedPrivileges(WaitCallback secureCode, Object param) at Microsoft.SharePoint.SPSecurity.RunWithElevatedPrivileges(CodeToRunElevated
secureCode) at Microsoft.Office.Server.Security.UserProfileIdentityClaimMapper.GetMappedIdentityClaim(Uri context, IEnumerable`1 identityClaims) ...
4c8b979c-f112-d050-9764-c834ee4cf36d
06/04/2014 12:58:41.59 w3wp.exe (0x1C88) 0x2494 SharePoint Foundation
Claims Authentication af3zp
Unexpected STS Call Claims Saml: Problem getting output claims identity. Exception: 'System.InvalidOperationException: Exception of type 'System.ArgumentException' was thrown. Parameter name: value ---> System.ArgumentException:
Exception of type 'System.ArgumentException' was thrown. Parameter name: value at Microsoft.SharePoint.Administration.Claims.SPIdentityProviders.GetIdentityProviderType(String value) at Microsoft.Office.Server.Security.UserProfileIdentityClaimMapper.SearchUsingNameIdOrThrow(UserProfileManager
upManager, String nameId, String nameIdIssuer) at Microsoft.Office.Server.Security.UserProfileIdentityClaimMapper.GetSingleUserProfileFromClaimsList(UserProfileManager upManager, IEnumerable`1 identityClaims) ---
End of inner exception stack trace --- at Microsoft.O... 4c8b979c-f112-d050-9764-c834ee4cf36d
06/04/2014 12:58:41.59 w3wp.exe (0x1C88) 0x2494 SharePoint
Foundation Claims Authentication fo1t
Monitorable STS Call: Failed to issue new security token. Exception: System.InvalidOperationException: Exception of type 'System.ArgumentException' was thrown. Parameter name: value ---> System.ArgumentException:
Exception of type 'System.ArgumentException' was thrown. Parameter name: value at Microsoft.SharePoint.Administration.Claims.SPIdentityProviders.GetIdentityProviderType(String value) at Microsoft.Office.Server.Security.UserProfileIdentityClaimMapper.SearchUsingNameIdOrThrow(UserProfileManager
upManager, String nameId, String nameIdIssuer) at Microsoft.Office.Server.Security.UserProfileIdentityClaimMapper.GetSingleUserProfileFromClaimsList(UserProfileManager upManager, IEnumerable`1 identityClaims)
--- End of inner exception stack trace --- at Microsoft.Office.Server.Secu... 4c8b979c-f112-d050-9764-c834ee4cf36d
06/04/2014 12:58:41.59* w3wp.exe (0x1C88)
0x2494 SharePoint Foundation Claims Authentication
fo1t Monitorable ...rity.UserProfileIdentityClaimMapper.GetSingleUserProfileFromClaimsList(UserProfileManager upManager, IEnumerable`1
identityClaims) at Microsoft.Office.Server.Security.UserProfileIdentityClaimMapper.<>c__DisplayClass2.<GetMappedIdentityClaim>b__0() at Microsoft.SharePoint.SPSecurity.<>c__DisplayClass5.<RunWithElevatedPrivileges>b__3()
at Microsoft.SharePoint.Utilities.SecurityContext.RunAsProcess(CodeToRunElevated secureCode) at Microsoft.SharePoint.SPSecurity.RunWithElevatedPrivileges(WaitCallback secureCode, Object param) at Microsoft.SharePoint.SPSecurity.RunWithElevatedPrivileges(CodeToRunElevated
