I have a SP2016 site collection.The Farm is composed as follows: Domain server :DomainSPxxx Frontend server :FrontendSP Database server :DatabaseSP
The site collection has two extensions:
default (http) - with Windows Auth access to the DomainSPxxx.com domain
internet with mixed access (https) - with Windows Auth access to the DomainSPxxx.com domain and Form Based access with LDAP provider always associated with the DomainSPxxx.com domain
When a domain account authenticates with Windows Auth the username displayed is: [email protected] when it is connected with ldap it will be like '0#.f|ldapmember:userx|[email protected]'
On the extension default only the administrative accounts are used. This extension is used exclusively for service / maintenance activities. For example, the document search crawl is performed on it.
Problem. I have developed a workflow that performs operations on SP lists. Given that : The workflow manager is configured correctly The user profile is configured correctly That the two services are active. The Worflow app for the site is active and correctly configured throw appinv.asxp page StsApplication Pool Load profile is true Worflow can use app feature is active
Explain problem In practice, when the workflow from the https internet extension is launched, for each operation performed (for example reading records) and as if the system requires the presence of the domain user for the document library.
Example: user '0#.f|ldapmember:userx|[email protected]' collaborator on list 'TestList'. If the workflow performs a read operation on document library 'TestList' with user '0#.f|ldapmember:userx|[email protected]', this fails indicating resource access problems. I checked the SP log. Below is an except: