NAV 2013 / Net Tcp Port Sharing / Dedicated service account
Christophe34
Member Posts: 3
Hello all,
I try to configure a port sharing between the different services Navision.
I have set a service account, who is a AD user, to launch the services.
This account is not an admin account (local and domain). I don't want that it have this permission.
But he is in the group "Log on as a service".
I've followed this article : https://docs.microsoft.com/en-us/dynamics-nav/provisioning-the-microsoft-dynamics-nav-server-account.
When I start one Navision service I've this error :
Detailed error information:System.ServiceModel.CommunicationException: The service endpoint failed to listen on the URI 'net.tcp://stnasfrbzggz30.gazechim.local:7046/DynamicsNAVPB_FR_TEST/Service' because access was denied. Verify that the current user is granted access in the appropriate allowAccounts section of SMSvcHost.exe.config. ---> System.ComponentModel.Win32Exception: Access is denied.
In more the account can run the service "NetTcpPortSharing", before that was not possible.
However when I give it the local administrator right, the Navision service run.
So how to set the sharing TCP with a non administrator account service ?!
Thanks in advance.
I try to configure a port sharing between the different services Navision.
I have set a service account, who is a AD user, to launch the services.
This account is not an admin account (local and domain). I don't want that it have this permission.
But he is in the group "Log on as a service".
I've followed this article : https://docs.microsoft.com/en-us/dynamics-nav/provisioning-the-microsoft-dynamics-nav-server-account.
When I start one Navision service I've this error :
Detailed error information:System.ServiceModel.CommunicationException: The service endpoint failed to listen on the URI 'net.tcp://stnasfrbzggz30.gazechim.local:7046/DynamicsNAVPB_FR_TEST/Service' because access was denied. Verify that the current user is granted access in the appropriate allowAccounts section of SMSvcHost.exe.config. ---> System.ComponentModel.Win32Exception: Access is denied.
In more the account can run the service "NetTcpPortSharing", before that was not possible.
However when I give it the local administrator right, the Navision service run.
So how to set the sharing TCP with a non administrator account service ?!
Thanks in advance.
0
Best Answer
-
Hello,
In fact I had forgotten to add the good key in the regedit.
In "Computer\HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\MicrosoftDynamicsNavServer$instance", modify "dependonservice" add "NetTcpPortSharing".0
Answers
-
You need to add this entry to your SMSvcHost.exe.config:
<add securityIdentifier="S-1-5-6"/>
After changing the config restart the service or sometimes the machine in order to take effect.
This group includes all security principals that have logged on as a service privileges.
Then restart the service. Ofcourse the serviceaccount must be granted the Log on as a service privilege as you did.
One other step is to add the PortSharing dependency to the Nav service.0 -
Hello,
In fact I had forgotten to add the good key in the regedit.
In "Computer\HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\MicrosoftDynamicsNavServer$instance", modify "dependonservice" add "NetTcpPortSharing".0
Categories
- All Categories
- 73 General
- 73 Announcements
- 66.6K Microsoft Dynamics NAV
- 18.7K NAV Three Tier
- 38.4K NAV/Navision Classic Client
- 3.6K Navision Attain
- 2.4K Navision Financials
- 116 Navision DOS
- 851 Navision e-Commerce
- 1K NAV Tips & Tricks
- 772 NAV Dutch speaking only
- 617 NAV Courses, Exams & Certification
- 2K Microsoft Dynamics-Other
- 1.5K Dynamics AX
- 320 Dynamics CRM
- 111 Dynamics GP
- 10 Dynamics SL
- 1.5K Other
- 990 SQL General
- 383 SQL Performance
- 34 SQL Tips & Tricks
- 35 Design Patterns (General & Best Practices)
- 1 Architectural Patterns
- 10 Design Patterns
- 5 Implementation Patterns
- 53 3rd Party Products, Services & Events
- 1.6K General
- 1.1K General Chat
- 1.6K Website
- 83 Testing
- 1.2K Download section
- 23 How Tos section
- 252 Feedback
- 12 NAV TechDays 2013 Sessions
- 13 NAV TechDays 2012 Sessions