Solved

ACT! Premier for Web not allowing logon

Posted on 2013-11-04
2
1,314 Views
Last Modified: 2013-12-04
I am working with a friend who has a 2003 SMB server running RRAS, Exchange and ACT!.  Circumstance required me to reset the netgear router.  I lost the original config with the open ports.

The ports I have opened are:
25 53 80 88 110 123 135 143 389 443-445 993 995 1025 1723 3268 4343 4443

Now when a remote user attempts to logon to ACT! via the web they receive the following error:

Configuration Error

Description: An error occurred during the processing of a configuration file required to service this request. Please review the specific error details below and modify your configuration file appropriately.

Parser Error Message: Could not create Windows user token from the credentials specified in the config file. Error from the operating system 'Logon failure: unknown user name or bad password.
'

Source Error:


Line 73:   <system.web>
Line 74:     <httpRuntime executionTimeout="1200" maxRequestLength="102400" />
Line 75:     <identity impersonate="true" userName="registry:HKLM\Software\AspNetProcess\ASPNET_SETREG,userName" password="registry:HKLM\Software\AspNetProcess\ASPNET_SETREG,password" />
Line 76:     <pages enableViewState="true" enableSessionState="true" theme="ACT" autoEventWireup="false" validateRequest="false" enableEventValidation="false">
Line 77:       <controls>

Source File: E:\ACT\Act for Web\APFW\web.config    Line: 75

I don't believe it is the web.config file since it has not changed since 2010.  

Thanks in advance for you assistance.

Steven
0
Comment
Question by:saburstyn
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
2 Comments
 
LVL 25

Accepted Solution

by:
Diverse IT earned 500 total points
ID: 39621975
Hi saburstyn,

The username should be in the domain\username
and the path should be = \\servername\sharefolder\

You probably need to give the ASP.NET impersonation account access to the registry keys mentioned in the KB article (below). You may want to set the permission for the parent key of the one listed, which is "AspNetProcess" and take ownership of it (Advanced button when setting permissions).
How To Manually Configure ASPNET Impersonation for ACT! Premium for Web: http://kb.sagesoftwareonline.com/app/answers/detail/a_id/14867

Are you getting any Server Error in '/APFW' Application error messages?

-------------------------
Just a note, when you say,
The ports I have opened are:
25 53 80 88 110 123 135 143 389 443-445 993 995 1025 1723 3268 4343 4443
I hope these ports are not opened inbound...if they are there is no reason to have a firewall as it is rendered almost useless security-wise unless you are specifying the destinations for these ports for the Exchange Server, etc. If this is outbound filtering that would make more sense, but otherwise I'd close up all of that except for your Exchange Server (and limit that destination to the Server IP only) for ports 135 & 443 (http://technet.microsoft.com/en-us/library/bb331973%28v=EXCHG.141%29.aspx) and whatever else must be opened.

Cheers!
0
 

Author Comment

by:saburstyn
ID: 39630284
First thanks for waiting, so much other stuff to do.
I attempted the use the aspnet_setreg -k:Software\AspNetProcess -u: ....  and received "aspnet_setreg is not recognized".  Checked on this and saw something about this command not running on a Domain Controller which my 2003 SMB is.  Still confused on how to proceed.  ( your link to sage is broken )

I was able to change the permissions in the registry for that key, but that didn't help anything.

As for the firewall, yes these ports all forward to the server and I am aware I have to many open.  First allow the guy to work then cleanup the mess.

Thanks again and any more insight would be appreciated.

Steven
0

Featured Post

Why Off-Site Backups Are The Only Way To Go

You are probably backing up your data—but how and where? Ransomware is on the rise and there are variants that specifically target backups. Read on to discover why off-site is the way to go.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Suggested Solutions

Title # Comments Views Activity
Routing Issue 26 69
Frequency of Windows Server updates 27 138
Why am I losing my session variable value 11 40
Network Share Issues 17 32
In this article, I am going to show you how to simulate a multi-site Lab environment on a single Hyper-V host. I use this method successfully in my own lab to simulate three fully routed global AD Sites on a Windows 10 Hyper-V host.
I had an issue with InstallShield not being able to use Computer Browser service on Windows Server 2012. Here is the solution I found.
Internet Business Fax to Email Made Easy - With  eFax Corporate (http://www.enterprise.efax.com), you'll receive a dedicated online fax number, which is used the same way as a typical analog fax number. You'll receive secure faxes in your email, f…
Here's a very brief overview of the methods PRTG Network Monitor (https://www.paessler.com/prtg) offers for monitoring bandwidth, to help you decide which methods you´d like to investigate in more detail.  The methods are covered in more detail in o…

752 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question