BL Test SSPI Error

PatL · June 14, 2017, 9:20am

Hi Guys,
I’m dusting off the old bl-tester and it’s giving me this error when I try to run it. At the bottom of the exception it says
“The target principal name is incorrect”

To me it points to a ssl/auth issue but I checked my config file and I am using UsernameWindowsChannel.

Any idea’s on what the error means?
TargetInvocationException

Inner Exception:
A call to SSPI failed, see inner exception.

Server stack trace:
at System.ServiceModel.Channels.WindowsStreamSecurityUpgradeProvider.WindowsStreamSecurityUpgradeInitiator.OnInitiateUpgrade(Stream stream, SecurityMessageProperty& remoteSecurity)
at System.ServiceModel.Channels.StreamSecurityUpgradeInitiatorBase.InitiateUpgrade(Stream stream)
at System.ServiceModel.Channels.ConnectionUpgradeHelper.InitiateUpgrade(StreamUpgradeInitiator upgradeInitiator, IConnection& connection, ClientFramingDecoder decoder, IDefaultCommunicationTimeouts defaultTimeouts, TimeoutHelper& timeoutHelper)
at System.ServiceModel.Channels.ClientFramingDuplexSessionChannel.SendPreamble(IConnection connection, ArraySegment1 preamble, TimeoutHelper& timeoutHelper) at System.ServiceModel.Channels.ClientFramingDuplexSessionChannel.DuplexConnectionPoolHelper.AcceptPooledConnection(IConnection connection, TimeoutHelper& timeoutHelper) at System.ServiceModel.Channels.ConnectionPoolHelper.EstablishConnection(TimeSpan timeout) at System.ServiceModel.Channels.ClientFramingDuplexSessionChannel.OnOpen(TimeSpan timeout) at System.ServiceModel.Channels.CommunicationObject.Open(TimeSpan timeout) at System.ServiceModel.Channels.SecurityChannelFactory1.ClientSecurityChannel`1.OnOpen(TimeSpan timeout)
at System.ServiceModel.Channels.CommunicationObject.Open(TimeSpan timeout)
at System.ServiceModel.Channels.ServiceChannel.OnOpen(TimeSpan timeout)
at System.ServiceModel.Channels.CommunicationObject.Open(TimeSpan timeout)
at System.ServiceModel.Channels.CommunicationObject.Open()

Exception rethrown at [0]:
at System.Runtime.Remoting.Proxies.RealProxy.HandleReturnMessage(IMessage reqMsg, IMessage retMsg)
at System.Runtime.Remoting.Proxies.RealProxy.PrivateInvoke(MessageData& msgData, Int32 type)
at System.ServiceModel.ICommunicationObject.Open()
at Epicor.ServiceModel.Channels.ChannelEntry1.CreateNewChannel() at Epicor.ServiceModel.Channels.ChannelEntry1.CreateChannel()
at Epicor.ServiceModel.Channels.ChannelEntry1.GetContract() at Epicor.ServiceModel.Channels.ImplBase1.GetChannel()
at Epicor.ServiceModel.Channels.ImplBase`1.HandleContractBeforeCall()
at Ice.Proxy.BO.UserFileImpl.GetRows(String whereClauseUserFile, String whereClauseUserComp, String whereClauseUserCompExt, Int32 pageSize, Int32 absolutePage, Boolean& morePages)
Inner Exception:
A call to SSPI failed, see inner exception.
at System.Net.Security.NegoState.StartSendAuthResetSignal(LazyAsyncResult lazyResult, Byte[] message, Exception exception)
at System.Net.Security.NegoState.StartSendBlob(Byte[] message, LazyAsyncResult lazyResult)
at System.Net.Security.NegoState.CheckCompletionBeforeNextSend(Byte[] message, LazyAsyncResult lazyResult)
at System.Net.Security.NegoState.ProcessReceivedBlob(Byte[] message, LazyAsyncResult lazyResult)
at System.Net.Security.NegoState.StartReceiveBlob(LazyAsyncResult lazyResult)
at System.Net.Security.NegoState.CheckCompletionBeforeNextReceive(LazyAsyncResult lazyResult)
at System.Net.Security.NegoState.StartSendBlob(Byte[] message, LazyAsyncResult lazyResult)
at System.Net.Security.NegoState.CheckCompletionBeforeNextSend(Byte[] message, LazyAsyncResult lazyResult)
at System.Net.Security.NegoState.ProcessReceivedBlob(Byte[] message, LazyAsyncResult lazyResult)
at System.Net.Security.NegoState.StartReceiveBlob(LazyAsyncResult lazyResult)
at System.Net.Security.NegoState.CheckCompletionBeforeNextReceive(LazyAsyncResult lazyResult)
at System.Net.Security.NegoState.StartSendBlob(Byte[] message, LazyAsyncResult lazyResult)
at System.Net.Security.NegoState.ProcessAuthentication(LazyAsyncResult lazyResult)
at System.Net.Security.NegotiateStream.AuthenticateAsClient(NetworkCredential credential, ChannelBinding binding, String targetName, ProtectionLevel requiredProtectionLevel, TokenImpersonationLevel allowedImpersonationLevel)
at System.Net.Security.NegotiateStream.AuthenticateAsClient(NetworkCredential credential, String targetName, ProtectionLevel requiredProtectionLevel, TokenImpersonationLevel allowedImpersonationLevel)
at System.ServiceModel.Channels.WindowsStreamSecurityUpgradeProvider.WindowsStreamSecurityUpgradeInitiator.OnInitiateUpgrade(Stream stream, SecurityMessageProperty& remoteSecurity)
Inner Exception:
The target principal name is incorrect

danbedwards · June 14, 2017, 5:23pm

Are you running this on the server or your workstation? If workstation, try it on the server to eliminate a few variables.
Have you modified the default web.config for the site?
You mentioned the server side is UsernameWindowsChannel. Are you specifying Username Over Windows Channel on the BL Tester config?
Have you tried using the IP address instead of the server name? Short name vs. fully qualified. Some of this you can view with setspn on the server.
Just a few things to check.

aidacra · June 14, 2017, 7:44pm

Try using the IP address of the server instead of the server name in the appserver url for the connection to the appserver. Whenever you see an SSPI, always try the IP address instead of the server name.

That being said, this is likely a bug in the BL tester and I would report this to Support to get a formal SCR on it.

PatL · June 15, 2017, 12:30am

Thanks Nathan.
It has all come rushing back to me now.
The IP Address fixed it.

Topic		Replies	Views
BL Tester won't start Epicor ERP 10 e10	3	1669	December 23, 2020
Authentication failed on the remote side Epicor ERP 10	18	14438	November 9, 2017
BL-Tester.exe Table 'UserFile' property mismatch Epicor ERP 10 e10 , bl-tester	1	329	October 3, 2023
Getting an error using SSL client Epicor ERP 10 e10	6	996	October 8, 2021
10.2.200 authentication issue Epicor ERP 10	0	1165	July 11, 2018

BL Test SSPI Error

Related Topics