During the AD account creation/modification, for some instances we are getting below error. Note that IQ Service runs on TLS Port only. Refer the below screenshot.
[“Error(s) reported back from the IQService - Failed to execute native before provisioning script.ScriptExecutor service is not available., One of the possible reasons for internally disabling the ScriptExecutor service is presence of non-TLS port configuration for the IQService”]
Note the After Create Script is getting executed for some instances and for some its not. What could be the issue?
Nope, the IQ Service Servers where already on TLS Ports only when the deployment happened. So, if you see the screenshot, for primary IQ Service, we only have TLS port configured and for Secondary IQ Service, we have both TLS and Non-TLS configured as per below screenshot. Hence, do you think we have to remove the non-tls port configuration from Secondary instance as well of IQ Service?
We are also struggling with similar issue. Yesterday our IQService got updated automatically and since then we are observing this issue. Any action items or takeaways from your experience that we should follow?
If your earlier IQ Service was older version than May-2025, then, new version of IQ Service which is (May - 2025) will only support the TLS connections. So, you can use this command to remove the NON-TLS port and just operate on the TLS port.
Hence, following are the action.
Enable TLS Port
Use CA signed Certificates for the same.
Once the TLS port is Enabled.
Disable the Non TLS Port.
Below is command for disabling the non TLS Port
IQService.exe -p <zero or negative port number>
In order to enable the TLS, follow the below article.
Hi Rohit, issue was resolved? I am dealing with it now.
I disabled non-tls port using -p 0, -p -1 and also deleting the port entry from registry. No matter what I do, iqservice always starts listening on 5050..