secureCode) at Microsoft.Office.Server.Security.UserProfileIdentityClaimMapper.GetMappedIdentityClaim(Uri context, IEnumerable`1 identityClaims) at Microsoft.ShareP... 4c8b979c-f112-d050-9764-c834ee4cf36d
06/04/2014 12:58:41.59* w3wp.exe (0x1C88)
0x2494 SharePoint Foundation Claims Authentication
fo1t Monitorable ...oint.IdentityModel.SPIdentityClaimMapperOperations.GetClaimFromExternalMapper(Uri contextUri, List`1 claims)
at Microsoft.SharePoint.IdentityModel.SPIdentityClaimMapperOperations.ResolveUserIdentityClaim(Uri contextUri, ClaimCollection inputClaims) at Microsoft.SharePoint.IdentityModel.SPIdentityClaimMapperOperations.GetIdentityClaim(Uri contextUri,
ClaimCollection inputClaims, SPCallingIdentityType callerType) at Microsoft.SharePoint.IdentityModel.SPSecurityTokenService.GetLogonIdentityClaim(SPRequestInfo requestInfo, IClaimsIdentity inputIdentity, IClaimsIdentity outputIdentity,
SPCallingIdentityType callerType) at Microsoft.SharePoint.IdentityModel.SPSecurityTokenService.EnsureSharePointClaims(SPRequestInfo requestInfo, IClaimsIdentity outputIdentity, SPCallingIdentityTy... 4c8b979c-f112-d050-9764-c834ee4cf36d
06/04/2014 12:58:41.59* w3wp.exe (0x1C88)
0x2494 SharePoint Foundation Claims Authentication
fo1t Monitorable ...pe callerType) at Microsoft.SharePoint.IdentityModel.SPSecurityTokenService.AugmentOutputIdentityForRequest(SPRequestInfo
requestInfo, IClaimsIdentity outputIdentity) at Microsoft.SharePoint.IdentityModel.SPSecurityTokenService.GetOutputClaimsIdentity(IClaimsPrincipal principal, RequestSecurityToken request, Scope scope) at Microsoft.IdentityModel.SecurityTokenService.SecurityTokenService.Issue(IClaimsPrincipal
principal, RequestSecurityToken request) at Microsoft.SharePoint.IdentityModel.SPSecurityTokenService.Issue(IClaimsPrincipal principal, RequestSecurityToken request)
4c8b979c-f112-d050-9764-c834ee4cf36d
06/04/2014 12:58:41.59 w3wp.exe (0x1C88) 0x2494 SharePoint Foundation
Monitoring b4ly Verbose
Leaving Monitored Scope (SPSecurityTokenService.Issue). Execution Time=6.3185 4c8b979c-f112-d050-9764-c834ee4cf36d
06/04/2014 12:58:41.59 w3wp.exe (0x1C88) 0x2494 SharePoint Foundation
Monitoring nass Verbose
____CPU Cycles=12774004 4c8b979c-f112-d050-9764-c834ee4cf36d
06/04/2014 12:58:41.59 w3wp.exe (0x1C88) 0x2494 SharePoint Foundation
Monitoring nass Verbose
____Execution Time=6.3185 4c8b979c-f112-d050-9764-c834ee4cf36d
06/04/2014 12:58:41.59 w3wp.exe (0x1C88) 0x2494 SharePoint Foundation
Monitoring nasq Verbose
Entering monitored scope (CleanUpSecurityTokenServiceOperation). Parent ExecuteSecurityTokenServiceOperationServer 4c8b979c-f112-d050-9764-c834ee4cf36d
06/04/2014 12:58:41.59 w3wp.exe (0x1C88) 0x2494 SharePoint Foundation
Monitoring b4ly Verbose
Leaving Monitored Scope (CleanUpSecurityTokenServiceOperation). Execution Time=0.0282 4c8b979c-f112-d050-9764-c834ee4cf36d
06/04/2014 12:58:41.59 w3wp.exe (0x1C88) 0x2494 SharePoint Foundation
