K2 blackpearl Product Documentation: Installation and Configuration Guide
SharePoint - Authentication is required for session error
K2 blackpearl Installation and Configuration Guide > Troubleshooting > SharePoint > SharePoint - Authentication is required for session error Send feedback

SharePoint - Authentication is required for session error

When connecting to Central Administration from a client machine to for instance Activate All K2 Features and K2 Configuration Settings you may run into an Authentication is required for session xxx error caused by the double authentication hop.  This means that the Kerberos configuration was not done correctly, but this may be accomplished by checking the follow:

Solution:

  1. For IIS 7 or IIS 7.5 Only: Add this attribute useAppPoolCredentials in the ApplicationHost.config file. (For more information, click here and navigate to the Special case of running IIS 7.0 in a WEB FARM section)
  2. Add HTTP SPN for Central Admin application pool account – for NetBIOS and FQDN
  3. In Active Directory:
    1. Configure the Admin Server computer account to Trust this computer for delegation to any service (Kerberos only);
    2. Configure the Central Admin application pool account to Trust this computer for delegation to any service (Kerberos only)
  4. Make sure that the K2 Server service SPN is correctly setup. (This should have been done by the K2 installation if the option was selected.)

Ensure that the Administration and Timer services are running on ALL SharePoint servers (AppServer + WFE's)

  • The Timer service account should be setup as the same account as which the central administration application pool is running
  • The Administration service account should be set as LocalSystem

 See the following diagram as quick reference guide:

 

 

 

K2 blackpearl Product Documentation: Installation and Configuration Guide 4.6.10