none
MIM PAM Installation Error RRS feed

  • Question

  • Hi Folks,

    I am trying to get PAM installed in my environment but the installer always ends up prematurely. When I look in the event viewer I can see the below error message logged:

    The Execute method of job definition Microsoft.SharePoint.Administration.SPSolutionDeploymentJobDefinition (ID 747cf542-ae31-4a60-b89a-71e50e86431d) threw an exception. More information is included below.

    "microsoftidentitymanagement.wsp" does not exist in the solution store.. (Correlation=2f93f29d-4509-5085-0628-799ee58a019b)

    The Execute method of job definition Microsoft.SharePoint.Administration.SPAppStateQueryJobDefinition (ID 740072ae-7344-4b39-be01-fe4b46c1a7b5) threw an exception. More information is included below.

    One or more app state queries have failed.. (Correlation=1393f29d-b53d-5085-0628-7b9fa793542a)

    Any thoughts?

    Thanks,


    Veena

    Wednesday, May 17, 2017 3:35 PM

All replies

  • Hi,

    first of all, you don't need to install MIM Portal in order to use PAM, and if you install a production env I would never install Portal and SharePoint to reduce attack options.

    If you want to install a dev/test env and want to user the Portal to view some things on PAM did you follow the default deployment guide of installing MIMPortal ?

    https://docs.microsoft.com/en-us/microsoft-identity-manager/microsoft-identity-manager-deploy

    Keep in mind that Portal is only for viewing some stuff like logs/requests of PAM but you should avoid to manage PAM by Portal. The only supported way is using PowerShell.

    /Peter


    Peter Stapf - ExpertCircle GmbH - My blog: JustIDM.wordpress.com

    Sunday, May 21, 2017 9:39 AM
  • Thanks Peter.

    I already had MIM Portal and Service installed. I was just running the installer in "Change" mode and trying to get PAM installed. The installer keeps rolling back without any specific error message. I tried the verbose method of installation and it states the below. Does it have something to do with Time Job? Time service is append running though. 

    CAQuietExec:  Executing all administrative timer jobs in preparation for FIM solution pack retraction.
    CAQuietExec:  An exception occurred while deploying/retracting FIM Portal solution packs. Exception : Exception has been thrown by the target of an invocation.
    CAQuietExec:  Error 0xfffffff9: Command line returned an error.
    CAQuietExec:  Error 0xfffffff9: CAQuietExec Failed
    CustomAction UninstallFIMPortal returned actual error code 1603 (note this may not be 100% accurate if translation happened inside sandbox)
    Action ended 7:47:05: InstallExecute. Return value 3.

    Thanks,


    Veena

    Monday, May 22, 2017 9:09 AM
  • Hi,

    from the message this seems not really related to PAM, its more about the reconfiguration of the MIM Portal since you choose Change mode install.

    Are you using the same account that initially installed the Service/Portal ?


    Peter Stapf - ExpertCircle GmbH - My blog: JustIDM.wordpress.com

    Monday, May 22, 2017 10:15 AM
  • Yes Peter, the same account.

    Veena

    Monday, May 22, 2017 2:30 PM
  • The account running the install needs to be member of "Enterprise Admins" in AD.

    Nosh Mernacaj, Identity Management Specialist

    Tuesday, May 23, 2017 3:05 AM
  • You, sir, are a life saver. I've been beating my head over this for a day now and then I stumble upon this magical one-liner. THANK YOU!

    Just curious if making the install account a part of the "Enterprise Admin" in AD is documented anywhere?

    • Proposed as answer by Nosh Mernacaj Sunday, July 22, 2018 2:59 PM
    Friday, July 20, 2018 7:40 AM
  • I believe it is documented.  Glad to help and mark as Answered please.

    Nosh Mernacaj, Identity Management Specialist

    Sunday, July 22, 2018 2:59 PM