troubleshooting Question
Application Pool Recycle causes failure
asked on
Windows 2012 R2 Web Server
IIS 8.5
SharePoint 2010 SP2 November CU 2015
Everyday at 2:49 AM I get the following errors one in the system log and one in the application log
Log Name: Application
Source: ASP.NET 2.0.50727.0
Date: 11/13/2015 2:49:03 AM
Event ID: 1334
Task Category: None
Level: Error
Keywords: Classic
User: N/A
Computer: SERV013.FQDN.com
Description:
An unhandled exception occurred and the process was terminated.
Application ID: /LM/W3SVC/1068268973/ROOT
Process ID: 7540
Exception: System.Security.Cryptograp
Message: Keyset does not exist
StackTrace: at System.Security.Cryptograp
at System.Security.Cryptograp
at System.Security.Cryptograp
at System.Runtime.InteropServ
at System.Runtime.InteropServ
at System.Runtime.InteropServ
Event Xml:
<Event xmlns="http://schemas.microsoft.com/win/2004/08/events/event">
<System>
<Provider Name="ASP.NET 2.0.50727.0" />
<EventID Qualifiers="49152">1334</E
<Level>2</Level>
<Task>0</Task>
<Keywords>0x80000000000000
<TimeCreated SystemTime="2015-11-13T07:
<EventRecordID>90691</Even
<Channel>Application</Chan
<Computer>TGCS013.our.netw
<Security />
</System>
<EventData>
<Data>An unhandled exception occurred and the process was terminated.
Application ID: /LM/W3SVC/1068268973/ROOT
Process ID: 7540
Exception: System.Security.Cryptograp
Message: Keyset does not exist
StackTrace: at System.Security.Cryptograp
at System.Security.Cryptograp
at System.Security.Cryptograp
at System.Runtime.InteropServ
at System.Runtime.InteropServ
at System.Runtime.InteropServ
</EventData>
</Event>
Log Name: System
Source: Microsoft-Windows-WAS
Date: 11/13/2015 2:49:04 AM
Event ID: 5009
Task Category: None
Level: Warning
Keywords: Classic
User: N/A
Computer: SERV013.FQDN.com
Description:
A process serving application pool 'SharePoint - Default App Pool' terminated unexpectedly. The process id was '7540'. The process exit code was '0xe0434f4d'.
Event Xml:
<Event xmlns="http://schemas.microsoft.com/win/2004/08/events/event">
<System>
<Provider Name="Microsoft-Windows-WA
<EventID Qualifiers="32768">5009</E
<Version>0</Version>
<Level>3</Level>
<Task>0</Task>
<Opcode>0</Opcode>
<Keywords>0x80000000000000
<TimeCreated SystemTime="2015-11-13T07:
<EventRecordID>74547</Even
<Correlation />
<Execution ProcessID="0" ThreadID="0" />
<Channel>System</Channel>
<Computer>SERV013.FQDN.com
<Security />
</System>
<EventData>
<Data Name="AppPoolID">SharePoin
<Data Name="ProcessID">7540</Dat
<Data Name="ExitCode">e0434f4d</
</EventData>
</Event>
My research found these
From the Event ID 5009 ran err.exe on 0xe0434f4d
C:\Util\Err>err 0xe0434f4d
# as an HRESULT: Severity: FAILURE (1), Facility: 0x43, Code 0x4f4d
# NOT FOUND: 0xe0434f4d
Do not understand what is NOT FOUND
This seems to be COM permissions?????????
Command prompt->dcomcnfg->componen
Go to COM security
Under launch and activation permissions
Add the SID S-1-5-82-3006700770-424185
then try and check if IISRESET still throws same error in event log.
I added spapppool account
No change
I spent many hours trying to figure out why everyday at 2:49 AM then by dumb luck I found it.
From within IIS I expanded the Application Pools list after scrolling thru each entry I found that
Application Pool SharePoint - Default App Pool is started v2.0 Integrated identity mydom\spapppool
when I clicked on Recycling Settings I see that it is set for Specific times at 2:49 AM
I also installed DebugDiag 2 Analysis and I have a dump but I a, not sure what to look for
Any thoughts
Thanks in advance
Tom
IIS 8.5
SharePoint 2010 SP2 November CU 2015
Everyday at 2:49 AM I get the following errors one in the system log and one in the application log
Log Name: Application
Source: ASP.NET 2.0.50727.0
Date: 11/13/2015 2:49:03 AM
Event ID: 1334
Task Category: None
Level: Error
Keywords: Classic
User: N/A
Computer: SERV013.FQDN.com
Description:
An unhandled exception occurred and the process was terminated.
