Chat now with support
Chat with Support

ControlPoint 8.9 - Administration Guide

Preface Configuring the Environment in Which ControlPoint Will Run The ControlPoint Configuration Site Managing Your Farm List Managing Your ControlPoint License Granting ControlPoint Access to Web Applications and Content Databases Using Discovery to Collect Information for the ControlPoint Database Cache Using Sensitive Content Manager Services Managing ControlPoint Configuration and Permissions Preparing Your Environment for Using ControlPoint Sentinel Modifying ControlPoint Configuration Settings
Changing Default Settings for Actions and Analyses Changing Default Settings to Improve Application Performance Audit Log Configuration Settings Changing Settings for Anomalous Activity Detection Restricting Functionality for Members of the Business Administrators Group Changing Default Settings for ControlPoint User Groups Changing Settings to Improve Discovery Performance Changing Settings to Accommodate Special Environmental Factors Changing Default Settings for Navigation Changing Default Settings for Compliance Managing Site Provisioning Settings Specifying Global Settings for ControlPoint Policies Setting Preferences for the ControlPoint Scheduler Miscellaneous and Custom Configuration Settings Special-Purpose Configuration Settings
Changing Trace Switch Logging Levels Archiving SharePoint Audit Log Data Troubleshooting
ControlPoint Log Files Troubleshooting Configuration Errors Troubleshooting the ControlPoint Application Interface Troubleshooting Discovery Troubleshooting SharePoint Users and Permissions Troubleshooting Site Provisioning Troubleshooting ControlPoint Operations

Cannot Locate SharePoint Users Authenticated by Alternate (non-Active Directory) Methods

Issue

Attempting to select alternate authentication-based users on which to run a ControlPoint operation but unable to browse for or validate them.

Possible Reason(s)

·The ControlPoint application has not been configured to recognize the alternate authentication provider.

·The scope of your action or analysis encompasses more than one Web application.

Resolution(s)

·Make sure the ControlPoint application has been configured to recognize the alternate authentication provider(s) used in the farm.   See Configuring ControlPoint to Recognize Alternate Authentication Providers.

·Either:

§limit the scope of your operation to a single Web application

OR

§if the operation is one that can be run on unvalidated users, manually enter (rather than browsing for) the user's name and omit the validation.

See "Special Considerations for Selecting Alternate Authentication-based Users" in the topic Selecting Users on Which to Perform a ControlPoint Action or Analysis in the ControlPoint User's Guide.

System Exception: "Cannot get the members of the group..."

Issue

When attempting to view members of an Active Directory group from permissions analysis results, an error window displays which includes the following message:

System.Exception:  Cannot get the members of the group [domain\group] possibly because of network or permissions problems

Possible Reason

The ControlPoint Service Account does not have permissions to read all users within the Active Directory group.  

Resolution

Make sure the ControlPoint Service Account has at least Read Permissions for the Active Directory record of every SharePoint user.  Consult your Microsoft Active Directory documentation for details.

Properties Dialog: Total Users with Permissions Displays as "Incomplete"

Issue

After clicking [Calculate Totals] On the ControlPoint Properties dialog, the number of Total Users with Permissions is followed by (Incomplete).

Reason

An exception was encountered when Active Directory users were being counted.  Possible reasons include:

·The ControlPoint Service Account does not have access to an entire Active Directory group or one or more accounts within an Active Directory group.

·Networking problems have been encountered.

Resolution

Review the ControlPoint Administration Log (xcAdmin.log) to determine the cause of the exception.

Users with Permissions Granted Through a Claim are not Showing Up in Permissions Analysis Results

Issue

One or more users who have permissions to SharePoint objects through a claim are not being included in permissions analysis results.

Possible Reason

If your SharePoint farm includes claims-based authentication, permissions granted through a claim may not be reliably reported because SharePoint only retains permissions information for an augmentation claims-based user for a limited time after the user logs in.

The same behavior can be observed in SharePoint. For example, the SharePoint Site Permissions > Check Permissions feature may or may not show permissions granted through an augmentation claim, depending on when the user last logged in.

Related Documents

The document was helpful.

Select Rating

I easily found the information I needed.

Select Rating