When using EVSPShortcutManager to recall shortcuts every library in the Web Application fails with 'InsufficientPermissions (-10010)'

Article:TECH208278  |  Created: 2013-07-05  |  Updated: 2014-05-05  |  Article URL http://www.symantec.com/docs/TECH208278
NOTE: If you are experiencing this particular known issue, we recommend that you Subscribe to receive email notification each time this article is updated. Subscribers will be the first to learn about any releases, status changes, workarounds or decisions made.
Article Type
Technical Solution

Product(s)

Issue



The EffectiveBasePermissions of the Web application are preventing EVSPShortcutManager from processing any libraries.


Error



 The XML report of EVSPShortcutManager will show similar to the following:

EVSPShorcutManager XML log (Summary of results)
Process status Process completed. Items to be recalled : 0. Libraries Skipped : 8. See detailed report section below for more information.
Total shortcuts found 756
Total shortcuts skipped 0
Total libraries skipped 8
Sites skipped No
Total shortcuts reported 0
Start time 6/21/2013 6:08:11 PM
End time 6/21/2013 6:08:15 PM
Elapsed time 000:00:03.759

 

EVSPShorcutManager XML log (Detailed report)
Site   Status Error Code Start Time End Time
Surface   Completed site processing. ErrorsEncountered (-10007) 6/21/2013 6:08:14 PM 6/21/2013 6:08:14 PM
  Library Status Error Code Start Time End Time
  Shared Documents Skipping Library Shared Documents, user SOL\EVAdmin does not have Full Control permissions InsufficientPermissions (-10010) 6/21/2013 6:08:14 PM 6/21/2013 6:08:14 PM
  Style Library Skipping Library Style Library, user SOL\EVAdmin does not have Full Control permissions InsufficientPermissions (-10010) 6/21/2013 6:08:14 PM 6/21/2013 6:08:14 PM

 


Cause



Ensure that the account running EVSPShortcutmanager has the appropriate permissions as stated in the Enterprise Vault Utilities guide (see HOWTO57622):

Permissions required to run EVSPShortcutManager

The account you use to run EVSPShortcutManager must have the following roles:
  • Local administrator role on the SharePoint server.
  • For SQL Server 2008 or SQL Server 2012, sysadmin server role on the SharePoint configuration database.
The account must also have one of the following roles:
  • Site Collection Administrator. This role enables EVSPShortcutManager to process every site in the site collection.
  • WebApplication Administrator. This role enables EVSPShortcutManager to process every site in the web application. This role uses the Policy for Web Application to provide Full Control permission.
  • Site Administrator. This role provides Full Control permission to the site. In this case the account must also have Full Control permission on the document libraries in the sites that EVSPShortcutManager processes.
Additionally, if you use the -server option, the account must have access to the SharePoint_Config database (configuration database).

 

As a way to identify that the Web Application Base permissions have been modified the following command can be used within the SharePoint

2010 Management Shell (change 'hostname.domain.com' to the appropriate value for the SharePoint web applicaiton in question):
Get-SPWeb -Identity http://hostname.domain.com/ | FL > c:\WebApplicaiton_Permissions.log
 
Within the output of the above command the following value should show:
EffectiveBasePermissions : FullMask

Solution



The 'EVSPShortcutManager' utility is designed to check the permissions of the running user, however the 'EffectiveBasePermissions' of the Web Applicaiton are combined with the base permissions of the web applicaiton.  If the permission profile of the web application has been modified, meaning the 'EffectiveBasePermissions' are set to something other than 'FullMask', every running user will not be able to run 'EVSPShortcutManager' to recall shortcuts.  There is currently no built in method to reset the permissions to 'FullMask'.

NOTE: For assistance in resetting the EffectiveBasePermissions to FullMask, please contact Microsoft Support.

This issue has been resolved in the following release:

Enterprise Vault 10.0.4 cumulative Hotfix 2 Release
http://www.symantec.com/docs/TECH211666

Enterprise Vault 11.0.0 Release Details
http://www.symantec.com/docs/DOC7401


Supplemental Materials

SourceETrack
Value3237426
Description

When using EVSPShortcutManager to recall shortcuts every library in the Web Application fails with 'InsufficientPermissions (-10010)'


SourceETrack
Value3320211
Description

EVSPShortcutManager is unable to recall shortcuts when default profile permissions have been changed




Article URL http://www.symantec.com/docs/TECH208278


Terms of use for this information are found in Legal Notices