So I just recently spun up a new virtual machine to do some Commerce Server 2009 R2 work. Did all my standard installation work, everything seemed good.
Then when I went to view the site, I get the following error:
An exception occurred when trying to issue security token: User DOMAINUSERNAME is not authorized for the operation CommerceQueryOperation_CommerceClaim . Please open CommerceEntityAuthorizationStore.xml in Authorization Manager and add the user to CommerceClaimRole AssignmentsCommerceQueryOperation.
The site was returning a 500 error, and this was all that was given in the event log. Since I needed a quick fix, this is only a development machine you know.
I turned to the channel configuration file, there is a new element called CommerceAuthorization, it was set to required.
Simply make the change here to Disabled, and the error will disappear…
Here is where to find the CommerceAuthorization element in the ChannelConfiguration.Config file.
Hi Bradley,
I’m setting up a development environment for commerce server 2009 R2 Enterprise edition. I’m doing a 3-tier deployment. I already setup the application tier server but I’m having the above issue in my presentation tier. My business zone site worked fine after I set up the channel configuration. Then when I accessed the shopper site, it showed “401 Unauthorized” error. Then I restart my IIS and after that my business zone is giving the error you mentioned above and the shopper zone shows “401 unauthorized”. I tried to look for the channelconfiguration.config file but I couldn’t find it. Can you tell me where I can find it and if it’s not there how can I add it.
Thanks,
Smitha
Smitha,
The channel configuration file will be in the root of the website that you are using. Check the c:inetpubwwwrootwssvirtualdirectories80 directory and it should be there, or something like that.
~Brad