Application ID: /LM/W3SVC/1068268973/ROOT
Process ID: 7540
Exception: System.Security.Cryptograp
Message: Keyset does not exist
StackTrace: at System.Security.Cryptograp
at System.Security.Cryptograp
at System.Security.Cryptograp
at System.Runtime.InteropServ
at System.Runtime.InteropServ
at System.Runtime.InteropServ
Event Xml:
<Event xmlns="http://schemas.microsoft.com/win/2004/08/events/event">
<System>
<Provider Name="ASP.NET 2.0.50727.0" />
<EventID Qualifiers="49152">1334</E
<Level>2</Level>
<Task>0</Task>
<Keywords>0x80000000000000
<TimeCreated SystemTime="2015-11-13T07:
<EventRecordID>90691</Even
<Channel>Application</Chan
<Computer>TGCS013.our.netw
<Security />
</System>
<EventData>
<Data>An unhandled exception occurred and the process was terminated.
Application ID: /LM/W3SVC/1068268973/ROOT
Process ID: 7540
Exception: System.Security.Cryptograp
Message: Keyset does not exist
StackTrace: at System.Security.Cryptograp
at System.Security.Cryptograp
at System.Security.Cryptograp
at System.Runtime.InteropServ
at System.Runtime.InteropServ
at System.Runtime.InteropServ
</EventData>
</Event>
Log Name: System
Source: Microsoft-Windows-WAS
Date: 11/13/2015 2:49:04 AM
Event ID: 5009
Task Category: None
Level: Warning
Keywords: Classic
User: N/A
Computer: SERV013.FQDN.com
Description:
A process serving application pool 'SharePoint - Default App Pool' terminated unexpectedly. The process id was '7540'. The process exit code was '0xe0434f4d'.
Event Xml:
<Event xmlns="http://schemas.microsoft.com/win/2004/08/events/event">
<System>
<Provider Name="Microsoft-Windows-WA
<EventID Qualifiers="32768">5009</E
<Version>0</Version>
<Level>3</Level>
<Task>0</Task>
<Opcode>0</Opcode>
<Keywords>0x80000000000000
<TimeCreated SystemTime="2015-11-13T07:
<EventRecordID>74547</Even
<Correlation />
<Execution ProcessID="0" ThreadID="0" />
<Channel>System</Channel>
<Computer>SERV013.FQDN.com
<Security />
</System>
<EventData>
<Data Name="AppPoolID">SharePoin
<Data Name="ProcessID">7540</Dat
<Data Name="ExitCode">e0434f4d</
</EventData>
</Event>
My research found these
From the Event ID 5009 ran err.exe on 0xe0434f4d
C:\Util\Err>err 0xe0434f4d
# as an HRESULT: Severity: FAILURE (1), Facility: 0x43, Code 0x4f4d
# NOT FOUND: 0xe0434f4d
Do not understand what is NOT FOUND
This seems to be COM permissions?????????
Command prompt->dcomcnfg->componen
Go to COM security
Under launch and activation permissions
Add the SID S-1-5-82-3006700770-424185
then try and check if IISRESET still throws same error in event log.
I added spapppool account
No change
I spent many hours trying to figure out why everyday at 2:49 AM then by dumb luck I found it.
From within IIS I expanded the Application Pools list after scrolling thru each entry I found that
Application Pool SharePoint - Default App Pool is started v2.0 Integrated identity mydom\spapppool
when I clicked on Recycling Settings I see that it is set for Specific times at 2:49 AM
I also installed DebugDiag 2 Analysis and I have a dump but I a, not sure what to look for
Any thoughts
Thanks in advance
Tom
Learn from the best
Network and collaborate with thousands of CTOs, CISOs, and IT Pros rooting for you and your success.
Andrew Hancock - VMware vExpert
See if this solution works for you by signing up for a 7 day free trial.
Unlock 1 Answer and 6 Comments.
Try for 7 days”The time we save is the biggest benefit of E-E to our team. What could take multiple guys 2 hours or more each to find is accessed in around 15 minutes on Experts Exchange.
Our community of experts have been thoroughly vetted for their expertise and industry experience.