support Posted August 16, 2019 Share Posted August 16, 2019 If you are having issues when trying to send Self Destruct Messages, please refer to the following questions/suggestions, and please provide this feedback to Click Studios when logging a support call: Please provide a screenshot of the error you are seeing Are you using the Self Destruct Message web site which comes embedded with your normal Passwordstate web site, or have you installed this site separately? With the error message you see, is the URL being reported accurate? If you are using the embedded site, the URL used is the Base URL field you can see on the screen Administration -> System Settings -> Miscellaneous tab. If you have installed the site separately, then it's the URL you have specified on the screenshot below Do you use any Load Balancers or Reverse Proxies in your environment? As per the screenshots below, can you confirm the encryption key is set correctly in the file C:\inetpub\Passwordstate\selfdestruct\web.config – this path will be different if you have installed this site separately Regards Click Studios Link to comment Share on other sites More sharing options...
Eric Young Posted September 17, 2019 Share Posted September 17, 2019 Unfortunately an error has occurred within the Passwordstate web site, for which we apologize for the inconvenience. If Passwordstate is able to communicate with the database, then the error will be logged on the screen Administration -> Passwordstate Administration -> Error Console. If you are unable to view the Error Console screen for any reason, you can ask your Database Administrator to run the following SQL Query, which will show the same data from the Error Console Screen: USE Passwordstate SELECT * FROM DebugInfo 9/17/2019 12:54:16 PM General Error Invalid viewstate. Client IP: 10.60.73.8 Port: 30700 Referer: https://ofpasstate01pr.vitamix.com:9119/passwords/shared/default.aspx?screenwidth=1473 Path: /passwords/shared/default.aspx User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/78.0.3891.0 Safari/537.36 Edg/78.0.268.1 ViewState: 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..., StackTrace = Are you using the Self Destruct Message web site which comes embedded with your normal Passwordstate web site, or have you installed this site separately? Embedded With the error message you see, is the URL being reported accurate? If you are using the embedded site, the URL used is the Base URL field you can see on the screen Administration -> System Settings -> Miscellaneous tab. If you have installed the site separately, then it's the URL you have specified on the screenshot below. URL Correct Do you use any Load Balancers or Reverse Proxies in your environment? No As per the screenshots below, can you confirm the encryption key is set correctly in the file C:\inetpub\Passwordstate\selfdestruct\web.config – this path will be different if you have installed this site separately. File attached I am now unable to go into settings and check Self destruct setting, I get the following error: The file '/admin/systemsettings/default.aspx' has not been pre-compiled, and cannot be requested., StackTrace = at System.Web.Compilation.BuildManager.GetVPathBuildResultInternal(VirtualPath virtualPath, Boolean noBuild, Boolean allowCrossApp, Boolean allowBuildInPrecompile, Boolean throwIfNotFound, Boolean ensureIsUpToDate) at System.Web.Compilation.BuildManager.GetVPathBuildResultWithNoAssert(HttpContext context, VirtualPath virtualPath, Boolean noBuild, Boolean allowCrossApp, Boolean allowBuildInPrecompile, Boolean throwIfNotFound, Boolean ensureIsUpToDate) at System.Web.Compilation.BuildManager.GetVirtualPathObjectFactory(VirtualPath virtualPath, HttpContext context, Boolean allowCrossApp, Boolean throwIfNotFound) at System.Web.Compilation.BuildManager.CreateInstanceFromVirtualPath(VirtualPath virtualPath, Type requiredBaseType, HttpContext context, Boolean allowCrossApp) at System.Web.UI.PageHandlerFactory.GetHandlerHelper(HttpContext context, String requestType, VirtualPath virtualPath, String physicalPath) at System.Web.HttpApplication.MaterializeHandlerExecutionStep.System.Web.HttpApplication.IExecutionStep.Execute() at System.Web.HttpApplication.ExecuteStepImpl(IExecutionStep step) at System.Web.HttpApplication.ExecuteStep(IExecutionStep step, Boolean& completedSynchronously) Web.config Link to comment Share on other sites More sharing options...
Eric Young Posted September 17, 2019 Share Posted September 17, 2019 I applied OS updates and upgraded to latest build of Passwordstate. I am now able to verify that Key is correct. Link to comment Share on other sites More sharing options...
Eric Young Posted September 17, 2019 Share Posted September 17, 2019 After upgrade and reboot, I am able to go through the steps to send self-disctruct message, but get the following error: There was an error communicating with the Self Destruct Message Site on the URL of 'https://ofpasstate01pr.vitamix.com:9119/selfdestruct/'. Please check the logs folder on the Self Destruct Site for more details. Error = The underlying connection was closed: An unexpected error occurred on a send. If I copy the url from the self-distruct message, https://ofpasstate01pr.vitamix.com:9119/selfdestruct/?id=8fb4bb085f6d4c24946eb175e43a3cc3 I get the following error: You do not have permission to view this directory or page. Link to comment Share on other sites More sharing options...
support Posted September 17, 2019 Author Share Posted September 17, 2019 Hi Eric, For the previous error of "has not been pre-compiled", that is generally caused by lack of disk space, or a failed upgrade attempt of Passwordstate - just for future reference, in case you see it again at some stage. If you look in IIS, do you see the 'Selfdestruct' folder configured as an "Application"? If not, then possibly someone missed our post upgrade instructions, and you can follow the KB Article title 'Configure Self Destruct IIS Application' in the User Manual, which you can find under the Help menu in Passwordstate? Can you let us know if this helps? Regards Click Studios Link to comment Share on other sites More sharing options...
