When I'm setting up SSO I get the following error:
You do not have the rights to perform this operation.
The service is started, the service account is a part of the local administrators group; dbcreator, securityadmin on the database; a member of the sharepoint farm administrators group. I'm loooking at the docs at http://technet2.microsoft.com/Office/en-us/library/841080ca-3e3b-4dbc-a081-43c29c76b3551033.mspx mfr=true and I noticed the Central Administration site doesn't have a "Reader" group.
The event log shows the following:
Type: Error
Date: 1/18/2007
Time: 6:40:24 PM
Event: 6517
Source: Office SharePoint Server
Category: SSO
User: N/A
Computer: SERVERNAME
Description:
User DOMAIN\myuser failed to configure the single sign-on server. The error returned was 0x80630005. Verify this account has sufficient permissions and try again.
Any thoughts on cause/workaround
Thanks,
Colin
Insufficient rights when configuring SSO
Deco
Okay, here is how to configure MOS SSO without changing the registry:
This should work :-)
Wim De Groote
Serapth
It's a single server with a separate database server. I was part of the local SSO Admin and the account had both db creator and securityadmin access on the database server. I ended up granting sysadmin access to the account on the database server, reinputting the service accounts and it seems to have gone away.
The version of Sharepoint seems quite challenging as far as installation goes. I have encountered a number of problems that isn't helped by a documentation set that is largely marked as "TBD".
Alessandro Camargo
briggins5
I was getting this error when trying to enable SSO on our MOSS 2007 dev server:
"You do not have the rights to perform this operation."
I was signed in as domain admin, and tried setting account to domain admin.
Ensuring the service logged on as domain account, then stopping and starting the service didn't fix it.
Came across this Chris Johnson blog (http://blogs.msdn.com/cjohnson/archive/2005/07/01/434384.aspx) where he suggested modifying the registry for a another SSO error.
I removed the quotes from the registry as he suggested. Then stopped and started the service again. I entered the same domain admin credentials. And it worked.
SuperFox
There's several causes to this:
- Are you logged on locally on the server
- Is the account logged on locally the account that is specified as the sso admin Or if that was specified as a group did you add the user that is logged in to that group
- Does the SSO service account have the permission to db creator and securityadmin on the database server
Bit more information about your topology would be nice.