SharePoint Central Admin cannot be access from web front end - Disable Loopback

From MS: http://support.microsoft.com/kb/2451858


Method 1: Specify host names (the preferred method for NTLM authentication)
To specify the host names that are mapped to the loopback address and can connect to websites on your computer, follow these steps:
  1. Set the DisableStrictNameChecking registry entry to 1. For more information about how to do this, click the following article number to view the article in the Microsoft Knowledge Base:
    281308  (http://support.microsoft.com/kb/281308/ ) Connecting to SMB share on a Windows 2000-based computer or a Windows Server 2003-based computer may not work with an alias name
  2. Click Start, click Run, type regedit, and then click OK.
  3. In Registry Editor, locate and then click the following registry key:
    HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\Lsa\MSV1_0
  4. Right-click MSV1_0, point to New, and then click Multi-String Value.
  5. Type BackConnectionHostNames, and then press ENTER.
  6. Right-click BackConnectionHostNames, and then click Modify.
  7. In the Value data box, type the host name or the host names for the sites that are on the local computer, and then click OK.
  8. Exit Registry Editor, and then restart the IISAdmin service.

Method 2: Disable the loopback check (the less-recommended method)

Warning This workaround may make a computer or a network more vulnerable to attack by malicious users or by malicious software such as viruses. We do not recommend this workaround but are providing this information so that you can implement this workaround at your own discretion. Use this workaround at your own risk.

The second method is to disable the loopback check by setting the DisableLoopbackCheck registry entry.

To set the DisableLoopbackCheck registry key, follow these steps:
  1. Set the DisableStrictNameChecking registry entry to 1. For more information about how to do this, click the following article number to view the article in the Microsoft Knowledge Base:
    281308  (http://support.microsoft.com/kb/281308/ ) Connecting to SMB share on a Windows 2000-based computer or a Windows Server 2003-based computer may not work with an alias name
  2. Click Start, click Run, type regedit, and then click OK.
  3. In Registry Editor, locate and then click the following registry key:
    HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\Lsa
  4. Right-click Lsa, point to New, and then click DWORD Value.
  5. Type DisableLoopbackCheck, and then press ENTER.
  6. Right-click DisableLoopbackCheck, and then click Modify.
  7. In the Value data box, type 1, and then click OK.
  8. Exit Registry Editor, and then restart your computer.

Comments

Post a Comment

Popular posts from this blog

Metastorm - Open form in an action from a list or link

Below is the SQL underneath the custom list with the link to open an action.  If you are opening from outside of a Metastorm client, you may need to add the ‘SessionID’ parameter containing a valid session ID 9.  I haven’t tried this with the current 9.1 SSO, it may be unnecessary.   If the session id parameter is still necessary, usually we write a wrapper aspx page to authenticate to user, grab the session id and redirect them to the action. The syntax is http://<servername/Metastorm/eForm.aspx?Map=<process map name>&Action=<action name>&Folder=<folder name>&FolderID=<folderid>&Service=<BPM Service Name>&Client=External&FolderLaunchURL=&FolderCancelURL=&IsFolderAction=True SELECT eFolder . eFolderID , eFolder . eFolderName , eFolder . eStageName ,   eFolder . eUpdated , eFolder . eSubject , ITProjectInitiation . txtProjectName ,   CASE       WHEN LEN ( ITProjectInitiation . txtNextAction ) > 1          
Read more

Corporate Intranet Information Architecture – a Publishing Site

Image
There have been several occasions in my consulting career where I have discussed what a corporate intranet should look like.   There are several aspects to this question, branding, custom web parts or other bells and whistles, but I believe that the fundamental structure or information architecture is one of if not the most important aspect of a solid, useful corporate intranet. Clearly, each individual company will have a unique look and feel and information architecture.   This will depend on the underlying business as well as the relative size, geographical locations and languages of the company. However, I have noticed certain commonalities across companies and have started to develop a template of how I can help an organization visualize there corporate intranet.   This could be used as a target to reorganize an existing intranet or as a template to stand up a new one.   In either case, changes will have to be made to suit the individual company’s needs.   Most companie
Read more

No Search Results in SharePoint Contextual Search OSSSearchResults.aspx

This is another one for me so I never have to figure this out again.   All the other posts I found when looking into this talked about how to set up a search center and redirect people over there.   That is pretty well documented at this point, but the problem I had was that people were trying to search the local site, being direct to the out of the box _layouts/OSSSearchResults.aspx page and getting no results.   The fix was frustratingly simple, check your alternate access mappings.   If you have extended the web app and users are using the new AAM then that could be the reason that the OOTB search results are not working.   In my case I had the short name as the default, and the FQDN as the custom, I switched them and now everything works.
Read more