Service Account

Options
phenotype
phenotype
edited September 2013 in Photon Server
Is it possible to run photon service under a domain account? I tried but received an error. I want to do this so I can use integrated security to call a web service from a sub service. What rights would the domain account need?

Comments

  • Kaiserludi
    Kaiserludi admin
    Options
    I am doing that all the time, but I use a local (not domain-wide) admin account and have never tried it without local admin rights.
  • phenotype
    phenotype
    Options
    Yes, the service is currently using the local service account but it needs to use a domain account to access the web services. When I switch to a domain account it gives me the following error;

    The Photon Socket Server: LoadBalancing service failed to start due to the following error:
    Access is denied.
  • phenotype
    phenotype
    Options
    Answering my own post. To use a domain account, or any account, all the account needs is rights to the Photon directory.

    But, I am still having difficulty calling a wcf web service from my code. I get the following error;

    2013-09-14 10:06:47,665 [12] ERROR <Namespace>.Services.PhotonServer.Handlers.LoginRequestHandler [(null)] - Error: System.ServiceModel.Security.SecurityNegotiationException: The caller was not authenticated by the service. ---> System.ServiceModel.FaultException: The request for security token could not be satisfied because authentication failed.
    at System.ServiceModel.Security.SecurityUtils.ThrowIfNegotiationFault(Message message, EndpointAddress target)
    at System.ServiceModel.Security.SspiNegotiationTokenProvider.GetNextOutgoingMessageBody(Message incomingMessage, SspiNegotiationTokenProviderState sspiState)
    --- End of inner exception stack trace ---

    I have confirmed that the windowsidentity is the domain account but still no Joy. Any suggestions?
  • phenotype
    phenotype
    Options
    SOLVED: This error was caused by using a FQDN to call the webservice on the same physical server as Photon. I moved the Photon server to a different physical server and the problem was resolved. This is a little know bug with iis 5.1 and greater.

Cookies,
anyone?

We use cookies and related technologies to enhance your experience, show you personalised content and analyze performance and traffic on our website. By clicking on the „Accept All“ button you consent to the use of non-functional cookies and the subsequent processing of personal data to optimize our website and services as described in more detail in our Privacy and Cookie Policy.

By clicking on the „Customize or Deny all“ button you can decide otherwise. Clicking on the „Customize“ button will take you to a page where you can configure the usage of non-functional cookies (and related technologies) or deny all of them. You can access these settings at any time and also subsequently deselect cookies at any time in the footer area of our website.

ACCEPT ALL

Cookie Overview

We use the following categories of cookies and related technologies to enhance your experience, show you personalized content, and analyze performance and traffic on our website. We respect your right to privacy and accordingly you can chose to not allow some types of cookies (and related technologies). Click on the different category sliders and change our default settings to manage your cookie settings.

For more information on the specific cookies/related technologies we use and on how we use these, please see section 15 E. of our Privacy and Cookie Policy.

ABSOLUTELY NECESSARY

Authentication cookies we use are required to run our services … Cookies are required: Link

FUNCTIONAL AND MARKETING COOKIES

These cookies collect anonymous data and allow us to optimize our website and user experience. These cookies are listed here:

ANALYTICS

Help us to understand how visitors interact with our services, enables us to analyze and improve our services (also through third party analytics).