473,383 Members | 1,859 Online
Bytes | Software Development & Data Engineering Community
Post Job

Home Posts Topics Members FAQ

Join Bytes to post your question to a community of 473,383 software developers and data experts.

LDAP Problem with firefox

CJM
I have a number of applications that use a particular technique to
authenticate users using IWA and LDAP.

These are for intranet application where the users all use IE6, however I'm
trying to debug some javascript code and I find that easier to do with FF.
However my applications that use this authentication technique have problems
when running through FF.

I get an 'error '80072020' authuser.asp, line 20', which point to an LDAP
call:

Sub AuthUser()
Set oADSysInfo = CreateObject("ADSystemInfo")
Set oCurrentUser = GetObject("LDAP://" & oADSysInfo.UserName)
'<==== error
etc...
End Sub

When I run this apps via FF I need to manually authenticate (ie type in
domain name\username & password) since true IWA is not supported. I assume
the fact that FF doesnt handle IWA is at the centre of the issue, but I
don't know exactly what the problem is, nor if/how I can solve it.

Any ideas?

Thanks

CJM

Aug 1 '06 #1
4 6149

"CJM" <cj*******@newsgroup.nospamwrote in message
news:%2****************@TK2MSFTNGP03.phx.gbl...
I have a number of applications that use a particular technique to
authenticate users using IWA and LDAP.

These are for intranet application where the users all use IE6, however
I'm
trying to debug some javascript code and I find that easier to do with FF.
However my applications that use this authentication technique have
problems
when running through FF.

I get an 'error '80072020' authuser.asp, line 20', which point to an LDAP
call:

Sub AuthUser()
Set oADSysInfo = CreateObject("ADSystemInfo")
Set oCurrentUser = GetObject("LDAP://" & oADSysInfo.UserName)
'<==== error
etc...
End Sub

When I run this apps via FF I need to manually authenticate (ie type in
domain name\username & password) since true IWA is not supported. I assume
the fact that FF doesnt handle IWA is at the centre of the issue, but I
don't know exactly what the problem is, nor if/how I can solve it.

Any ideas?
add the DNS name you are using to access the server to the following setting
in about:config on FF:-

network.automatic-ntlm-auth.trusted-uris

Now FF will automatically attempt NTML authentication with the server just
as IE does with things in the Local Intranet zone.

Thanks

CJM

Aug 1 '06 #2
CJM

"Anthony Jones" <An*@yadayadayada.comwrote in message
news:%2****************@TK2MSFTNGP03.phx.gbl...
>
>>

add the DNS name you are using to access the server to the following
setting
in about:config on FF:-

network.automatic-ntlm-auth.trusted-uris

Now FF will automatically attempt NTML authentication with the server just
as IE does with things in the Local Intranet zone.

Anthony,

Thanks for the response, but I'm afraid your suggestion didnt work (I get
the same error). Any further ideas?

Chris
Aug 1 '06 #3

"CJM" <cj*******@newsgroup.nospamwrote in message
news:eW**************@TK2MSFTNGP03.phx.gbl...
>
"Anthony Jones" <An*@yadayadayada.comwrote in message
news:%2****************@TK2MSFTNGP03.phx.gbl...
>
add the DNS name you are using to access the server to the following
setting
in about:config on FF:-

network.automatic-ntlm-auth.trusted-uris

Now FF will automatically attempt NTML authentication with the server
just
as IE does with things in the Local Intranet zone.

Anthony,

Thanks for the response, but I'm afraid your suggestion didnt work (I get
the same error). Any further ideas?

Chris
Have tried some response writes of the server variables AUTH_USER and
LOGON_USER just to confirm what user security token the request is running
under?

The page in question does not allow anonymous or other types of
authentication just IWA right?

Note that FF by default uses more connections per server than IE does. It
is connections that are authenticated so this could have a bearing.

It might be worth using Fiddler to compare the exchanges that IE makes with
the server with the ones FF makes.

Anthony.
Aug 1 '06 #4
"Anthony Jones" <An*@yadayadayada.comwrote in message
news:en**************@TK2MSFTNGP03.phx.gbl...
>
Have tried some response writes of the server variables AUTH_USER and
LOGON_USER just to confirm what user security token the request is running
under?

The page in question does not allow anonymous or other types of
authentication just IWA right?

Note that FF by default uses more connections per server than IE does. It
is connections that are authenticated so this could have a bearing.

