BitLocker portals not working

Question

I run the script to setup BitLocker portals

.\MBAMWebSiteInstaller.ps1 -SqlServerName <ServerName> -SqlInstanceName <InstanceName> -SqlDatabaseName <DatabaseName> -ReportWebServiceUrl <ReportWebServiceUrl> -HelpdeskUsersGroupName <DomainUserGroup> -HelpdeskAdminsGroupName <DomainUserGroup> -MbamReportUsersGroupName <DomainUserGroup> -SiteInstall Both

this is the result:
Creating new web application SelfService
Registering perf counters

Id Name PSJobTypeName State HasMoreData Location Command

---

2 Job2 BackgroundJob Completed True localhost param($assembly, $typ...

True

Get-ReportServiceUri : Caught exception querying report service at https://CHSV001022019.dnl.com/ReportServer
At C:\program files\microsoft configuration manager\cd.latest\smssetup\bin\x64\MBAMWebSiteInstaller.ps1:1285 char:34

• ... $reportUriPart = Get-ReportServiceUri $ReportWebServiceUrl
• ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
• CategoryInfo : NotSpecified: (:) [Write-Error], WriteErrorException
• FullyQualifiedErrorId : Microsoft.PowerShell.Commands.WriteErrorException,Get-ReportServiceUri

Get-ReportServiceUri : There was an error downloading
'https://chsv001022019.dnl.com/ReportServer/ReportService2010.asmx?wsdl'.
At C:\program files\microsoft configuration manager\cd.latest\smssetup\bin\x64\MBAMWebSiteInstaller.ps1:1285 char:34

• ... $reportUriPart = Get-ReportServiceUri $ReportWebServiceUrl
• ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
• CategoryInfo : NotSpecified: (:) [Write-Error], WriteErrorException
• FullyQualifiedErrorId : Microsoft.PowerShell.Commands.WriteErrorException,Get-ReportServiceUri

Get-ReportServiceUri : Unable to connect to the remote server
At C:\program files\microsoft configuration manager\cd.latest\smssetup\bin\x64\MBAMWebSiteInstaller.ps1:1285 char:34

• ... $reportUriPart = Get-ReportServiceUri $ReportWebServiceUrl
• ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
• CategoryInfo : NotSpecified: (:) [Write-Error], WriteErrorException
• FullyQualifiedErrorId : Microsoft.PowerShell.Commands.WriteErrorException,Get-ReportServiceUri

WARNING: Unable to determine web service uri to Audit Report. This can be corrected in the web.config for the HelpDesk
website.

Creating new web application HelpDesk
Registering perf counters
4 Job4 BackgroundJob Completed True localhost param($assembly, $typ...

True

Creating the new web application were both True.
i tried to access the portal but I cant get through, it keeps on asking for credentials

Answer 1

Hi,

Please make sure you installed the prerequisite for Microsoft ASP.NET MVC 4.0 on the web server.
https://learn.microsoft.com/en-us/mem/configmgr/protect/plan-design/bitlocker-management#prerequisites

The user account that runs the portal installer script needs SQL Server sysadmin rights on the site database server. During the setup process, the script sets login, user, and SQL Server role rights for the web server machine account. You can remove this user account from the sysadmin role after you complete setup of the self-service portal and the administration and monitoring website.

Event ID 1:
For Integrated Windows Authentication to succeed, necessary SPNs needs to be in place. This message indicates that the SPN required for MBAM application has not been correctly configured.

Event ID 111:
These errors indicate one of the following two conditions:
MBAM websites/webservices were unable to either connect to MBAMCompliance OR MBAMRecovery database
MBAM websites/webservices execution account(app pool account) could not run the GetVersion stored procedure on MBAMCompliance OR MBAMRecovery database

Verify that the app pool account can connect to the compliance or recovery databases. Confirm that it has permissions to run the GetVersion stored procedure.

https://learn.microsoft.com/en-us/mem/configmgr/protect/tech-ref/bitlocker/server-event-logs#111-webappdberror