SP2010- Application Error MSG :: FIMSynchronizationService

Cyber IT
Cyber IT used Ask the Experts™
on
I keep getting the following TWO error messages in the Application Logs.  Can someone help me through this?  Thanks!

Log Name:      Application
Source:        FIMSynchronizationService
Date:          8/5/2011 4:00:03 PM
Event ID:      6208
Task Category: Database
Level:         Error
Keywords:      Classic
User:          N/A
Computer:      sharepoint.site.org
Description:
The server encryption keys could not be accessed.
 
 User Action
 Verify that the service account has permissions to the following registry key:
 HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Forefront Identity Manager\2010\Synchronization Service
 
 If the problem persists, run setup and restore the encryption keys from backup.
Event Xml:
<Event xmlns="http://schemas.microsoft.com/win/2004/08/events/event">
  <System>
    <Provider Name="FIMSynchronizationService" />
    <EventID Qualifiers="49152">6208</EventID>
    <Level>2</Level>
    <Task>2</Task>
    <Keywords>0x80000000000000</Keywords>
    <TimeCreated SystemTime="2011-08-05T20:00:03.000000000Z" />
    <EventRecordID>335910</EventRecordID>
    <Channel>Application</Channel>
    <Computer>sharepoint.site.org</Computer>
    <Security />
  </System>
  <EventData>
    <Binary>0B000980</Binary>
  </EventData>
</Event>



Log Name:      Application
Source:        Microsoft-SharePoint Products-SharePoint Foundation
Date:          8/5/2011 4:01:33 PM
Event ID:      2137
Task Category: Health
Level:         Error
Keywords:      
User:          SDI\_ps20
Computer:      sharepoint.site.org
Description:
The SharePoint Health Analyzer detected an error.  One or more services have started or stopped unexpectedly.
The following services are managed by SharePoint, but their running state does not match what SharePoint expects: FIMSynchronizationService.  This can happen if a service crashes or if an administrator starts or stops a service using a non-SharePoint interface.  If SharePoint-managed services do not match their expected running state, SharePoint will be unable to correctly distribute work to the service.
SharePoint was unable to automatically repair this error.

To stop or start a service managed by SharePoint, use the SharePoint service management interface in the SharePoint Central Administration Site.  If a service has crashed, restart the service manually on the affected servers by running "net start [service name]" from a command prompt. For more information about this rule, see "http://go.microsoft.com/fwlink/?LinkID=142683".

Event Xml:
<Event xmlns="http://schemas.microsoft.com/win/2004/08/events/event">
  <System>
    <Provider Name="Microsoft-SharePoint Products-SharePoint Foundation" Guid="{6FB7E0CD-52E7-47DD-997A-241563931FC2}" />
    <EventID>2137</EventID>
    <Version>14</Version>
    <Level>2</Level>
    <Task>8</Task>
    <Opcode>0</Opcode>
    <Keywords>0x4000000000000000</Keywords>
    <TimeCreated SystemTime="2011-08-05T20:01:33.803128900Z" />
    <EventRecordID>335911</EventRecordID>
    <Correlation ActivityID="{00E970CF-9B3B-4983-BE37-926CD7812DDE}" />
    <Execution ProcessID="3780" ThreadID="3860" />
    <Channel>Application</Channel>
    <Computer>sharepoint.site.org</Computer>
    <Security UserID="S-1-5-21-4002134116-3653569873-328754059-5405" />
  </System>
  <EventData>
    <Data Name="string0">One or more services have started or stopped unexpectedly.
The following services are managed by SharePoint, but their running state does not match what SharePoint expects: FIMSynchronizationService.  This can happen if a service crashes or if an administrator starts or stops a service using a non-SharePoint interface.  If SharePoint-managed services do not match their expected running state, SharePoint will be unable to correctly distribute work to the service.
SharePoint was unable to automatically repair this error.

