I just created a fresh install of TFS 2010 beta on a vm, tested everything out using the user account I used to install TFS and everything worked fine. However, when I logged in with a different user account who was a TFS admin as well as a local admin on the tfs machine (my user account), I couldn’t create a new team project. Checking the error log, it said my user didn’t have the correct SharePoint rights to create a new site. Since I’m not very knowledgeable with SharePoint (at all), I added myself as a SharePoint farm administrator and added myself as a collection administrator. When I went back and tried to create a team project, it failed again with the same error. Did I mention I’m totally clueless when it comes to SharePoint? Anyway after futilely messing around with SharePoint for a while, I realized that all the team projects were children of the Default Collection site. Therefore, I had to give the user rights in DefaultCollection site. So I browsed to http://sites/DefaultCollection/default.aspx, clicked the Site Actions button in the upper right hand corner of the page and selected Site Settings. This brought up the Site Settings page for the DefaultCollection site. Under users and Permissions I clicked People and Groups and added myself as a user with full control. Just in case, I also added myself as a Site collection administrator.Going back to Team Explorer, I tried to create a new team project. This time, the creation process went further than before, but it again failed. The error log looked like this:Module: WSS
Exception Type: Microsoft.TeamFoundation.TeamFoundationServerUnauthorizedException
Exception Message: TF30063: You are not authorized to access http://:17012/_vti_bin/TeamFoundationIntegrationService.asmx.
Stack Trace:
at Microsoft.TeamFoundation.Client.TeamFoundationClientProxyBase.ProcessHttpResponse(HttpWebResponse response, Stream responseStream, WebException webException, XmlReader& xmlResponseReader)
at Microsoft.TeamFoundation.Client.TeamFoundationClientProxyBase.ExecWebServiceRequest(HttpWebRequest request, XmlWriter requestXml, String methodName, HttpWebResponse& response)
at Microsoft.TeamFoundation.Client.SharePoint.SharePointTeamFoundationIntegrationService.ActivateFeatureById(String siteUrl, Guid featureId)
at Microsoft.VisualStudio.TeamFoundation.WssSiteCreator.HandleFeatureActivation(WssCreationContextWrapper contextWrapper, XmlNode features)
— Inner Exception —
Exception Type: System.Net.WebException
Exception Message: The remote server returned an error: (401) Unauthorized.
WebException: Response Status Code: Unauthorized
WebException: Response already disposed, no additional information available.
WebException: Status : ProtocolError
Stack Trace:
at System.Net.HttpWebRequest.GetResponse()
at Microsoft.TeamFoundation.Client.TeamFoundationClientProxyBase.AsyncWebRequest.ExecRequest(Object obj)
— end Inner Exception —
— end Exception entry —
Apparently, I needed to add my user account to the web application policies. To do this, bring up the SharePoint Central Administration, go to the tab marked Application Management and click the link Policy for Web Application under Application Security. From here, add the users who will create team projects.
Problem solved.