Accepting 1 new client!
LinkedIn WhatsApp Twitter Facebook Email
Internal
External
Resources

data.index.classifications.json (application/json)

/blob/resources/blog/tfs-integration-tools-issue-tfs-wit-bypass-rule-submission-is-enabled/images/clip_image002_thumb-1-1.jpg (image/jpeg)

/blob/resources/blog/tfs-integration-tools-issue-tfs-wit-bypass-rule-submission-is-enabled/images/image_thumb37-2-2.png (image/png)

/blob/resources/blog/tfs-integration-tools-issue-tfs-wit-bypass-rule-submission-is-enabled/images/metro-applies-to-label-3-3.png (image/png)

/blob/resources/blog/tfs-integration-tools-issue-tfs-wit-bypass-rule-submission-is-enabled/images/metro-findings-label-4-4.png (image/png)

images/metro-problem-icon-5-5.png (image/png)

/blob/resources/blog/tfs-integration-tools-issue-tfs-wit-bypass-rule-submission-is-enabled/images/metro-solution-label-6-6.png (image/png)

/blob/resources/blog/tfs-integration-tools-issue-tfs-wit-bypass-rule-submission-is-enabled/images/wlEmoticon-sadsmile-7-7.png (image/png)

Blog

tech·nic·al·ly agile

TFS Integration Tools - Issue: TFS WIT bypass-rule submission is enabled

Resolve TFS WIT bypass-rule submission errors with our guide. Learn how to add accounts to the Service Accounts Group and streamline your TFS Integration.

Published on
Written by Martin Hinshelwood
2 minute read
Image
https://nkdagility.com/resources/sb9e7R72Ioq
Comments
LinkedIn WhatsApp Twitter Facebook Email

When you run the TFS Integration Platform for the first time with TFS WIT bypass-rule submission enabled you will likely get the following error:

TFS Integration Tools - Issue: TFS WIT bypass-rule submission is enabled  

Figure: A Runtime Error

Microsoft.TeamFoundation.Migration.Tfs2010WitAdapter.PermissionException: TFS WIT bypass-rule submission is enabled. However, the migration service account ‘TFSService’ is not in the Service Accounts Group on server ‘http://tfsserver:8080/tfs/msf_migrate’.

at Microsoft.TeamFoundation.Migration.Tfs2010WitAdapter.VersionSpecificUtils.CheckBypassRulePermission(TfsTeamProjectCollection tfs)

at Microsoft.TeamFoundation.Migration.Tfs2010WitAdapter.TfsCore.CheckBypassRulePermission()

at Microsoft.TeamFoundation.Migration.Tfs2010WitAdapter.TfsWITMigrationProvider.InitializeTfsClient()

at Microsoft.TeamFoundation.Migration.Tfs2010WitAdapter.TfsWITMigrationProvider.InitializeClient()

at Microsoft.TeamFoundation.Migration.Toolkit.MigrationEngine.Initialize(Int32 sessionRunId)

TFS Integration Tools - Issue: TFS WIT bypass-rule submission is enabled Applies To

TFS Integration Tools - Issue: TFS WIT bypass-rule submission is enabled Findings

Only accounts in the Team Foundation Service Accounts are aloud to access the web services directly. By default the account used to install TFS is not added to this group.

In addition you will also be unable to add the account through the UI as editing this group directly is disables. It is meant to be used under the covers for Lab or Build accounts, but the TFS Integration Platform is not an out-of-the-box tool.

TFS Integration Tools - Issue: TFS WIT bypass-rule submission is enabled  

Figure: You can’t edit Team Foundation Service Accounts

This is a special group that does not allow you to populate it through the UI. You can however view it and all of the accounts that you use for your Build Agents, Build Controllers and other bits and bobs will all be in this list already.

You need to use the the command line TFS Integration Tools - Issue: TFS WIT bypass-rule submission is enabled

TFS Integration Tools - Issue: TFS WIT bypass-rule submission is enabled Solution

Use the tfssecurity.exe tool to update the Service Accounts Group and add the “TfsAdmin”.

TFS Integration Tools - Issue: TFS WIT bypass-rule submission is enabled  

Figure: Updating the TFS Security group

You use our old friend the command line. There is an application called TfsSecurity that will allow you to add an account directly to that group.

tfssecurity /g+ "Team Foundation Service Accounts" n:domainusername ALLOW /server:http://myserver:8080/tfs

Now you have that sorted you are ready to rock…

Did this help you?

Install and Configuration Troubleshooting Software Development System Configuration
Comments
LinkedIn WhatsApp Twitter Facebook Email

Related blog posts

No related videos found.

Connect with Martin Hinshelwood

If you've made it this far, it's worth connecting with our principal consultant and coach, Martin Hinshelwood, for a 30-minute 'ask me anything' call.

Our Happy Clients​

We partner with businesses across diverse industries, including finance, insurance, healthcare, pharmaceuticals, technology, engineering, transportation, hospitality, entertainment, legal, government, and military sectors.​

Capita Secure Information Solutions Ltd Logo
Emerson Process Management Logo
Cognizant Microsoft Business Group (MBG) Logo
ProgramUtvikling Logo
Lockheed Martin Logo
Schlumberger Logo
Brandes Investment Partners L.P. Logo
Freadom Logo
Graham & Brown Logo
Xceptor - Process and Data Automation Logo
Epic Games Logo
Slaughter and May Logo
Illumina Logo
Trayport Logo
Akaditi Logo
MacDonald Humfrey (Automation) Ltd. Logo
Lean SA Logo
ALS Life Sciences Logo
Nottingham County Council Logo
New Hampshire Supreme Court Logo
Washington Department of Transport Logo
Washington Department of Enterprise Services Logo
Department of Work and Pensions (UK) Logo
Ghana Police Service Logo
Kongsberg Maritime Logo
Boxit Document Solutions Logo
DFDS Logo
Graham & Brown Logo
Trayport Logo
MacDonald Humfrey (Automation) Ltd. Logo