flipa_29928
Feb 07, 2011Nimbostratus
Service Account Not recognised During MP Instal
Hi All,
I have tried to install the F5 Management Pack to the RMS server following the instructions on this site but at the point in the installer wizard where I am prompted to supply the Service Account credentials for the account that will run the f5 Monitoring service an error message appears with the following message:
"Application attempted to perform an operation not allowed by the security policy. To grant this application the required permission, contact your system administrator, or use the Microsoft .NET Framework Configuration tool.
If you click Continue, the application will ignore this error and attempt to continuee.
Logon failure: unknown user name or bad password"
The Details of the error message then go on to list the following messages:
"************** Exception Text **************
System.Security.SecurityException: Logon failure: unknown user name or bad password.
at System.Security.Principal.WindowsIdentity.KerbS4ULogon(String upn)
at System.Security.Principal.WindowsIdentity..ctor(String sUserPrincipalName, String type)
at System.Security.Principal.WindowsIdentity..ctor(String sUserPrincipalName)
at F5Networks.ManagementPack.Setup.SetupUI._AuthenticateServiceAccount()
at F5Networks.ManagementPack.Setup.SetupUI.Next() at System.Windows.Forms.Control.OnClick(EventArgs e)
at System.Windows.Forms.Button.OnMouseUp(MouseEventArgs mevent)
at System.Windows.Forms.Control.WmMouseUp(Message& m, MouseButtons button, Int32 clicks)
at System.Windows.Forms.Control.WndProc(Message& m)
at System.Windows.Forms.ButtonBase.WndProc(Message& m)
at System.Windows.Forms.Button.WndProc(Message& m)
at System.Windows.Forms.Control.ControlNativeWindow.WndProc(Message& m)
at System.Windows.Forms.NativeWindow.Callback(IntPtr hWnd, Int32 msg, IntPtr wparam, IntPtr lparam)
The Zone of the assembly that failed was: MyComputer"
This is followed by more output listing the Loaded Assemblies at the time of the error.
This error occurs regardless of whether I use the specially created F5 Service Account or the SCOM Admin account.
I am also confused as to why the above output should indicate "MyComputer" as a zone whatever that means.
By way of context I should mention that the F5 Service Account has been added to a SCOM Admins global security group and I have also explicitly added it to the Local Admins on the SCOM database server. The account that I use when running the F5 MP Installer is the SCOM Admin account which is an admin of the RMS and of the SCOM application itself so the permissions should be there to complete the task even if I had to resort to using the SCOM Admin account as the F5 Service Account out of desperation to get through the installer.
If anyone has seen a similar error and found the resolution or can decipher what this error means and what exactly I need to do in the .NET Framework Configuration tool to allow the service account to be recognised I would be grateful.
Thanking you for your considered rely,
flipa.