Business Data Connectivity Service Application (BDCS, BCS), Secure Store Service Application (SSS), and Permission Errors -

SharePoint Events

	5/13/2013 - Conference: SharePoint Summit 2013
	5/21/2013 - Webcast: SharePoint 2013 and ECM: Content Migration and Storage
	5/22/2013 - Webcast: Managing CAD in SharePoint
	5/23/2013 - Webcast: SharePoint Document Automation and E-Forms for Financial Services
	5/24/2013 - Webcast: What's New in Search for SharePoint 2013

SharePoint Videos

	Why SharePoint 2013
	SharePoint 2013 Launch
	SharePoint 2013 Migration and Governance
	SharePoint 2013 and Enterprise Content Management
	Top Benefits of SharePoint 2013
	What's New in Business Intelligence in Office and SharePoint 2013
	SharePoint and Office 2013 Integration
	SharePoint 2013 Infrastructure Preview
	SharePoint, Lync, and, Exchange in the Cloud with Office 365
	Advanced Reporting in SharePoint with Microsoft Power View

Archives

Opening SharePoint Links in a new window

Mail Enabled Lists vs. The Missing Windows 2008 POP3/IMAP Server

7 Tools for SharePoint Developers

Public Facing Masterpage Techniques

How to Quickly Deploy and Activate a Timer Service to Your Site Collection

Custom SharePoint Master Page Feature with WSP Builder

Date Math with InfoPath

Enterprise Search Tricks and Tips Part 1

Populating Word Documents With SharePoint Data. Try The DIP!

Programmatic Deep Dive into Blank SharePoint Lookup Columns

1 - 10

Next

Blogroll

Microsoft SharePoint Team Blog

MS SharePoint End User Team

Natalya Voskresenskaya

Heather Solomon

EndUserSharePoint

Becky Isserman's Blog

Links

InformationWeek

Digg Technology

Informative Graphics

10/6/2011

Business Data Connectivity Service Application (BDCS, BCS), Secure Store Service Application (SSS), and Permission Errors

By: Arjun Chakraborty

If you are reading this article, I bet it’s because you ran into an error while viewing a SharePoint External List. Here are the 3 errors I most commonly run into, and their fixes:

1. User does not have permissions in the BCS content type:

BDCS_BCS_SSS_and_Permission_Errors

If you see this error in the External List, associated with the external content type, then that means you have to give the current user permission in the BCS service application.

Go to Central Administration -> Application Management -> Manage Service Applications. Find the Service Application for BCS, and click on Manage.

BDCS_BCS_SSS_and_Permission_Errors

Select the BCS content type, and then press Set Object Permissions. Then, add that user (or better yet, an AD group which has all the necessary users), and give it the ‘Execute’ permission.

BDCS_BCS_SSS_and_Permission_Errors

========== OR ===========

Instead of selecting the Content Type, simply press Set Metadata Store Permissions. Then, add the user (or group), and make sure to check Propagate permissions to all BCS Models, … If you have multiple content types, all with the same target audience, then this is the best idea. However, only do this if you know the other BCS content types will not have their own unique permission settings. Going forward, all new external content types will also use this user-permission configuration.

2. The End User or BCS User does not have permissions on the SQL Server/database:

BDCS_BCS_SSS_and_Permission_Errors

BDCS_BCS_SSS_and_Permission_Errors

BDCS_BCS_SSS_and_Permission_Errors

If you are seeing these errors in the External List, then there are permissions missing on the SQL server. If the external content type is set to use the user’s credentials, then the user does not have read/write access to the database (write is not necessary if only Read List and Read Item operations are used in the content type). If the external content type is set to use a secure store service account (more typical), then the account stored in secure store service does not have permission on the SQL database.

To fix this, simply give the mentioned user (in this case, “Dev\test02”) the necessary permissions on the database, or re-enter the credentials used by the SSS account.

3. The user does not have permission to use the Secure Store Service account:

BDCS_BCS_SSS_and_Permission_Errors

This is similar to (1), but instead of the BCS, the user needs permissions on the Secure Store Service account entry.

Go to Central Administration -> Application Management -> Manage Service Applications. Select the Secure Store Service, and press manage:

BDCS_BCS_SSS_and_Permission_Errors

Select the secure store account you are using with the BCS connection, and press edit:

BDCS_BCS_SSS_and_Permission_Errors

Keep pressing next until you reach this screen:

BDCS_BCS_SSS_and_Permission_Errors

You need to add the end user to the Members section (bottom). Better yet, add an AD group that has all the users who need to see the external list:

Press OK to finish.

You can also see who has rights to use this SSS account by selecting the account and pressing the Set Credentials button.

BDCS_BCS_SSS_and_Permission_Errors

BDCS_BCS_SSS_and_Permission_Errors

Hope that helps.

By: Arjun Chakraborty

Posted at 2:19 PM by WDC812\richardm | Permalink | Email this Post | Comments (1)

Comments

nobname

goob job

at 4/22/2012 7:05 AM

Add Comment

Items on this list require content approval. Your submission will not appear in public views until approved by someone with proper rights. More information on content approval.

Your Name *

e-mail address *

Website (optional)

Comment *

Attachments

Subscribe

Contact Us

Click here to contact team GigWerks

Connect

Follow GigWerks On Twitter

Follow GWAEC On Twitter

Follow The SharePoint Blog On Twitter

Visit GigWerks On LinkedIn

Resources

	On Demand SharePoint Webcast Recordings
	Upcoming Webinars
	SharePoint Resources
	Business Intelligence Resources
	Gig Werks Website

©2009 Gig Werks. All rights reserved. Privacy Policy