Monitoring nass Verbose
____CPU Cycles=14832078 4c8b979c-f112-d050-9764-c834ee4cf36d
06/04/2014 12:58:41.59 w3wp.exe (0x1C88) 0x2494 SharePoint Foundation
Monitoring nass Verbose
____Execution Time=0.0282 4c8b979c-f112-d050-9764-c834ee4cf36d
06/04/2014 12:58:41.59 w3wp.exe (0x1C88) 0x2494 SharePoint Foundation
Monitoring b4ly Medium
Leaving Monitored Scope (ExecuteSecurityTokenServiceOperationServer). Execution Time=7.2841 4c8b979c-f112-d050-9764-c834ee4cf36d
06/04/2014 12:58:41.59 w3wp.exe (0x1C88) 0x2494 SharePoint Foundation
Monitoring nass Verbose
____WebPart Events Offsets=0 4c8b979c-f112-d050-9764-c834ee4cf36d
06/04/2014 12:58:41.59 w3wp.exe (0x1C88) 0x2494 SharePoint Foundation
Monitoring nass Verbose
____User Address= 4c8b979c-f112-d050-9764-c834ee4cf36d
06/04/2014 12:58:41.59 w3wp.exe (0x1C88) 0x2494 SharePoint Foundation
Monitoring nass Verbose
____=00000000-0000-0000-0000-000000000000 4c8b979c-f112-d050-9764-c834ee4cf36d
06/04/2014 12:58:41.59 w3wp.exe (0x1C88) 0x2494 SharePoint Foundation
Monitoring nass Verbose
____Log Correlation Id=4c8b979c-f112-d050-9764-c445282f9184 4c8b979c-f112-d050-9764-c834ee4cf36d
06/04/2014 12:58:41.59 w3wp.exe (0x1C88) 0x2494 SharePoint Foundation
Monitoring nass Verbose
____Service Calls=0 4c8b979c-f112-d050-9764-c834ee4cf36d
06/04/2014 12:58:41.59 w3wp.exe (0x1C88) 0x2494 SharePoint Foundation
Monitoring nass Verbose
____Claims Counter=0 4c8b979c-f112-d050-9764-c834ee4cf36d
06/04/2014 12:58:41.59 w3wp.exe (0x1C88) 0x2494 SharePoint Foundation
Monitoring nass Verbose
____Critical Events=0 4c8b979c-f112-d050-9764-c834ee4cf36d
06/04/2014 12:58:41.59 w3wp.exe (0x1C88) 0x2494 SharePoint Foundation
Monitoring nass Verbose
____ULS Large Gap= 4c8b979c-f112-d050-9764-c834ee4cf36d
06/04/2014 12:58:41.59 w3wp.exe (0x1C88) 0x2494 SharePoint Foundation
Monitoring nass Verbose
____Execution Time=7.2841 4c8b979c-f112-d050-9764-c834ee4cf36d
06/04/2014 12:58:41.59 w3wp.exe (0x1C88) 0x2494 SharePoint Foundation
Monitoring nass Verbose
____CPU Cycles=0 4c8b979c-f112-d050-9764-c834ee4cf36d
06/04/2014 12:58:41.59 w3wp.exe (0x1C88) 0x2494 SharePoint Foundation
Monitoring nass Verbose
____Current SharePoint Operations=0 4c8b979c-f112-d050-9764-c834ee4cf36d
06/04/2014 12:58:41.59 w3wp.exe (0x1C88) 0x2494 SharePoint Foundation
Monitoring nass Verbose
____SPRequest Objects=2 4c8b979c-f112-d050-9764-c834ee4cf36d
06/04/2014 12:58:41.59 w3wp.exe (0x1C88) 0x2494 SharePoint Foundation
Monitoring nass Verbose
____Distributed Cache=0 4c8b979c-f112-d050-9764-c834ee4cf36d
06/04/2014 12:58:41.59 w3wp.exe (0x1C88) 0x2494 SharePoint Foundation
Monitoring nass Verbose
____SQL Query Count=0 4c8b979c-f112-d050-9764-c834ee4cf36d
06/04/2014 12:58:41.59 w3wp.exe (0x1C88) 0x2494 SharePoint Foundation
Monitoring nass Verbose
____Current User= 4c8b979c-f112-d050-9764-c834ee4cf36d
06/04/2014 12:58:41.59 w3wp.exe (0x1C88) 0x2494 SharePoint Foundation
