I've got a an issue with permission for a particular user. The AD user was add and assigned in Studio as Full Admin.
But when login to the Studio on the DDC, he gets the following error:
1. Unable to find a Delivery Controller
2.
Error Id: XDDS:292F2E2C
Exception: Citrix.Console.Models.Exceptions.ScriptException You are not authorized to perform this operation. at Citrix.Console.PowerShellInteraction.CmdletExecutionMethods.CreateException[T](ICommonLog logger, ExecutionResults`1 results, ICmdletExecutionHost host) at Citrix.Console.PowerShellInteraction.CmdletExecutionMethods.Execute[T](ISdkCmdlet`1 sdkCmd, ICmdletExecutionHost host, Boolean allowFailover) at Citrix.Console.PowerShellSdk.HealthMonitor.Scripts.ValidateConfigurationServiceLocationScript.RunScript() at Citrix.Console.PowerShellInteraction.PowerShellScript`1.Run() at Citrix.Console.PowerShellSdk.PowerShellService.ValidateCentralConfigurationServiceLocation(String ccsLocation) at Citrix.Console.DeliveryCenter.UI.Dialogs.CcsValidator.ValidateCcs(String ccsLocation) at Citrix.Console.DeliveryCenter.UI.ViewModel.DesktopStudioViewModel.ConnectToSite(String ccsLocation, Boolean safeForDispatcher) at Citrix.Console.DeliveryCenter.UI.Mmc.StartupTabViewModel.<>c__DisplayClass2.<ConnectToSite>b__1() at Citrix.Console.CommonControls.ProgressDisplay.GenericProgressOperation.PerformOperationInternal() at Citrix.Console.CommonControls.ProgressDisplay.ProgressWindowOperation.PerformOperation() at Citrix.Console.CommonControls.ProgressDisplay.ProgressWindowViewModel.PerformAction(Action operationComplete)
DesktopStudio_ErrorId : AuthorizationError Exception : Citrix.Fma.Sdk.ServiceCore.AuthorizationFailureException: Failed to authorize operation GetServiceStatus. Failed ISM for communication with Delegated Admin Service. ---> Citrix.Fma.Sdk.InterServiceManager.AllMatchingServiceInstancesFailedException: All the service instances that matched the requested client profile are in the failed state at Citrix.Fma.Sdk.InterServiceManager.InterServiceManager.FilterAndSort(ServiceFamily family) at Citrix.Fma.Sdk.InterServiceManager.InterServiceManager.GetPreferredServiceInstance(ServiceFamily serviceFamily) at Citrix.Fma.Sdk.InterServiceManager.WcfClientBase`1.SelectNewConnection() at Citrix.Fma.Sdk.InterServiceManager.WcfClientBase`1.MoveToNextConnection() at Citrix.Fma.Sdk.InterServiceManager.WcfClientBase`1.RegisteredCallAndRetry[TResult](Func`2 operation) at Citrix.Configuration.DelegatedAdminProvider.DemandPermission(String operation) --- End of inner exception stack trace --- at Citrix.Configuration.DelegatedAdminProvider.DemandPermission(String operation) at Citrix.Fma.Sdk.ServiceCore.LogicBase.DemandPermission(String operation, ServiceRegistrationStates localAdminStates) at Citrix.Fma.Sdk.ServiceCore.ServiceBase.<>c__DisplayClass10.<GetServiceStatus>b__f() at Citrix.Fma.Sdk.ServiceCore.ServiceBase.CheckedCall[T](String name, Func`1 operation, Func`2 defaultValue, Enum code) Reason : AuthorizationFailureException Message : Failed to authorize operation GetServiceStatus. Failed ISM for communication with Delegated Admin Service. Sdk Error Message : There was a problem communicating with the Citrix Delegated Administration Service. Sdk Error ID : Citrix.XDPowerShell.Status.AuthorizationError,Citrix.Configuration.Sdk.Cmdlets.Management.Commands.GetConfigServiceStatusCommand ErrorCategory : NotSpecified DesktopStudio_PowerShellHistory : ValidateConfigurationServiceLocationScript 1/5/2015 8:52:27 AM
Get-ConfigServiceStatus -AdminAddress 'localhost' Get-ConfigServiceStatus : There was a problem communicating with the Citrix Delegated Administration Service. + CategoryInfo : PermissionDenied: (:) [Get-ConfigServiceStatus], UnauthorizedAccessException + FullyQualifiedErrorId : Citrix.XDPowerShell.Status.AuthorizationError,Citrix.Configuration.Sdk.Cmdlets.Management.Commands.GetConfigServiceStatusCommand
When he verify the permission with PowerShell ( Get-AdminEffectiveRight) he is full admins:
RoleId RoleName ScopeId ScopeName ------ -------- ------- --------- df20d111-4d0b-4502-ad12-5e... Full Administrator 00000000-0000-0000-0000-00... All
We tried to restart all related Services, but nothing helps. The issue is on both of the two DDC's.
Question
Stephan Schnider
Hi
I've got a an issue with permission for a particular user. The AD user was add and assigned in Studio as Full Admin.
But when login to the Studio on the DDC, he gets the following error:
1. Unable to find a Delivery Controller
2.
