This error started hitting my SharePoint 2010 Central Admin servers in one of our DMZ environments. As soon as I clicked on the “Content Sources” link in my FAST Connector Search Service Application (SSA) this error popped up almost immediately:
Error QI for IEnumVARIANT failed on the unmanaged server.
I checked to see if my Central Admin server could connect to one of the FAST admin service URLs that is used to manage content collections:
http://%5Byour fast server]:13257/contentcollectionservice.svc
and I got a standard WCF “I’m here!” service summary page response. So connection to the FAST server was OK.
I then checked my FAST server logs in:
[path to FAST]\var\log\syslog\lasterror.log
and found an entry for a timeout connecting to the database server.
I then checked the database server and found 1,000s of event log errors (a bit of background – it’s a brand new environment and had been installed/configured a month ago, then not touched since then). The errors in the log file were:
SSPI handshake failed with error code 0x80090311, state 14 while establishing a connection with integrated security; the connection has been closed. Reason: AcceptSecurityContext failed. The Windows error code indicates the cause of failure. [CLIENT: ].
I found out that the Security Configuration Wizard had been run on all servers, and Group Policy was in effect on the whole environment. This had closed off some required ports and caused everything to fall in a heap. I disabled the group policies and used the command:
gpupdate /force
to apply the policy. This stopped the errors occurring and returned everything back to normal again. Once I get it to a completely stable point, i’ll start to adjust and reapply the security policies.
Back in Hack 
Leave a comment