Monitor unlimited number of servers
Filter log events
Create email and web-based reports

Direct access to Microsoft articles
Customized keywords for major search engines
Access to premium content

Event ID: 3 Source: System.ServiceModel3.0.0.0

Level
Description
WebHost failed to process a request.
Sender Information:
The exception message is: Security settings for this service require "Anonymous" Authentication but it is not enabled for the IIS application that hosts this service ---> System.NotSupportedException: Security settings for this service require "Anonymous" Authentication but it is not enabled for the IIS application that hosts this service.
Comments
 
Exception: System.Web.HttpException: The service '<ourEndpoint>.svc' does not exist. -  We experienced the this error on our Client (web server). Event would flood the logs every second or so. The URL renders from the client and from the server via a browser, oddly enough, the error would flood the logs even when we had all IIS worker processes shut down.

We have yet to narrow down the exact cause of this, however, stopping the default application pool immediately stopped the errors. We are investigating if this is potentially a load balancer incorrectly performing a health check at the wrong layer.
Exception: Exception: System.ServiceModel.ServiceActivationException: The service '/Common/GetStringResourceCollection.svc' cannot be activated due to an exception during compilation.  The exception message is: This collection already contains an address with scheme http.  There can be at most one address per scheme in this collection. - See EV100345 (WCF Error: This collection already contains an address with scheme http) and EV100346 (Error accessing a WCF service) for some solutions for this problem.
This event is recorded in various conditions, the specifics being described in the actual "Sender information" information listed in the event. Each have different causes and obviously require different troubleshooting steps.

Sender information: "System.ServiceModel.ServiceHostingEnvironment+HostingManager/27717712
Exception: System.ServiceModel.ServiceActivationException: The service '/EWS/exchange.asmx' cannot be activated due to an exception during compilation. The exception message is: Could not find a base address that matches scheme http for the endpoint with binding CustomBinding." - EV100221 provides details about a situation when this event may be recorded depending on how the 'Require SSL' option is configured in IIS.
Sender information: System.ServiceModel.ServiceHostingEnvironment+HostingManager/42194754   System.ServiceModel.ServiceActivationException: The service /Autodiscover/Autodiscover.xml' cannot be activated due to an exception during compilation. The exception message is: Could not find a base address that matches scheme http for the endpoint with binding CustomBinding" - According to a support forum, this was fixed by installing the hotfix rollup available for Windows Communication Foundation in the .NET Framework 3.5 SP1 for Windows 7 and Windows Server 2008 R2: ME981002.

Sender information: System.ServiceModel.ServiceHostingEnvironment+HostingManager/30542218
Exception: System.ServiceModel.ServiceActivationException: The service '/EWS/Exchange.asmx' cannot be activated due to an exception during compilation.  The exception message is: A binding instance has already been associated to listen URI 'http://exchange2010.nameremove.co.uk/EWS/Exchange.asmx'. If two endpoints want to share the same ListenUri, they must also share the same binding object instance." - See EV100222 for a discussion thread about this issue (it includes the fix).

Windows Event Log Analysis Splunk App

Build a great reporting interface using Splunk, one of the leaders in the Security Information and Event Management (SIEM) field, linking the collected Windows events to www.eventid.net.

Read more...

 

Cisco ASA Log Analyzer Splunk App

Obtain enhanced visibility into Cisco ASA firewall logs using the free Firegen for Cisco ASA Splunk App. Take advantage of dashboards built to optimize the threat analysis process.

Read more...