Access is denied. Verify that either the Default Content Access Account has access to this repository, or add a crawl rule to crawl this repository
Introduction
Access is denied. Verify that either the Default Content Access Account has access to this repository, or add a crawl rule to crawl this repository.
Issue
Once we configure Search and started all the Related services, when we start the Crawl and crawl failed and shows one of the errors below. This contains all the issues and solutions related to “search crawling” in one plate that everyone can easily able to get the solution quick. All the issues and resolutions are below.
Errors
1. Access is denied. Verify that either the Default Content Access Account has access to this repository, or add a crawl rule to crawl this repository. If the repository being crawled is a SharePoint repository, verify that the account you are using has “Full Read” permissions on the SharePoint Web Application being crawled. (HttpStatusCode Unauthorized The request failed with HTTP Status 401: Unauthorized.)
“An unrecognized HTTP response was received when attempting to crawl this item. Verify whether the item can be accessed using your browser.”
“The secure sockets layer (SSL) certificate sent by the server was invalid and this item will not be crawled.”
The URL of the item could not be resolved. The repository might be unavailable, or the crawler proxy settings are not configured.
The SharePoint item being crawled returned an error when requesting data from the web service.
Solutions
There could be many reasons that search is not working properly even when we configured everything good. This article is providing all the relevant and related solutions to check. Every solution that you need to take into consideration and apply to resolve the issues. One of the mentioned solutions that definitely work and resolve the issue.
Solution 1
Disable Loopback Check: It is actually a security feature that prevents access to a web application with a fully qualified domain name to from the host server. Follow these steps to disable this feature
· Click Start, click Run, type regedit, and then click OK.
· In Registry Editor, locate and then click the following registry key:
· HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\Lsa
· Right-click Lsa, point to New, and then click DWORD(32-bit) Value.
· Type DisableLoopbackCheck, and then press ENTER.
· Right-click DisableLoopbackCheck, and then click Modify.
· In the Value data box, type 1, and then click OK.
· Quit Registry Editor, and then restart your computer.
http://blogs.catapultsystems.com/rhutton/Lists/Photos/091213_1920_SharePoint24.png
Solution 2
Specify host names: To specify the host names that are mapped to the loopback address and can connect to Web sites. This method would be preferred for NTLM authentications.
· Click Start, click Run, type regedit, and then click OK.
· In Registry Editor, locate and then click the following registry key:
· HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\Lsa\MSV1_0
· Right-click MSV1_0, point to New, and then click Multi-String Value.
· Type BackConnectionHostNames, and then press ENTER.
· Right-click BackConnectionHostNames, and then click Modify.
· In the Value data box, type the host name or the host names for the sites that are on the local computer, and then click OK.
· Quit Registry Editor, and then restart the IISAdmin Service
Solution 3
Check the Permissions correctly: This item should need to check in many areas. Be patient and check one-by-one to ensure that all set correctly
Check 1
When you’re crawling the search. Make sure that the default content access account (crawl account) has access to the User Profile Service
· Open the Central Administration and go to Application Management
· Click Manage service application in the Service Application section
· Select the User Profile Service Application and click on Administrators
· Add your content access account and give it the Retrieve People Data for Search Crawlers permission
Check 2
When you’re crawling the search. Make sure that the default content access account (crawl account) has access to the Search service.
· Open the Central Administration and go to Application Management
· Click Manage service application in the Service Application section
· Select the Search Service Application and click on Administrators
· Add your content access account and give it the Full control permission
Check 3
When you’re crawling the search. Make sure that the default content access account (crawl account) has access to the web applications that are crawling.
· Open the Central Administration and go to Application Management
· Click on web applications
· Select the web application -> check the user policy on Ribbon
· Add your content access account and give it the Full control permission
Solution 4
Host Headers: If you’re using a multi-server farm, having the below servers in farm.
· Server A - Application server
· Server B – WFE
· Server C- Crawl server
We need to create the Host headers in All the WFE, Crawl servers to crawl the Content. Go to below path and create the headers. Refer below article:
http://expertsharepoint.blogspot.de/2013/10/path-for-host-file.html
In the Headers,
· For WFE servers- Need to put the Server IP of the local server
· For Crawl Server- Need to put the Server IP of the WFE server
If you have multiple WFE,Crawl servers. You need to choose one of WFE server IP and put the same IP in all WFE, crawl servers also.
Note: We can apply these solutions one after one and test the status of crawl.
See more at: http://expertsharepoint.blogspot.de/2014/05/access-is-denied-verify-that-either.html
Note: Resolved the issue by above method. If you find a different solution, please report it as a comment to this post. This will be useful to SharePoint community. Be sure to double-verify it: undo your solution and verify that the problem comes back, then redo it and verify that the problem goes away.