To stop or start a service managed by SharePoint, use the SharePoint service management interface in the SharePoint Central Administration Site.  If a service has crashed, restart the service manually on the affected servers by running "net start [service name]" from a command prompt. For more information about this rule, see "http://go.microsoft.com/fwlink/?LinkID=142683".
</Data>
  </EventData>
</Event>
Comment
Watch Question

Do more with

Expert Office
EXPERT OFFICE® is a registered trademark of EXPERTS EXCHANGE®
FIM problems can be widespread and various in SharePoint 2010. The problem is the user profile service.
There is a really good article on Spencer Harbar's site. I would recommend you uninstall your user profile service and re-install it.

http://www.harbar.net/archive/2011/07/08/upsjun11.aspx

PS I passed my MCITP in SharePoint  today!
Cyber ITEngineer

Author

Commented:
CONGRATS!  I plan on taking the 1st of the two exams in a view months.  Any pointers or good study material as in exam prep?

By uninstalling the user profile service will this effect anything else?  This is a live production server and I can't have it down for a long period of time.  

User profiles. People search. (My sites?)  We found we had to re-build from scratch.If you are importing records from AD then it will need re-configuring. Users can continue to use.



Exam prep - SharePoint 2010 admin guide and read thoroughly and there are links to further reading in the book. And learn Powershell.
Cyber ITEngineer

Author

Commented:
If I uninstall User Profile Services, user shouldnt lose their My Sites, correct because the database is on another server.  Once I reinstall the user profile services I should be able to connect back to the previous database, correct?
Cyber ITEngineer

Author

Commented:
I got MS Tech involved on solving this FIMSynchronizationService issue.  I will post the solution shortly...
Engineer
Commented:
Here is the solution:


Navigated to HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Forefront Identity Manager\2010\Synchronization Service gave full control permission to "xxxxx" account which is used for UPA.

Added the account "xxxxx" as an administrator locally.

Navigated to
1. Click Start, click Run, and type dcomcnfg to launch the Component Services Management console.
2. Click to expand Component Services and click to expand Computers.
3. Click to expand My Computer, click to expand Distributed Transaction Coordinator, right-click Local DTC, and click Properties.
4. Click the Security tab of the Local DTC Properties dialog.
5. Transaction Manager Communication
6. Allow Inbound set as  Enabled
7. Allow Outbound set as Enabled
8. Checked Network DTC Access.
9. Allow Remote clients
10. Allow Remote Administration.

Went to start -- run -- MMC -- file -- add/ remove snappin -- select certificate -- add then select
Found My user account | Service Account | Computer Account
Deleted all FIM certificates.

Rebooted the Server.

1. SharePoint’s User Profile Synchronization Service started.
2. The FIMSynchronizationService service started.
3. The FIMService service started.
Started the incremental crawl and got the following error in the event log:
Log Name:      Application
Source:        FIMSynchronizationService
Date:          8/10/2011 8:20:06 AM
Event ID:      6803
Task Category: Management Agent Run Profile

Navigated to C:\Program Files\Microsoft Office Servers\14 and gave full control permission to "Network Service" account.
Started the Incremental Crawl again same error.
Followed the steps below:
1.Browsed to %programfiles%\Microsoft Office Server\14.0\Synchronization Service\UIShell
2.Launched miisclient.exe
3.Clicked the 'Management Agents' button in the toolbar to switch to the "Management Agents" pane
4.Right click on the Management Agent with the "Extensible Connectivity" type called MOSS-{some guid} and select "Properties"
5.Click on the "Configure Connection Information" property pane
6.At the bottom of the dialog, there should be a "Connection information" section which includes a "Connect To:" text box
7.Changed the hostname of the URI in this text box to HTTPS://{HOST}:{PORT}...
8.Click OK, and closed the Synchronization Service Manager (miisclient)
9.Started a full import.
Cyber ITEngineer

Author

Commented:
The expert gave me suggestions but what she suggested was not necessary to do.  I contacted Microsoft and they helped me solve the issue.

Do more with

Expert Office
Submit tech questions to Ask the Experts™ at any time to receive solutions, advice, and new ideas from leading industry professionals.

Start 7-Day Free Trial