Problem
Description:
When you search for user accounts using
"Browse" People-Picker icon, the following error message may occur
and the user accounts may not be resolved
Error
Message:
"There was an error in
callback".
Probable
cause:
This issue normally happens if WSS_WPG group
does not have any permissions on this registry key
"HKEY_LOCAL_MACHINE\Software\Microsoft\Shared Tools\Web Server
Extensions\14.0\Secure".
By default, WSS_WPG group has FULL control
access to the above mentioned registry key.
This particular key contains a binary value called
AppCredentialKey – it is used to encrypt/decrypt the data passed by
PeoplePicker-SearchADForests. This key is created using setapppassword command
and used in one way trust relationships. Application pool accounts need at
least read access to the above mentioned registry key for successful People
Picker behavior.
Resolution
1)
Check WSS_WPG group permissions and
confirm whether the application pool account of the web application present in
that group
2)
Later check the registry key -
"HKEY_LOCAL_MACHINE\Software\Microsoft\Shared Tools\Web Server
Extensions\14.0\Secure" and identify permissions allocated for WSS_WPG
group in the Permissions window of the registry key.
3)
If WSS_WPG group does not present in
Permissions window, add the 'WSS_WPG' group with read or full control
permissions.
If you have any queries/questions regarding
the above mentioned information then please let me know. I would be more than
happy to help you as well as resolves your issues. Thank you.
