Jump to content


Recommended Posts

I run the script for creating a BitLocker portals. , I tried to access the portal but cannot connect it keeps prompting for the credential.

image.png.33063c4c9a32932ccad97cbe54b6af12.png

image.thumb.png.71e99c5b08ae60d49677be2f283f6264.png

Share this post


Link to post
Share on other sites

have you seen my guide here

 

Share this post


Link to post
Share on other sites

yes, i've seen your guide.  and i don't what i missed in the configuration. this is my first implementation of bitlocker management. I also check the event viewer when i access the portals

Event ID 1

The description for Event ID 1 from source Microsoft-Windows-MBAM-Web cannot be found. Either the component that raises this event is not installed on your local computer or the installation is corrupted. You can install or repair the component on the local computer.

 If the event originated on another computer, the display information had to be saved with the event.

 The following information was included with the event:

 Application: Default Web Site/HelpDesk is missing the following Service Principal Names (SPNs):

http/

 Register the required SPNs on the account: CHSV001012019$.

 The publisher has been disabled and its resource is not available. This usually occurs when the publisher is in the process of being uninstalled or upgraded

 

Event ID 111

The description for Event ID 111 from source Microsoft-Windows-MBAM-Web cannot be found. Either the component that raises this event is not installed on your local computer or the installation is corrupted. You can install or repair the component on the local computer.

If the event originated on another computer, the display information had to be saved with the event.

The following information was included with the event:

An error occurred while retrieving the database schema version from the Compliance database.

Could not find stored procedure 'ComplianceCore.GetVersion'.

The publisher has been disabled and its resource is not available. This usually occurs when the publisher is in the process of being uninstalled or upgraded

 

Share this post


Link to post
Share on other sites

well it's hard to make out from your screenshot but it appears you had errors installing the portals, what cmdline did you use to install them ?

Share this post


Link to post
Share on other sites

I re-run the script. with this (changed to generic.)

.\MBAMWebSiteInstaller.ps1 -SqlServerName sservername -SqlDatabaseName CM_abc -ReportWebServiceUrl http://server/ReportServer -HelpdeskUsersGroupName "abc\BitLocker HelpDesk Admins" -HelpdeskAdminsGroupName "abc\BitLocker Admin Users" -MbamReportUsersGroupName "abc\BitLocker Reporting Users" -SiteInstall Both

I got no error on the powershell, then I tried to access the site again, but kept on asking for credentials. 

image.png.6b7965dbc2d223ab0cc50f7196a3f312.png

then there's this error on the event viewer

image.png.a7a1be4a05c2c4e52119855837fbc86f.png
The description for Event ID 1 from source Microsoft-Windows-MBAM-Web cannot be found. Either the component that raises this event is not installed on your local computer or the installation is corrupted. You can install or repair the component on the local computer.
If the event originated on another computer, the display information had to be saved with the event.
The following information was included with the event:
Application: Default Web Site/HelpDesk is missing the following Service Principal Names (SPNs):
http/
Register the required SPNs on the account: CHSV001012019$.
The publisher has been disabled and its resource is not available. This usually occurs when the publisher is in the process of being uninstalled or upgraded
 
The description for Event ID 111 from source Microsoft-Windows-MBAM-Web cannot be found. Either the component that raises this event is not installed on your local computer or the installation is corrupted. You can install or repair the component on the local computer.
If the event originated on another computer, the display information had to be saved with the event.
The following information was included with the event:
An error occurred while retrieving the database schema version from the Compliance database.
Could not find stored procedure 'ComplianceCore.GetVersion'.
The publisher has been disabled and its resource is not available. This usually occurs when the publisher is in the process of being uninstalled or upgraded

Share this post


Link to post
Share on other sites

ok still very hard to see the output from your powershell but if there's no errors then that's better, what type of environment do you have, is it a  single primary with the helpdesks installed on the same server or something more complex, please explain... can you do a remote session so i can take a look  (teamviewer ?)

Share this post


Link to post
Share on other sites

using 2 servers , sccm server and database server
It would be nice if you can check via remote session, but actually this is a client environment so I don't have access to other servers except for sccm and DB server

This is the result in PowerShell
image.thumb.png.3afa06c24c488f154e28c0f53980594e.png

Share this post


Link to post
Share on other sites

can you confirm that you've met these prerequisites

 

  • To use the self-service portal or the administration and monitoring website, you need a Windows server running IIS. You can reuse a Configuration Manager site system, or use a standalone web server that has connectivity to the site database server. Use a supported OS version for site system servers.
  • Only install the self-service portal and the administration and monitoring website with a primary site database. In a hierarchy, install these websites for each primary site.
  • On the web server that will host the self-service portal, install Microsoft ASP.NET MVC 4.0 and .NET Framework 3.5 feature before staring the install process. Other required Windows server roles and features will be installed automatically during the portal installation process.
  • The user account that runs the portal installer script needs SQL Server sysadmin rights on the site database server. During the setup process, the script sets login, user, and SQL Server role rights for the web server machine account. You can remove this user account from the sysadmin role after you complete setup of the self-service portal and the administration and monitoring website.

Share this post


Link to post
Share on other sites
On 10/29/2020 at 6:36 PM, anyweb said:
  • To use the self-service portal or the administration and monitoring website, you need a Windows server running IIS. You can reuse a Configuration Manager site system, or use a standalone web server that has connectivity to the site database server. Use a supported OS version for site system servers.
  • Only install the self-service portal and the administration and monitoring website with a primary site database. In a hierarchy, install these websites for each primary site.
    • I run the script on the sccm server
  • On the web server that will host the self-service portal, install Microsoft ASP.NET MVC 4.0 and .NET Framework 3.5 feature before staring the install process. Other required Windows server roles and features will be installed automatically during the portal installation process.
    • I installed Microsoft ASP.NET MVC 4.0 on both sccm and db server
  • The user account that runs the portal installer script needs SQL Server sysadmin rights on the site database server. During the setup process, the script sets login, user, and SQL Server role rights for the web server machine account. You can remove this user account from the sysadmin role after you complete setup of the self-service portal and the administration and monitoring website.
    • the account I'm using when I run the script has the sysadmin rights on the db server

 

Edited by hannah
incomplete

Share this post


Link to post
Share on other sites

Join the conversation

You can post now and register later. If you have an account, sign in now to post with your account.

Guest
Reply to this topic...

×   Pasted as rich text.   Paste as plain text instead

  Only 75 emoji are allowed.

×   Your link has been automatically embedded.   Display as a link instead

×   Your previous content has been restored.   Clear editor

×   You cannot paste images directly. Upload or insert images from URL.

Loading...

×
×
  • Create New...