It might be worth using Fiddler to compare the exchanges that IE makes
with
the server with the ones FF makes.

Anthony.

Fiddler (or Netmon) sounds like a good way to go with this.

If the server is set up for kerberos delegation, you might find that the
core problem is a difference in authentication headers between IE and FF. IE
will try Negotiate, I'm afraid I don't know much about FF.

NTLM authentication doesn't provide a delegable (eg, good for two hops)
credential, but Basic usually does (depending on the LogonMethod metabase
property) - you might consider stepping down to Basic to get FF working (and
use SSL to protect the credential transfer).

--
This posting is provided "AS IS" with no warranties, and confers no rights.

TristanK
http://blogs.technet.com/tristank/
--
Aug 2 '06 #5

This thread has been closed and replies have been disabled. Please start a new discussion.

Similar topics

5
by: dmcconkey | last post by:
Hi folks, I've been searching for a while and haven't found my specific question anywhere else. If this has already been asked, please accept my appologies and point me to the appropriate...
7
by: Amar | last post by:
I am trying to connect to my college LDAP directory using ASP.NET. This LDap does not have security as it returns only user demographic information. i do not need to bind with a username or...
1
by: Angel | last post by:
Hello all - I have a LDAP service running on a NT4 box (not a mbr of my AD domain), I'd like to extract the users/attributes from that LDAP service and populate my AD domain with those users and...
4
by: m96 | last post by:
hi, i'm trying to make a query to a ldap server (version v2 or v3 doen't matter) with c#. the query works just fine but the problem is that i can't read the custom attributes/fields, since .net...
4
by: Terry Miller | last post by:
I have DB2 V8.2 loaded on a Redhat Enterprise Linux version 3 (RHEL 3) box. RHEL is configured to talk to LDAP for authenticaton besides the local passwd file. I can verify this by executing an su...
5
by: Jed Parsons | last post by:
Hi, authenticates a user against our ldap server.: User types in name and password, and module sees if name and password check out right with the ldap server. I see that it's pretty...
3
by: Baren | last post by:
Hi! How to connect to LDAP Server using ASP.NET and VB.NET Thanks, Baren
3
by: TomikZ | last post by:
I'd like to get some user account properties using .asp script. When I try to use ADSI WINNT provider it works fine except that I apparently cannot access some properties such as...
0
by: Sells, Fred | last post by:
I'm running python 2.5 (or 2.4) in an XP environment. I downloaded and installed the .dll's from OpenLDAP-2.4.8+OpenSSL-0.9.8g-Win32.zip and copied the .dll's in c:/windows/system32 as instructed...
0
by: Faith0G | last post by:
I am starting a new it consulting business and it's been a while since I setup a new website. Is wordpress still the best web based software for hosting a 5 page website? The webpages will be...
0
isladogs
by: isladogs | last post by:
The next Access Europe User Group meeting will be on Wednesday 3 Apr 2024 starting at 18:00 UK time (6PM UTC+1) and finishing by 19:30 (7.30PM). In this session, we are pleased to welcome former...
0
by: ryjfgjl | last post by:
In our work, we often need to import Excel data into databases (such as MySQL, SQL Server, Oracle) for data analysis and processing. Usually, we use database tools like Navicat or the Excel import...
0
by: taylorcarr | last post by:
A Canon printer is a smart device known for being advanced, efficient, and reliable. It is designed for home, office, and hybrid workspace use and can also be used for a variety of purposes. However,...
0
by: Charles Arthur | last post by:
How do i turn on java script on a villaon, callus and itel keypad mobile phone
0
by: ryjfgjl | last post by:
If we have dozens or hundreds of excel to import into the database, if we use the excel import function provided by database editors such as navicat, it will be extremely tedious and time-consuming...
0
by: emmanuelkatto | last post by:
Hi All, I am Emmanuel katto from Uganda. I want to ask what challenges you've faced while migrating a website to cloud. Please let me know. Thanks! Emmanuel
1
by: nemocccc | last post by:
hello, everyone, I want to develop a software for my android phone for daily needs, any suggestions?
1
by: Sonnysonu | last post by:
This is the data of csv file 1 2 3 1 2 3 1 2 3 1 2 3 2 3 2 3 3 the lengths should be different i have to store the data by column-wise with in the specific length. suppose the i have to...

By using Bytes.com and it's services, you agree to our Privacy Policy and Terms of Use.

To disable or enable advertisements and analytics tracking please visit the manage ads & tracking page.