Eric Young Posted September 18, 2019 Share Posted September 18, 2019 I believe it is not configured: I configured it, but still get an error: Link to comment Share on other sites More sharing options...
support Posted September 18, 2019 Author Share Posted September 18, 2019 Hi Eric, Can you check again that "As per the screenshots below, can you confirm the encryption key is set correctly in the file C:\inetpub\Passwordstate\selfdestruct\web.config – this path will be different if you have installed this site separately" - I assume this matching the encryption key on your System Settings -> Self Destruct Messages? If you go to the screen Administration -> Error Console, is it reporting any more error data for this? It's odd that we get the message "The underlying connection was closed", when you've confirmed all the information above is correct - we're not exactly sure what else could cause this. Regards Click Studios Link to comment Share on other sites More sharing options...
StefanPahrmann Posted March 18, 2021 Share Posted March 18, 2021 We just ran across a similar case, where the API didn't work after an OS upgrade. The fix was to uninstall the Microsoft Monitoring Agent on the server and reboot it. -Stefan Link to comment Share on other sites More sharing options...
Eric Young Posted March 18, 2021 Share Posted March 18, 2021 Is the Microsoft Monitoring Agent listed under Programs and Features as an installed program on the server? If so I do not have it installed. Link to comment Share on other sites More sharing options...
StefanPahrmann Posted March 18, 2021 Share Posted March 18, 2021 Yes it is. But you probably can see in the eventviewer (application log) which assembly is causing your problem. In our case this showed up: Exception message: Could not load file or assembly 'Microsoft.EnterpriseManagement.OperationsManager.Apm.DataCollecting.Producers.Mvc.4.0, Version=7.0.5000.0, Culture=neutral, PublicKeyToken=31bf3856ad364e35' or one of its dependencies. The system cannot find the file specified. Googling showed that this was related to Microsoft Monitoring Agent, but I think other apps can mess with these as well. It is shown as warning for ASP.NET (eventID 1309) -Stefan Link to comment Share on other sites More sharing options...
Eric Young Posted March 18, 2021 Share Posted March 18, 2021 I am seeing this event once a day: Event code: 3005 Event message: An unhandled exception has occurred. Event time: 3/18/2021 1:13:18 AM Event time (UTC): 3/18/2021 5:13:18 AM Event ID: 57415b0d8f8d444a828bef60e3222c37 Event sequence: 9678 Event occurrence: 1 Event detail code: 0 Application information: Application domain: /LM/W3SVC/1/ROOT-1-132605178893806099 Trust level: Full Application Virtual Path: / Application Path: C:\inetpub\wwwroot\ Machine name: OFPASSTATE01PR Process information: Process ID: 924 Process name: w3wp.exe Account name: IIS APPPOOL\DefaultAppPool Exception information: Exception type: HttpException Exception message: A potentially dangerous Request.Path value was detected from the client (:). at System.Web.HttpRequest.ValidateInputIfRequiredByConfig() at System.Web.HttpApplication.PipelineStepManager.ValidateHelper(HttpContext context) Request information: Request URL: http://ofpasstate01pr.vitamix.com/api/v1/namespaces/kube-system/services/https:kubernetes-dashboard:/proxy/ Request path: /api/v1/namespaces/kube-system/services/https:kubernetes-dashboard:/proxy/ User host address: x.x.x.x User: Is authenticated: False Authentication Type: Thread account name: IIS APPPOOL\DefaultAppPool Thread information: Thread ID: 12 Thread account name: IIS APPPOOL\DefaultAppPool Is impersonating: False Stack trace: at System.Web.HttpRequest.ValidateInputIfRequiredByConfig() at System.Web.HttpApplication.PipelineStepManager.ValidateHelper(HttpContext context) Custom event details: Link to comment Share on other sites More sharing options...
support Posted March 18, 2021 Author Share Posted March 18, 2021 Hi Eric, Generally when we see the error "A potentially dangerous Request.Path value was detected from the client (:)", this means that either someone is doing a deliberate penetration test against your Passwordstate instance, or you have a scanning tool looking for vulnerabilities. These errors are created by our software to protect you from malicious attacks. We do not believe this would be an intruder on your web server, because if they had enough access on it to run some sort of tool, they wouldn’t be trying to scan pages that don’t even exist. If you do not think the above information is correct, please let us know and we can continue to investigate. Regards, Support. Link to comment Share on other sites More sharing options...
Eric Young Posted March 19, 2021 Share Posted March 19, 2021 We do run vulnerability scans on all of our servers daily, so that makes sense. Do you have any other idea why self destruct is still not working? Link to comment Share on other sites More sharing options...
support Posted March 19, 2021 Author Share Posted March 19, 2021 Hi Eric, Also, we do not use DefaultAppPool, and that URL does not look like one of ours - I think this is for a different product. Regards Click Studios Link to comment Share on other sites More sharing options...
Recommended Posts
Archived
This topic is now archived and is closed to further replies.