Monitoring nass Verbose
____Request Management= 4c8b979c-f112-d050-9764-c834ee4cf36d
06/04/2014 12:58:41.59 w3wp.exe (0x1C88) 0x2494 SharePoint Foundation
Monitoring nass Verbose
____Page Checkout Level=Published 4c8b979c-f112-d050-9764-c834ee4cf36d
06/04/2014 12:58:41.59 w3wp.exe (0x1C88) 0x2494 SharePoint Foundation
Logging Correlation Data 77a3 Verbose
Ending correlation. Transfer to 4c8b979c-f112-d050-9764-c834ee4cf36d 4c8b979c-f112-d050-9764-c834ee4cf36d
06/04/2014 12:58:41.59 w3wp.exe (0x1C88) 0x2494 SharePoint Foundation
Unified Logging Service cn4g Verbose
Trace level override is turned off. 4c8b979c-f112-d050-9764-c834ee4cf36d
06/04/2014 12:58:41.59 w3wp.exe (0x1C88) 0x2494 SharePoint Foundation
Logging Correlation Data 77a3 Verbose
Ending correlation. 4c8b979c-f112-d050-9764-c834ee4cf36d
06/04/2014 12:58:41.59 w3wp.exe (0x1EEC) 0x26BC SharePoint Foundation
Monitoring nasq Verbose
Entering monitored scope (CleanUpSecurityTokenServiceOperation). Parent ExecuteSecurityTokenServiceOperationCaller:http://docs.oasis-open.org/ws-sx/ws-trust/200512/RST/Issue 4c8b979c-f112-d050-9764-c834ee4cf36d
06/04/2014 12:58:41.59 w3wp.exe (0x1EEC) 0x26BC SharePoint Foundation
Monitoring b4ly Verbose
Leaving Monitored Scope (CleanUpSecurityTokenServiceOperation). Execution Time=0.0257 4c8b979c-f112-d050-9764-c834ee4cf36d
06/04/2014 12:58:41.59 w3wp.exe (0x1EEC) 0x26BC SharePoint Foundation
Monitoring nass Verbose
____Execution Time=0.0257 4c8b979c-f112-d050-9764-c834ee4cf36d
06/04/2014 12:58:41.59 w3wp.exe (0x1EEC) 0x26BC SharePoint Foundation
Monitoring nass Verbose
____CPU Cycles=2377140 4c8b979c-f112-d050-9764-c834ee4cf36d
06/04/2014 12:58:41.59 w3wp.exe (0x1EEC) 0x26BC SharePoint Foundation
Monitoring b4ly Verbose
Leaving Monitored Scope (ExecuteSecurityTokenServiceOperationCaller:http://docs.oasis-open.org/ws-sx/ws-trust/200512/RST/Issue). Execution Time=13.2855 4c8b979c-f112-d050-9764-c834ee4cf36d
06/04/2014 12:58:41.59 w3wp.exe (0x1EEC) 0x26BC SharePoint Foundation
Monitoring nass Verbose
____Execution Time=13.2855 4c8b979c-f112-d050-9764-c834ee4cf36d
06/04/2014 12:58:41.59 w3wp.exe (0x1EEC) 0x26BC SharePoint Foundation
Monitoring nass Verbose
____CPU Cycles=0 4c8b979c-f112-d050-9764-c834ee4cf36d
06/04/2014 12:58:41.59 w3wp.exe (0x1EEC) 0x26BC SharePoint Foundation
Claims Authentication fsq7
High SPSecurityContext: Request for security token failed with exception: System.ServiceModel.FaultException`1[System.ServiceModel.ExceptionDetail]: Exception of type 'System.ArgumentException' was thrown. Parameter name:
value (Fault Detail is equal to An ExceptionDetail, likely created by IncludeExceptionDetailInFaults=true, whose value is: System.InvalidOperationException: Exception of type 'System.ArgumentException' was thrown. Parameter name: value ----> System.ArgumentException:
