Workflow Manager is a environment where working processes for lists executes in SharePoint infrastructure. This posts show how to configure Workflow Manager, correctly register and use it.
Awesome guid that shows how to configure sharepoint workflow manager presents here – [link]
If you have any errors on step “Register Workflow Proxy for SharePoint Servers”, so follow next instruction:
WorkFlow Manager Exception: Register-SPWorkflowService Failed to query the OAuth S2s metadata error
|
1 2 3 4 5 6 |
cls Add-PSSnapin microsoft.sharepoint.powershell $config = (Get-SPSecurityTokenServiceConfig) $config.AllowOAuthOverHttp# = $true $config.AllowMetaDataOverHttp# = $true #$config.Update() |
If you have any errors on step with Service Bus configuration, when Service Broker is stuck in “starting” state, use instruction:
Running Service Bus Server on a legacy domain without a fully qualified domain name
|
1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 19 20 21 22 23 24 25 26 27 28 29 |
[Version] Signature = "$Windows NT$" [Strings] szOID_SUBJECT_ALT_NAME2 = "2.5.29.17" szOID_ENHANCED_KEY_USAGE = "2.5.29.37" szOID_PKIX_KP_SERVER_AUTH = "1.3.6.1.5.5.7.3.1" [NewRequest] Subject = "CN=ksup-web" KeySpec = AT_KEYEXCHANGE KeyUsage = "CERT_DIGITAL_SIGNATURE_KEY_USAGE | CERT_KEY_ENCIPHERMENT_KEY_USAGE" MachineKeySet = true RequestType = cert Exportable = true KeyLength=2048 ValidityPeriodUnits = 5 ValidityPeriod = Years HashAlgorithm = sha256 [Extensions] %szOID_SUBJECT_ALT_NAME2% = "{text}" _continue_ = "DNS=<HOST>&" _continue_ = "DNS=<HOST>&" %szOID_ENHANCED_KEY_USAGE% = "{text}" _continue_ = %szOID_PKIX_KP_SERVER_AUTH% |
|
1 2 3 4 5 |
cls Remove-SBHost #Get-SBFarm -SBFarmDBConnectionString "Data Source=<HOST>;Initial Catalog=ServiceBus_Management_DB;Integrated Security=True;Encrypt=False" #Set-SBCertificate -EncryptionCertificateThumbprint <THUMBPRINT> -FarmCertificateThumbprint <THUMBPRINT> -SBFarmDBConnectionString "Data Source=<HOST>;Initial Catalog=ServiceBus_Management_DB;Integrated Security=True;Encrypt=False" Add-SBHost |
If you have many domains (mydomain and mydomain.local, for example), you will get error due the last (Add host to WM Farm) step:
|
1 2 3 4 |
"Workflow Manager configuration starting. Configuring Workflow Manager runtime settings. The token provider was unable to provide a security token while accessing 'https://*:9355/WorkflowDefaultNamespace/$STS/Windows/'. Token provider returned message: 'The underlying connection was closed: Could not establish trust relationship for the SSL/TLS secure channel.'." |
In this situation, you need to do the same steps as in instruction, but on on the first step set all hostnames for new certificate: Requesting an SSL Certificate for Multiple Domains
Attention: do not forget about “&”:
|
1 2 3 4 |
continue = "dns=www.maindomain.com&" continue = "dns=www.domain2.com&" continue = "dns=maindomain.com&" continue = "dns=domain2.com&" |
After that, run WF configuration manager. On the first step set “Auto Generate Certificate”, on the second, due Service Bus Configuration, uncheck “Manual Configuration” and attach our new certificate for many domains (also, you have to check that certificate installed to trusted folder).
