Please excuse the lousy table...Its late :-)
I have a multi-server SP2010 farm. Patched up toConfiguration database version: 14.0.6106.5002
My goal is to have a claims based web application that authenticated to ADAM for Extranet. I have configured the servers exactly to MSDN and technet specs (following this spec to the letter ( http://technet.microsoft.com/en-us/library/ee806882.aspx) to allow the forms side of the web app to authenticate to ADAM.
IT WORKS IN DEV!!! , which is a single server farm. However, it does not work in production. I get the following:
Claims Auth log entries:
1:06:25 AM | w3wp.exe (0x0EDC) | 0x1790 | SharePoint Foundation | Claims Authentication | f2ut | Verbose | Authenticated with login provider. Validating request security token. |
1:06:25 AM | w3wp.exe (0x0EDC) | 0x1790 | SharePoint Foundation | Claims Authentication | 0 | Verbose | Using membership provider 'ADAMProvider'. |
1:06:25 AM | w3wp.exe (0x0EDC) | 0x1790 | SharePoint Foundation | Claims Authentication | 0 | Verbose | Doing password check on 'test_dealer@contoso.com'. |
1:06:46 AM | w3wp.exe (0x0EDC) | 0x1790 | SharePoint Foundation | Claims Authentication | 0 | Verbose | Failed password check on 'test_dealer@contoso.com'. |
1:06:46 AM | w3wp.exe (0x0EDC) | 0x1790 | SharePoint Foundation | Claims Authentication | 0 | Unexpected | Password check on 'test_dealer@contoso.com' generated exception: 'System.ServiceModel.FaultException`1[Microsoft.IdentityModel.Tokens.FailedAuthenticationException]: The security token username and password could not be validated. (Fault Detail is equal to Microsoft.IdentityModel.Tokens.FailedAuthenticationException: The security token username and password could not be validated.).'. |
1:06:46 AM | w3wp.exe (0x0EDC) | 0x1790 | SharePoint Foundation | Claims Authentication | fo1t | Monitorable | SPSecurityTokenService.Issue() failed: System.ServiceModel.FaultException`1[Microsoft.IdentityModel.Tokens.FailedAuthenticationException]: The security token username and password could not be validated. (Fault Detail is equal to Microsoft.IdentityModel.Tokens.FailedAuthenticationException: The security token username and password could not be validated.). |
1:06:46 AM | w3wp.exe (0x1B34) | 0x08A0 | SharePoint Foundation | Claims Authentication | fsq7 | High | Request for security token failed with exception: System.ServiceModel.FaultException: The security token username and password could not be validated. at Microsoft.IdentityModel.Protocols.WSTrust.WSTrustChannel.ReadResponse(Message response) at Microsoft.IdentityModel.Protocols.WSTrust.WSTrustChannel.Issue(RequestSecurityToken rst, RequestSecurityTokenResponse& rstr) at Microsoft.IdentityModel.Protocols.WSTrust.WSTrustChannel.Issue(RequestSecurityToken rst) at Microsoft.SharePoint.SPSecurityContext.SecurityTokenForContext(Uri context, Boolean bearerToken, SecurityToken onBehalfOf, SecurityToken actAs, SecurityToken delegateTo) |
1:06:46 AM | w3wp.exe (0x1B34) | 0x08A0 | SharePoint Foundation | Claims Authentication | 8306 | Critical | An exception occurred when trying to issue security token: The security token username and password could not be validated.. |
1:06:46 AM | w3wp.exe (0x1B34) | 0x08A0 | SharePoint Foundation | Claims Authentication | f2un | Verbose | Form authentication failed. |
I have tried EVERYTHING (well, nt everything, I don’t have the fix I suppose). I found plenty out there and nothing directly correlates with this issue. I searched on all parts of the errors I got.
This contains an interesting blurb about setting up access for the apppool id correctly. That’s not the case for me. It works in dev and the same id are used there.
http://sharepoint-2010-world.blogspot.com/2011/03/adam-forms-based-authentication-in.html
This was good but it doesn’t give specs on what the environment looks like:
The was interesting…but I am patched up beyond the June 2011 CU so it’s a moot point:
Any and all help would be greatly appreciated!