Exception of type 'System.ArgumentException' was thrown. Parameter name: value at Microsoft.SharePoint.Administration.Claims.SPIdentityProviders.GetIdentityProviderType(String value) at Microsoft.Office.Server.Security.UserProfileIdentityClaimMapper.SearchUsingNameIdOrThrow(UserProfileManager
upManager, ... 4c8b979c-f112-d050-9764-c834ee4cf36d
06/04/2014 12:58:41.59* w3wp.exe (0x1EEC)
0x26BC SharePoint Foundation Claims Authentication
fsq7 High ...String nameId, String nameIdIssuer) at Microsoft.Office.Server.Security.UserProfileIdentityClaimMapper.GetSingleUserProfileFromClaimsList(UserProfileManager
upManager, IEnumerable`1 identityClaims) --- End of inner ExceptionDetail stack trace --- at Microsoft.Office.Server.Security.UserProfileIdentityClaimMapper.GetSingleUserProfileFromClaimsList(UserProfileManager upManager,
IEnumerable`1 identityClaims) at Microsoft.Office.Server.Security.UserProfileI...). 4c8b979c-f112-d050-9764-c834ee4cf36d
06/04/2014 12:58:41.59 w3wp.exe (0x1EEC) 0x26BC SharePoint Foundation
Claims Authentication 8306
Critical An exception occurred when trying to issue security token: Exception of type 'System.ArgumentException' was thrown. Parameter name: value. 4c8b979c-f112-d050-9764-c834ee4cf36d
06/04/2014 12:58:41.59 w3wp.exe (0x1EEC) 0x26BC SharePoint Foundation
Monitoring b4ly Verbose
Leaving Monitored Scope ([S2S] Getting token from STS and setting Thread Identity). Execution Time=16.83 4c8b979c-f112-d050-9764-c834ee4cf36d
06/04/2014 12:58:41.59 w3wp.exe (0x1EEC) 0x26BC SharePoint Foundation
Monitoring nass Verbose
____Execution Time=16.83 4c8b979c-f112-d050-9764-c834ee4cf36d
06/04/2014 12:58:41.59 w3wp.exe (0x1EEC) 0x26BC SharePoint Foundation
Monitoring nass Verbose
____CPU Cycles=7084490 4c8b979c-f112-d050-9764-c834ee4cf36d
06/04/2014 12:58:41.59 w3wp.exe (0x1EEC) 0x26BC SharePoint Foundation
Monitoring b4ly Medium
Leaving Monitored Scope (Application Authentication Pipeline). Execution Time=20.6415 4c8b979c-f112-d050-9764-c834ee4cf36d
06/04/2014 12:58:41.59 w3wp.exe (0x1EEC) 0x26BC SharePoint Foundation
Monitoring nass Verbose
____Execution Time=20.6415 4c8b979c-f112-d050-9764-c834ee4cf36d
06/04/2014 12:58:41.59 w3wp.exe (0x1EEC) 0x26BC SharePoint Foundation
Monitoring nass Verbose
____CPU Cycles=14789795 4c8b979c-f112-d050-9764-c834ee4cf36d
06/04/2014 12:58:41.59 w3wp.exe (0x1EEC) 0x26BC SharePoint Foundation
Application Authentication ajezs High SPApplicationAuthenticationModule:
Error authenticating request, Error details { Header: {0}, Body: {1} }. Available parameters: 3001000;reason="There has been an error authenticating the request.";category="invalid_client" {"error_description":"Exception
of type 'System.ArgumentException' was thrown.\u000d\u000aParameter name: value"} . 4c8b979c-f112-d050-9764-c834ee4cf36d
06/04/2014 12:58:41.59 w3wp.exe (0x1EEC) 0x26BC SharePoint Foundation
General
8nca Medium Application error when access /_vti_bin/sites.asmx, Error=Exception of type 'System.ArgumentException' was thrown.
