ADFS 4.0, Event ID - 7000, Error: 1297- Privilege That The Service Req

Query King | Wed, 19 Sep 2018 at 05:36 hours | Replies : 4 | Points : 100

Category : ADFS

Hi Friends,

I am getting below error in ADFS 4.0 While trying to start ADFS Service. Please help.

Error: 1297

The Active Directory Federation Services service failed to start due to the following error:

A privilege that the service requires to function properly does not exist in the service account configuration. You may use the Services Microsoft Management Console (MMC) snap-in (services.msc) and the Local Security Settings MMC snap-in (secpol.msc) to view the service configuration and the account configuration.

Event Log: 7000

Log Name: System

Source: Service Control Manager

Date: 2/2/2018 10:22:26 PM

Event ID: 7000

Task Category: None

Level: Error

Keywords: Classic

User: N/A

Computer: ADFS01.ABC.COM

Description:

The Active Directory Federation Services service failed to start due to the following error:

A privilege that the service requires to function properly does not exist in the service account configuration. You may use the Services Microsoft Management Console (MMC) snap-in (services.msc) and the Local Security Settings MMC snap-in (secpol.msc) to view the service configuration and the account configuration.

Screen Shot:

This Question is already solved Click To See The Answer

Santosh Gupta
Novice (N+)

Hi,

Please check if ADFS Service account has "Logon as a service" Permission on ADFS Server.

Thu, 27 Sep 2018 06:08 hrs |

Query King
Novice (N)

Hi Santosh,

I have checked server has "Logon as a service" Permission on ADFS Server.

Tue, 02 Oct 2018 09:24 hrs |

Solved

Santosh Gupta
Novice (N+)

Hi,

Please check if ADFS Service account has Generate security audits permission. If not then follow below step.

1. Open Local Group Policies. On Run Type "GPEDIT.MSC".
2. Go to Computer Configuration -> Windows Settings -> Security Settings -> Local Policies -> User Rights Assignment.
3. From Right Pane, Select Generate security audits.
4. Add your ADFS Service Account here.
5. Close Local Group Policies MMC Console.
6. Open Command Prompt "CMD" and type "GPUPDATE /FORCE".

I hope it help you.

Wed, 03 Oct 2018 02:40 hrs | (Excellent)

Query King
Novice (N)

Thanks Santosh,

Generate security audits. permission was missing. its working now. :)

Thu, 04 Oct 2018 01:51 hrs |

Top 10 Users

Santosh Gupta Novice (N+)	6825
Baghira Novice (N)	3125
Anuj Chauhan Novice (N)	2050
bhupender singh Novice (N)	1825
Rohit Dixit Novice (N)	1750
Rishabh Jain Novice (N)	500
kattappa Novice (N)	500
Administrator Novice (N)	400
Khalid Kamal Novice (N)	400
Amzad Khan Novice (N)	200

Latest Articles

Backup And Backup Types Consistent Top Navigation For All Site Collections In SharePoint 2010/2013 Difference Between Local, Global And Universal Groups Error Occurred While Collecting Data For Administrative Templates Win2K8 How To Clear Saved Credentials From Windows And Web Browsers How To Export ADFS 2.0 Metadata XML File Introduction To Windows Azure Cloud Performance Issues And Solutions For List And Libraries In SharePoint SAP FICO SharePoint Site Users & Hits Count Report For The Past 30 Days