Configuring BAM portal on BizTalk 2009 “This access control list is not in canonical form and therefore cannot be modified”

Trying to configure BAM Portal on BizTalk 2009 i have got this error  “This access control list is not in canonical form and therefore cannot be modified” 

????

WTH is this? :-o

Reading the error log, and searching for the word “error”     :-) found the following:

[9:44:05 PM Error ConfigHelper] h:\bt\890\private\source\common\prod\btscommon\configwizard\confighelper\service.cpp(729): FAILED hr = 80070421

[9:44:05 PM Warning ConfigHelper] The account name is invalid or does not exist, or the password is invalid for the account name specified.
[9:44:06 PM Warning ConfigHelper]     Failed to validate service credentials for account: %1

 

[9:46:16 PM Error BAMPortal] Error configuring
Error configuring BAM Query Web Service user domain\username(Microsoft.BizTalk.Bam.CfgExtHelper.PortalHelper)
This access control list is not in canonical form and therefore cannot be modified. (mscorlib)

 

How To Fix it

Since the initial prompted error is relatively confusing, the way to solve it is really straightforward, just grant access to  BizTalk service account  to the BAM folder under “Prog Files\BizTalk Server 2009”

You can check what is the correct account by looking at the entry:

[9:46:16 PM Error BAMPortal] Error configuring

within the error log file