Parameter name: value at Microsoft.IdentityModel.Protocols.WSTrust.WSTrustChannel.ReadResponse(Message response) at Microsoft.IdentityModel.Protocols.WSTrust.WSTrustChannel.Issue(RequestSecurityToken rst, RequestSecurityTokenResponse&
rstr) at Microsoft.IdentityModel.Protocols.WSTrust.WSTrustChannel.Issue(RequestSecurityToken rst) at Microsoft.SharePoint.SPSecurityContext.SecurityTokenForContext(Uri context, Boolean bearerToken, SecurityToken
onBehalfOf, SecurityToken actAs, SecurityToken delegateTo, SPRequestSecurityTokenProperties properties) at Microsoft.SharePoint.SPSecurityContext.SecurityTokenForApplicationAuthentication(Uri context, SecurityToken onBe...
4c8b979c-f112-d050-9764-c834ee4cf36d
06/04/2014 12:58:41.59* w3wp.exe (0x1EEC)
0x26BC SharePoint Foundation General
8nca Medium ...halfOf)
at Microsoft.SharePoint.IdentityModel.SPApplicationAuthenticationModule.<>c__DisplayClass4.<GetLocallyIssuedToken>b__3() at Microsoft.SharePoint.Utilities.SecurityContext.RunAsProcess(CodeToRunElevated secureCode)
at Microsoft.SharePoint.IdentityModel.SPApplicationAuthenticationModule.ConstructIClaimsPrincipalAndSetThreadIdentity(HttpApplication httpApplication, HttpContext httpContext, SPFederationAuthenticationModule fam) at Microsoft.SharePoint.IdentityModel.SPApplicationAuthenticationModule.AuthenticateRequest(Object
sender, EventArgs e) at System.Web.HttpApplication.SyncEventExecutionStep.System.Web.HttpApplication.IExecutionStep.Execute() at System.Web.HttpApplication.ExecuteStep(IExecutionStep step, Boolean& completedSynchronously)
4c8b979c-f112-d050-9764-c834ee4cf36d
Any ideas?
Anupam ShrivastavaI am experiencing the same issue. Don't have the answer yet about what's wrong exactly. And my SSO works fine too.
I know precisely what makes the SharePoint throw the ArgumentException, but I can't yet figure out how to influence this behavior. I will respond back if I find out, but I hope the following will create an "aha moment" for someone.
So the SP Online issues an OAuth request to the on-prem SharePoint. If verbose logging is on for the Claims category, you may see how it reads these claims. One of them is this:
Claim['nii':'urn:federation:microsoftonline']
Using this claim and the nameid claim the profile mapping logic then reports the following immediately before the error (Set User Profiles to verbose to see this):
Creating encoded sid for nameid '100300008b29cb02' and nameidissuer 'urn:federation:microsoftonline'
Inspecting this logic with Reflector, I can see that it then attempts to infer the identity provider type from the nameidissuer, and throws the exception, because "federation" is not what it expects. It expects either "windows", "trusted" or "forms" for
the provider type.
So the user's actions to lead to this error were as follows:
1. I connect to the Office 365 portal, and get redirected to my ADFS server (same domain for the ADFS server, on-prem SharePoint, and the user accounts).
2. I log on, and from the SP Online portal I issue my search query using a result source configured as per the Hybrid TechNet guidance.
So thanks in advance for any suggestions, on what it could be. -
Unable to search successfully on Company field in a Contact list - SharePoint 2013 online
When searching for a company in a contact list, I get NO search results when the line items returned should be abundant.
I am using SharePoint 2013 Online with an Office 365 E3 license. I am the global administrator as well as site collection owner.
Since Company is an existing site collection column, I went to its managed property in the SharePoint Administration portal. I went to Search > Manage Search Schema > Managed properties and opened CompanyOWSTEXT in order to click the Searchable checkbox.
