Share via

SharePoint 2019 On Prem - 403 forbidden error on Central Admin

Shreyas R S 26 Reputation points
2023-06-07T09:31:41.84+00:00

We have installed SharePoint 2019 on prem in our client server( it was offline installation as there was no internet) and then ran configuration wizard. All was successful but then we are unable to open SharePoint Central Admin, getting 403 forbidden error.

 

Below are few things which we have checked and acted upon based on few blogs suggestions

We have checked and ensured all SharePoint related Application pools are up and running with the same account we have installed SharePoint

Have added FARM account with DB-Owner and Security Admin rights in DB server where Config database is installed

Have provided access to FARM account with Execute and READ rights on bin directory of the application

Have added FARM account under these groups:

WSS_ADMIN_WPG

WSS_WPG

Administrators

Have ensured all SharePoint services are running(with Farm account) in services.msc

Few blogs suggested to repair/reinstall “WcfDataServices” which was done

Configured SPN in SQL server using blog - Cannot generate SSPI context when connecting to SQL Server - SQL Server | Microsoft Learn as Events logs was showing “The target principal name is incorrect. Cannot generate SSPI context.”

Updated the identity password for “SecurityTokenServiceApplicationPool ” application pool and restarted it.

Also followed all the steps in the blog - https://itfreesupport.com/2014/08/common-troubleshooting-step-sharepoint-web-site-and-central-admin-500-internal-server-error/ as ULS logs were showing 500 internal server error

Still same 403 forbidden issue persists! Could anyone assist/suggest if any other steps that can be followed to resolve the issue?

Regards,

Shreyas R S

SharePoint Server
SharePoint Server
A family of Microsoft on-premises document management and storage systems.
2,422 questions

2 answers

Sort by: Most helpful
Most helpful Newest Oldest
  1. Ling Zhou_MSFT 23,610 Reputation points Microsoft External Staff
    2023-06-09T05:05:15.51+00:00

    Hi @Shreyas R S,

    Since we can't reproduce your situation, we need to narrow down the problem and try some things.

    1, Use the available privacy mode of your web browser when you sign into SharePoint Central Admin (Please make sure you are using farm admin account). To learn how to browse through an InPrivate window, see Microsoft Edge. To learn how to browse through an Incognito window, see Google Chrome.

    Note: Microsoft is providing this information as a convenience to you. The sites are not controlled by Microsoft. Microsoft cannot make any representations regarding the quality, safety, or suitability of any software or information found there. Please make sure that you completely understand the risk before retrieving any suggestions from the above link. 

    If you can access the file while you browse in a privacy mode, clear your browser cache. To learn how to clear the browser cache, see Edge or Chrome.

    Note: Microsoft is providing this information as a convenience to you. The sites are not controlled by Microsoft. Microsoft cannot make any representations regarding the quality, safety, or suitability of any software or information found there. Please make sure that you completely understand the risk before retrieving any suggestions from the above link. 

    2, Please Try to remove Center Administration Form IIS and run the SharePoint Products Configuration Wizard again. I suggest you use a different port when creating the Center Administration site.

    3, Please go to IIS ->site->SharePoint Center Administration->right click ->Explore.

    Please check whether following files exists.

    User's image

    4, Please use this article to check if your MOSS service account is working:

    https://msayem.wordpress.com/2012/12/17/sharepoint-central-administration-not-opening-403-forbidden-error-message/

    Note: Microsoft is providing this information as a convenience to you. The sites are not controlled by Microsoft. Microsoft cannot make any representations regarding the quality, safety, or suitability of any software or information found there. Please make sure that you completely understand the risk before retrieving any suggestions from the above link. 

    If the answer is helpful, please click "Accept Answer" and kindly upvote it. If you have extra questions about this answer, please click "Comment".

    Note: Please follow the steps in our documentation to enable e-mail notifications if you want to receive the related email notification for this thread.

  2. SUMAN RATHORE 0 Reputation points
    2023-07-06T14:10:27.0933333+00:00

    Hi

    We have recently updated our Fam with SharePoint 2019 June CU and Ran config Wizard successfully on SharePoint Servers with no error. But we are also Facing the same issue as you did. unable to open SharePoint Central Admin, getting 403 forbidden error.

    Below are few things which we have checked and acted upon based on few blogs suggestions

    Have added FARM account with DB-Owner and Security Admin rights in DB server where Config database is installed

    Have provided access to FARM account with Execute and READ rights on bin directory of the application

    Have added FARM account under these groups:

    WSS_ADMIN_WPG

    WSS_WPG

    Administrators

    Have ensured all SharePoint services are running(with Farm account) in services.msc

    Any help is much appreciated

    0 comments

Your answer

Answers can be marked as Accepted Answers by the question author, which helps users to know the answer solved the author's problem.