The content source in question was of type CustomRepository and used a custom indexing connector to access an external system. It downloaded data via web service. And this suddenly seemed to fail.
What was going on?
Somebody cannot access something
A look into the ULS log revealed errors which happened every time the connector tried to access the web service. The crawl history showed a single top level error and the crawl log had the following entry: |
| "Error while crawling LOB contents. ( Credentials were not found for the current user within the target application '...'. please set the credentials for the current user. )" |
But what is the "current" user? Shouldn't the user be the Default Content Access Account of the SSA as configured in the Crawl Rules?
Identity crisis
After looking into the task manager I decided to give credential access to one account: the account mssdmn.exe runs under, which is the account of the SharePoint Server Search 14 service.And it seemed like
- before updating to SP1 the Default Content Access Account (as configured in the Crawl Rules) was used to access the secure store credentials
- after updating to SP1 this account apparently changed to the account of the SharePoint Server Search 14 service.
So the solution was simple, yet mysterious: I changed the account allowed to access the web service credentials. And it worked.
But stop!
Resolution? Confusion.
After a few days I deleted the content source previously affected and added it again. And the indexing stopped again. Same error as before: "Credentials were not found for the current user within the target application '...'. please set the credentials for the current user." What was going on this time?The account used by Search to access the secure store credentials changed again. To what was set prior to installing SP1: the Default Content Access Account of the SSA. As one would expect.
Strange.