All items were grayed out and unable to be edited. The Searchable check box was UNCHECKED.
Why am I unable to edit that property?
How can I ensure that the Company field is crawled and can return search results?
Thank youPlease post your question to below SharePoint Online Technet forum:
http://social.technet.microsoft.com/Forums/msonline/en-us/home?forum=onlineservicessharepoint
Please ensure that you mark a question as Answered once you receive a satisfactory response. -
SharePoint 2013 - The parameter 'token' cannot be a null or empty string
Hi all,
I am trying to create SharePoint 2013 web app for office 365 using visual studio 2012. when I run the SharePoint web
app then it show the error "the parameter 'token'
cannot be a null or empty string" in the TokenHelper.cs file.
this is the url i'm using:
$(function () {
$('#exportToExcelBtn').click(function () {
window.location = "https://xx.sharepoint.com/ENPages/_vti_bin/owssvr.dll?CS=109&Using=_layouts/query.iqy&List={803B55DA-B973-4EF4-92ED-F61DFD016D7C}&View={A6282A16-299E-407D-A25A-14E05AB23AE7}&CacheControl=1";
is it good?
I checked that key "clientID" and "cleantSecret" contains values.
what else can it be?in order to authenticate the app standard token should be submitted along with the url
check the below url
http://msdn.microsoft.com/en-us/library/office/jj163816(v=office.15).aspx
This combines five other tokens. It initially resolves to SPHostUrl={HostUrl}&SPAppWebUrl={AppWebUrl}&SPLanguage={Language}&SPClientTag={ClientTag}&SPProductNumber={ProductNumber}.
Then each of these tokens resolves. If there is no app web, the portion &SPAppWebUrl={AppWebUrl} is
not present.
Hope that helps|Amr Fouad|MCTS,MCPD sharePoint 2010 -
Custom SharePoint 2013 workflow activities in site template throw error on site creation
Hi all,
I have created a number of custom activities for SharePoint 2013 Workflows and I am using them on an Office 365 environment. The custom activities are packaged as a sandbox solution and deployed on my Office 365 site. Everything works as expected.
I have now created a site with all the functionality I need, including some Site and List workflows - all of them containing my custom activities. I saved the site as a template - including content - and the process was completed successfully.
My problem is that when I try to create a site based on that template, I get the following error:
Microsoft.Workflow.Client.ActivityNotFoundException: The activity named 'WorkflowXaml_66b9230b_823e_4783_82b8_daf481237847' from scope '/spo/d42a4487-9465-4347-9f2c-a2718e92fc02/74d0f9e7-fb35-493d-86fb-ab7aa27da7e0/c2e1bf45-cf67-4e13-9755-421cf92395f8'
was not found. HTTP headers received from the server - ActivityId: 0997496a-5a15-4b83-82eb-727881eefa67. NodeId: . Scope: . Client ActivityId : c82f6e9c-9f8f-808b-7679-f2c0f92a339d. ---> System.Net.WebException: The remote server returned an error
After a number of trials and errors, I am certain that this relates to my custom activities. i have already tested all of the following scenarios:
Delete the workflow with the custom actions: Site is created successfully.
Create a new workflow with no custom actions and save the site as a template:
Site is created successfully.
Save the site template including a workflow with my custom activities, but not including content:
Site is created successfully, but my workflow is not there.
Create a new custom workflow activities sandbox with one custom activity that just writes something to the history list - just to make sure that this is not related to any specific solution. Save the site as a template:
Site creation throws the same error.
Packaged my workflow (with my custom activities) as a wsp from SharePoint Designer and deployed it as a custom solution. Activated the feature in the target site. The workflow gets created and executing finally. Saved the site as template: Site
creation throws the same error.
Same as above, but without activating the feature in the target site: Site created successfully, workflow works fine after I activate the feature in the new site.