Error Id: XDDS:292F2E2C
Exception:
Citrix.Console.Models.Exceptions.ScriptException You are not authorized to perform this operation.
at Citrix.Console.PowerShellInteraction.CmdletExecutionMethods.CreateException[T](ICommonLog logger, ExecutionResults`1 results, ICmdletExecutionHost host)
at Citrix.Console.PowerShellInteraction.CmdletExecutionMethods.Execute[T](ISdkCmdlet`1 sdkCmd, ICmdletExecutionHost host, Boolean allowFailover)
at Citrix.Console.PowerShellSdk.HealthMonitor.Scripts.ValidateConfigurationServiceLocationScript.RunScript()
at Citrix.Console.PowerShellInteraction.PowerShellScript`1.Run()
at Citrix.Console.PowerShellSdk.PowerShellService.ValidateCentralConfigurationServiceLocation(String ccsLocation)
at Citrix.Console.DeliveryCenter.UI.Dialogs.CcsValidator.ValidateCcs(String ccsLocation)
at Citrix.Console.DeliveryCenter.UI.ViewModel.DesktopStudioViewModel.ConnectToSite(String ccsLocation, Boolean safeForDispatcher)
at Citrix.Console.DeliveryCenter.UI.Mmc.StartupTabViewModel.<>c__DisplayClass2.<ConnectToSite>b__1()
at Citrix.Console.CommonControls.ProgressDisplay.GenericProgressOperation.PerformOperationInternal()
at Citrix.Console.CommonControls.ProgressDisplay.ProgressWindowOperation.PerformOperation()
at Citrix.Console.CommonControls.ProgressDisplay.ProgressWindowViewModel.PerformAction(Action operationComplete)
DesktopStudio_ErrorId : AuthorizationError
Exception : Citrix.Fma.Sdk.ServiceCore.AuthorizationFailureException: Failed to authorize operation GetServiceStatus. Failed ISM for communication with Delegated Admin Service. ---> Citrix.Fma.Sdk.InterServiceManager.AllMatchingServiceInstancesFailedException: All the service instances that matched the requested client profile are in the failed state
at Citrix.Fma.Sdk.InterServiceManager.InterServiceManager.FilterAndSort(ServiceFamily family)
at Citrix.Fma.Sdk.InterServiceManager.InterServiceManager.GetPreferredServiceInstance(ServiceFamily serviceFamily)
at Citrix.Fma.Sdk.InterServiceManager.WcfClientBase`1.SelectNewConnection()
at Citrix.Fma.Sdk.InterServiceManager.WcfClientBase`1.MoveToNextConnection()
at Citrix.Fma.Sdk.InterServiceManager.WcfClientBase`1.RegisteredCallAndRetry[TResult](Func`2 operation)
at Citrix.Configuration.DelegatedAdminProvider.DemandPermission(String operation)
--- End of inner exception stack trace ---
at Citrix.Configuration.DelegatedAdminProvider.DemandPermission(String operation)
at Citrix.Fma.Sdk.ServiceCore.LogicBase.DemandPermission(String operation, ServiceRegistrationStates localAdminStates)
at Citrix.Fma.Sdk.ServiceCore.ServiceBase.<>c__DisplayClass10.<GetServiceStatus>b__f()
at Citrix.Fma.Sdk.ServiceCore.ServiceBase.CheckedCall[T](String name, Func`1 operation, Func`2 defaultValue, Enum code)
Reason : AuthorizationFailureException
Message : Failed to authorize operation GetServiceStatus. Failed ISM for communication with Delegated Admin Service.
Sdk Error Message : There was a problem communicating with the Citrix Delegated Administration Service.
Sdk Error ID : Citrix.XDPowerShell.Status.AuthorizationError,Citrix.Configuration.Sdk.Cmdlets.Management.Commands.GetConfigServiceStatusCommand
ErrorCategory : NotSpecified
DesktopStudio_PowerShellHistory : ValidateConfigurationServiceLocationScript
1/5/2015 8:52:27 AM
Get-ConfigServiceStatus -AdminAddress 'localhost'
Get-ConfigServiceStatus : There was a problem communicating with the Citrix Delegated Administration Service.
+ CategoryInfo : PermissionDenied: (:) [Get-ConfigServiceStatus], UnauthorizedAccessException
+ FullyQualifiedErrorId : Citrix.XDPowerShell.Status.AuthorizationError,Citrix.Configuration.Sdk.Cmdlets.Management.Commands.GetConfigServiceStatusCommand
When he verify the permission with PowerShell ( Get-AdminEffectiveRight) he is full admins:
RoleId RoleName ScopeId ScopeName
------ -------- ------- ---------
df20d111-4d0b-4502-ad12-5e... Full Administrator 00000000-0000-0000-0000-00... All
We tried to restart all related Services, but nothing helps. The issue is on both of the two DDC's.
What else could by test or try?
Regards,
Stephan
29 answers to this question
Recommended Posts
Create an account or sign in to comment
You need to be a member in order to leave a comment
Create an account
Sign up for a new account in our community. It's easy!
Register a new accountSign in
Already have an account? Sign in here.
Sign In Now