I appear to be having a problem similar to Neil as posted at http://msdn.microsoft.com/newsgroups...xp=&sloc=en-us
I thought my problem was solved when I changed the bind statement to use a
specific username/password like:
DirectoryEntry entry = new DirectoryEntry( _path,"test\\te stAuth","test") ;
And it did work without any reported problems for over 3 weeks. Then I
received the "Failed to Bind" error message and each of the 4 asp.net apps
using active directory binding code (all use separate but exact copies of the
LDAP code) failed with this error. A restart of the box fixed the problem
(restarting IIS did not). Does anyone have any ideas? I have been unable to
find detailed info about caching/reconnecting to AD/mulitple apps connecting
to AD (are connections cached with security contexts), etc? And help would
be greatly appreciated!
--
Marshall 3 2480
I meant 'Any help would be appreciated', not 'And..'. Sorry.
Also, if it helps, I'm on W2k Server with IIS 5 running .net 1.1. I have
not been able to recreate the problem either.
"Marshall" wrote: I appear to be having a problem similar to Neil as posted at : http://msdn.microsoft.com/newsgroups...xp=&sloc=en-us
I thought my problem was solved when I changed the bind statement to use a specific username/password like: DirectoryEntry entry = new DirectoryEntry( _path,"test\\te stAuth","test") ;
And it did work without any reported problems for over 3 weeks. Then I received the "Failed to Bind" error message and each of the 4 asp.net apps using active directory binding code (all use separate but exact copies of the LDAP code) failed with this error. A restart of the box fixed the problem (restarting IIS did not). Does anyone have any ideas? I have been unable to find detailed info about caching/reconnecting to AD/mulitple apps connecting to AD (are connections cached with security contexts), etc? And help would be greatly appreciated!
-- Marshall
Marshall,
I'm probably not much help, considering I was trying to help Neil in the
link you provided. Have you looked through your event logs? Are there any
event that denote failed or slow connections? Did any Administrators change
any of the authentication schemes/updated group policy? Can you log in with
the specified account, fire up dsa.msc, do you have permissions to view the
objects you are trying to bind to? Can up download/run gpresults? Do any of
the settings look like they could conflict with access (secure channel,
etc.). Can you answer the same questions that I gave in Neil's post?
The more info you post the better your chances of an answer.
Jared
"Marshall" <Ma******@discu ssions.microsof t.com> wrote in message
news:74******** *************** ***********@mic rosoft.com... I meant 'Any help would be appreciated', not 'And..'. Sorry.
Also, if it helps, I'm on W2k Server with IIS 5 running .net 1.1. I have not been able to recreate the problem either.
"Marshall" wrote:
I appear to be having a problem similar to Neil as posted at : http://msdn.microsoft.com/newsgroups...xp=&sloc=en-us
I thought my problem was solved when I changed the bind statement to use a specific username/password like: DirectoryEntry entry = new DirectoryEntry( _path,"test\\te stAuth","test") ;
And it did work without any reported problems for over 3 weeks. Then I received the "Failed to Bind" error message and each of the 4 asp.net apps using active directory binding code (all use separate but exact copies of the LDAP code) failed with this error. A restart of the box fixed the problem (restarting IIS did not). Does anyone have any ideas? I have been unable to find detailed info about caching/reconnecting to AD/mulitple apps connecting to AD (are connections cached with security contexts), etc? And help would be greatly appreciated!
-- Marshall
Thanks Jared- to answer some of your questions:
-event logs show identical log entries (in the security log) for successful
as well as failed page requests
-no AD changes were made
-the account specified in the bind statement does have access to the objects
(code ran on a different box successfully, and was working on the production
box until something happened)
I am currently working with someone at MS to see if they can give any more
insight. What we are looking at now is how/whether the impersonation context
affects the bind to AD (is a process/thread security context stored with the
AD bind operation; is anything cached that could cause an access denied by
less privelaged impersonation accounts). I'll be sure and update if
something comes up.
"Jared" wrote: Marshall, I'm probably not much help, considering I was trying to help Neil in the link you provided. Have you looked through your event logs? Are there any event that denote failed or slow connections? Did any Administrators change any of the authentication schemes/updated group policy? Can you log in with the specified account, fire up dsa.msc, do you have permissions to view the objects you are trying to bind to? Can up download/run gpresults? Do any of the settings look like they could conflict with access (secure channel, etc.). Can you answer the same questions that I gave in Neil's post? The more info you post the better your chances of an answer. Jared
"Marshall" <Ma******@discu ssions.microsof t.com> wrote in message news:74******** *************** ***********@mic rosoft.com...I meant 'Any help would be appreciated', not 'And..'. Sorry.
Also, if it helps, I'm on W2k Server with IIS 5 running .net 1.1. I have not been able to recreate the problem either.