My custom activities feature is always enabled in the site I save as template - in all of the above scenarios.
I have tested all of the above scenarios both on SharePoint 2013 on-premise and Office 365. There is
a forum post regarding some inconsistencies in the wsp file, but unfortunately this is not my case. Am I doing something wrong? Are custom 2013 workflow activities not supported in site templates - which would not actually make any sense, as it would "break"
the fundamental concept of re-usability.
Any ideas/feedback/guidance?
Thanx in advanceHi,
I am facing the same issue. Kindly help me out if any of them have solved similar issue.
Your help would be appreciated.
manikantan -
Hello, how are you doing?
currently I have the following scenario:
Organization number 1
SharePoint 2013
ADFS 2.0 on the LAN
ADFS Proxy DMZ
Organization number 2
ADFS 2.0 on the lan
certified public fs.dominio.com
I want to post fs.domio.com but they don't count with ADFS proxy, my question is:
You can do to publish and use my certificate public fs.domino.com, the drawback is that they don't count with more resources to implement an ADFS proxy.
I've configured in the fortinet achieve me authenticate directly to the ADFS on the LAN but I get an error message by the unsafe site, for which I want to use my purchased certificate.Is there a trusted certificate bound to the site used by ADFS (that is, on the ADFS server)?
Which guide, specifically, did you follow?
Trevor Seward
Follow or contact me at...
  
This post is my own opinion and does not necessarily reflect the opinion or view of Microsoft, its employees, or other MVPs. -
OWA not working in some Sharepoint 2013 sites... but not all?
I have a SharePoint 2013 farm connected to Office Web Apps, with a number of sharepoint web applications(mostly legacy sites, created before my time here). I have created three new web apps and, when I try to preview documents using OWA (or, in fact, open
them or edit them in browser) I get an assortment of errors, from "Sorry, we couldn't open this presentation due to a problem" (PPTX) to "Sorry, there was a problem opening this document" (DOCX).
I can use OWA in the existing web applications - what have I not done properly with the new ones?!Hi,
According to your description, my understanding is that the OWA cannot work in newly created web applications in SharePoint 2013.
Did you configure the external access for the newly web applications and you opened the documents from external zone?
If yes, then the issue may be due to the WOPI zone for external zone was not configured.
I recommend to run the command below to see if the issue still occurs:
Remove-SPWOPIBinding –All:$true
New-SPWOPIBinding -ServerName <WacServerName>
Get-SPWOPIZone
If you configure the external access for the web applications, then run the command below after running the command above:
Set-SPWOPIZone -zone "external-https" or Set-SPWOPIZone -zone "internal-http".
Best regards.
Thanks
Victoria Xia
TechNet Community Support
Maybe you are looking for
-
I bought an iphone 5 in second hand and therefore performed a factory hard resert. When I tryed to turn it on again, after going trough all the steps, I was asked to fill in the Apple ID and password from the first owner who now doesnt pick up the ph
-
How to get the logged in userId value in adf task flow OIM11g R2
Hi, I have created an adf task flow. Now I want to run some query in that based on the logged in userId. Could you please help me in knowing how to get the logged in userID value in adf TaskFlow so that I can run a parameterized query. Thanks
-
How to Attach One adobe form with another adobe form
Hi Experts, I saw the similar post but my issue is even further big thant that where the solution is provided. I Have @ 40 output forms where 35 forms share same part of data in a table format. Untill today I have done all the forms with this table d
-
Error when I create the database
I install the peopletools 8.49 for Oracle Database 10g Enterprise Edition Release 10.2.0.1.0 and my operating system is Microsoft Windows Server 2003 Enterprise Edition Server Pack 1, v.1023. When I have installed the peopletools and the database, I
-
Advanced queue taking a lot of CPU time
hi , My application has a workflow which dequeues messages from an advanced queue.The message is simple text message. But i am facing CPU time problems. when the workflow( one of the steps is to dequeue) runs it uses 100% of a particular CPU. can som