I am currently working through some BTARN configuration challenges on our
production box. We are receiving a “The remote server returned an error:
(403) Forbidden.” when trying to post a 0C1 test PIP out of our domain.
The
error occurs when the partner .async send ****t attempts to post a message
to
the /BTARNApp/RNIFSend.aspx page.
Looking at the IIS log, the error is simply shows as a 403, not 403.1,
403.2, etc.
I have validated the following:
-App pool running the BTARNApp web application has the same
identity as the BizTalk InProcess host instance (<domain>PIPE_BTS_HOST)
-User “interlink\PIPE_BTS_HOST” is part of the “BizTalk
Isolated
Host Users” and “IIS_WPG” user groups. It also tem****arily part of
the local
machine “Administrator” group.
-BTARNApp web application is configured to allow for anonymous
access
-Virtual directory has “scripts & executable” permission
-Home Organization certificate has a private key and installed
in the personal store of the “<domain>\PIPE_BTS_HOST”
What I have tried:
-Changed user of BTARNApp pool with valid interlink user (me).
App returns a 503 Service Unavailable. App returns 403 when changed backed
to
“<domain>\PIPE_BTS_HOST”
-Deleted and recreated virtual directory hosting BTARNApp web
application
-Removed and re-im****ted certificate with private key into
personal store of InProcess host instance user
These smells like a permission conflict but I really am not seeing where
it
is.
Any insight on this error or suggestions where to look will be much
appreciated.
Thanks
Dave
