TF53010: An unexpected condition has occurred in a Team Foundation componen

-

am getting an error in application event log, every hour (see below... specific names have been cut obvious reasons).

how (ideally) replace use of install account being referenced service account eliminate these errors)?

event type: error
event source: tfs services
event category: none
event id: 3058
date: 31/05/2006
time: 08:10:11
user: n/a
computer: xxxxx
description:
tf53010: unexpected condition has occurred in team foundation component. information contained here should made available site administrative staff.
technical information (for administrative staff):
date (utc): 31/05/2006 07:10:11
machine: xxxxx
application domain: /lm/w3svc/3/root/services-2-127935330068691450
assembly: microsoft.teamfoundation.server, version=8.0.0.0, culture=neutral, publickeytoken=b03f5f7f11d50a3a; v2.0.50727
process details:
process name: w3wp
process id: 3792
thread id: 752
account name: <service account>
detailed message: tf50642: problem occurred updating identity <install account> (with sid s-1-5-21-...). changes identity , of members have not been propagated team foundation server database. team foundation server retry update @ next scheduled synchronization.
exception message: tf50643: team foundation server unable retrieve identity information active directory <install account> because team foundation server application pool identity not authorized access information, or local user account. access information, team foundation server application pool identity must active directory user account. (type activedirectoryaccessexception)
<followed multiple stack dumps>

this exception occurs when tfs server tries sync it's list of user active directory , can't read user ad.  default, every hour, tfs check changes users cares in ad.  if unable read information user ad, log exception.

the reason server unable access information user service user doesn't have rights access ad.  if service user local user on app tier machine, not have rights in ad, , unable sync down users , groups ad.  other common cause service user not have access rights if there 2 domains one-way trust releationship, , user 1 domain, , isn't trusted read other domain.

if case, there 2 things can do.  first use tfsadminutil change service user trusted ad user.  syntax is:

tfsadminutil changeaccount <old service user> <new service user> <new service user password>

the second delete references domain accounts , groups tfs groups.  default, user installed tfs added global administrators group, can add local account global administrators group, delete domain user.

-- matt hoover
software design engineer
visual studio team foundation



Archived Forums V  >  Team Foundation Server - Setup and Administration



Comments

Post a Comment

Popular posts from this blog

Motherboard replacement

-
running windows 10 technical preview, need replace motherboard can run the  sysprep  command restoring pc ? or there easier  or more preferred way ? thanks if replace motherboard within same family of chipsets (i.e. intel > intel or amd > amd), should okay restarting pc twice. carey frisch Windows 10 Insider Preview  >  Windows 10 Insider Preview General
Read more

Cannot create Full Text Search catalog after upgrading to V12 - Database is not fully started up or it is not in an ONLINE state

-
in order access new full text search capiblities of sql azure, upgraded our azure sql v12. (a day later), when try create new catalog: create fulltext catalog mycatalog default i following message: msg 9972, level 16, state 100, line 1 database not started or not in online state. try full-text ddl command again after database started , becomes online. hi scott, apologies inconvenience caused you. known issue on service side , fix going included in next update. specific case mitigated, should able use full-text search syntax now. thanks, mihaela Microsoft Azure  >  Azure SQL Database
Read more

Remote Desktop App - Error 0x207 or 0x607

-
hi all, i manage windows 2012 r2 network, including connection broker, session hosts , remote apps virtual servers.  i've used remote desktop app on own android phone, no issues @ - connects published gateway url , can login , access network. we looking move business onto nokia handsets ms operating system (currently on blackberry), not able connect via remote desktop app on nokia lumia handset. setup, per android config , brings remote apps , remote desktop screen, know can connect.  when select remote desktop, shows following process: initiating remote connection securing remote connection certificate can't verified - choose connect it digitally signed cert (digicert sha2), pc name different physical connection broker name (inherited domain name old gov project - can't publish publicly) initiating establishing securing connection error have been 0x207 getting 0x607 a bit baffled, work on android (and ipad @ home using app). assume ms use d...
Read more