12 October, 2013

Cannot logon with credentials obtained from Secure Store Provider

Problem Description:
I'm using SPD 2010 to connect to an external SQL database hosted on a different server. External data source type selection is SQL Server. I then filled up the connection properties, choose "Connect with Impersonated Windows Identity" and Secure Store Application Id. But SPD 2010 returns this error: Cannot logon with credentials obtained from Secure Store Provider

Error message:
Cannot logon with credentials obtained from Secure Store Provider

We need to set up your Secure Store service application on the server, and add a Target Application. This is an arbitrary name you assign to the set of credential mappings that you will set up in the Secure Store but getting the same error.

Troubleshooting done:
1)   I made sure that the credentials that i set in the secure store have at least db_reader access to the database.

2)   Also ensured the user making the request is a part of members group for the target application.

3)   Chekced the ULS logs and did not find anything relevant.

4)   Suspecting that there is some sort of firewall or VPN issue but, I am not sure how to proceed?

5)   Tried with different account rather than system account to ensure it reflects the same set of results.

6)   Referred the following articles again n again to make sure everything set up correctly but did not yield any results!


Thanks to Fabian Williams and Marc Anderson for the valuable articles:

http://fabiangwilliams.wordpress.com/2010/04/16/how-to-create-configure-consume-sharepoint-2010-secure-store-in-business-connectivity-services

What Resolution we have applied:-
We have created a SQL Account with SQL authentication +
Connect with impersonated custom identity and the issue has been resolved. See this useful post SharePoint 2010 using BCS with SQL Server database by Arjan Fraaij.

Reference:

Product applies to:
SharePoint Server 2010

2 comments:

Your feedback is always appreciated. I will try to reply to your queries as soon as possible- Amol Ghuge

Note: Only a member of this blog may post a comment.