Installed an brand new SharePoint 2010 Application server (SPS-APP01.mydomain.int) with Service pack 1 and August 2012 cumulative update. All prerequisites and installation went perfectly but once the product wizard completed I’m getting “HTTP : 500 Service Unavailable” error while loading Central administration also the Central administration app pool get stopped.
Wasted probably two hours by looking all around to find out the point of this occurrence.
- Installed SharePoint and ran product config wizard through Farm account and Farm account also has full control to Database server so no point of checking more on database level permissions.
- Checked the IIS app pool account of Central Admin and all required IIS security groups and all are there as needed.
- Farm account also a member of local admin group.
- Demoted whole farm and again provisioned but the result was same.
So what else I have to huh ? None isn’t it ? But actually yes one more thing.
Suddenly popped out that one key permission which was missing while I’m checking – "Log on locally as batch job" on local security policy of SP Server.
Administrative tools –> local security policy –> User rights assignment –> right click and edit "Log on as a batch job"
My farm account (Central Admin App pool account) should be here but it wasn’t. tried to add but couldn’t can you see the add users button has been grayed out so realized that Infra admin has defined this particular group policy through AD.
Asked Admin to Edit the default domain policy –> User rights assignment –> right click ad edit "Log on as a batch job"
Added Farm (Central admin App pool account) account in to the group since this policy has been defined (enabled).
After applying just ran a GP Update/force from SP Server and checked whether this user has been added,
yes it was as above and then tried to open up the central admin.
Bingo !!! It opens now.