"Marshall" wrote:
I appear to be having a problem similar to Neil as posted at : http://msdn.microsoft.com/newsgroups...xp=&sloc=en-us
I thought my problem was solved when I changed the bind statement to use a specific username/password like: DirectoryEntry entry = new DirectoryEntry( _path,"test\\te stAuth","test") ;
And it did work without any reported problems for over 3 weeks. Then I received the "Failed to Bind" error message and each of the 4 asp.net apps using active directory binding code (all use separate but exact copies of the LDAP code) failed with this error. A restart of the box fixed the problem (restarting IIS did not). Does anyone have any ideas? I have been unable to find detailed info about caching/reconnecting to AD/mulitple apps connecting to AD (are connections cached with security contexts), etc? And help would be greatly appreciated!
-- Marshall This thread has been closed and replies have been disabled. Please start a new discussion. Similar topics |
by: Victor Lokhmatov |
last post by:
Hello Everyone,
My company has asked me to put a company directory on our intranet site
and I'm trying to use php to extract the users from our active
directory server. I've got everything working, however, when the list
of users is shown in the output, it seems to display the users in the
order their accounts were created, with...
|
by: Dirk Hagemann |
last post by:
Hi!
I asked here a few weeks ago the same question but the answer of Tim
Golden didn't really help yet.
I'd like to know how to set up a query for all computer-accounts in a
special part of Active Directory by using LDAP.
Example:
all computers with a name like "ABC*" at "..., ou=Production,
|
by: Amar |
last post by:
I am trying to connect to my college LDAP directory using ASP.NET. This LDap
does not have security as it returns only user demographic information.
i do not need to bind with a username or credentials.
What i am trying to do is, i am trying to look up all the information for
the user with user id 'testuser'. The following is the Vb.net code...
|
by: mrwoopey |
last post by:
Hi,
I am using the example "Authenticate against the Active Directory by
Using Forms Authentication and Visual Basic .NET":
http://support.microsoft.com/default.aspx?scid=KB;EN-US;326340
But I am having a problem figuring out the LDAP://
The LDAP:// that I pass looks like this (i substitued generic the
|
by: Andrew |
last post by:
Hey all,
Working on revamping our Intranet here and making use of the LDPA, Active
Directory, Directory Services, etc. that .Net provides. I am still fairly
new on this subject, so the problem I have run into I am not sure how to
fix, and really not sure what is causing it.
Here's what is going on (test server - Windows 2003 Server):
I...
| |
by: Sync Walantaji |
last post by:
Hi,
I would like to write a asp.net winform program to authenticate users
on Active Directory.
Can I do this with asp.net if the IIS server is not part of the Active
directory domain?
Is there a working example link that you can point me to?
Thanks
|
by: Neil via .NET 247 |
last post by:
I have some code vb.net winforms, that works fine most of the time but stops working occasionally such as right now.
The code is this
Dim objDE As New DirectoryEntry("LDAP://" & DomainName)
Dim objDS As DirectorySearcher = New DirectorySearcher(objDE)
Dim results As SearchResultCollection
Try
objDS.Filter = "(objectClass=user)"
'Find all...
|
by: P Webster |
last post by:
We recently moved a web site that validated user credentials in Active
Directory from IIS 5.1 to IIS 6, and the validation code no longer works.
The web.config file is set to Windows authentication because all we do is
verify the user on the login form so we can redirect them to the appropriate
page based on their group.
The code to...
|
by: Erick Perez - Quadrian Enterprises, S.A. |
last post by:
Hi,
I have a MS Windows AD domain, and have one OU with more tan 1000 users
objects. When I try to read it, I hit the 1000 limit of AD while returning
objects, so I'm asking for advice as to how to read them.
Here is my actual code, it is not the cleanest as I am learning python.
Suggestions are welcomed :)
Runnig this script on RedHat 5.x...
|
by: marktang |
last post by:
ONU (Optical Network Unit) is one of the key components for providing high-speed Internet services. Its primary function is to act as an endpoint device located at the user's premises. However, people are often confused as to whether an ONU can Work As a Router. In this blog post, we’ll explore What is ONU, What Is Router, ONU & Router’s main...
|
by: Hystou |
last post by:
Most computers default to English, but sometimes we require a different language, especially when relocating. Forgot to request a specific language before your computer shipped? No problem! You can effortlessly switch the default language on Windows 10 without reinstalling. I'll walk you through it.
First, let's disable language...
| |
by: jinu1996 |
last post by:
In today's digital age, having a compelling online presence is paramount for businesses aiming to thrive in a competitive landscape. At the heart of this digital strategy lies an intricately woven tapestry of website design and digital marketing. It's not merely about having a website; it's about crafting an immersive digital experience that...
|
by: Hystou |
last post by:
Overview:
Windows 11 and 10 have less user interface control over operating system update behaviour than previous versions of Windows. In Windows 11 and 10, there is no way to turn off the Windows Update option using the Control Panel or Settings app; it automatically checks for updates and installs any it finds, whether you like it or not. For...
|
by: tracyyun |
last post by:
Dear forum friends,
With the development of smart home technology, a variety of wireless communication protocols have appeared on the market, such as Zigbee, Z-Wave, Wi-Fi, Bluetooth, etc. Each protocol has its own unique characteristics and advantages, but as a user who is planning to build a smart home system, I am a bit confused by the...
|
by: agi2029 |
last post by:
Let's talk about the concept of autonomous AI software engineers and no-code agents. These AIs are designed to manage the entire lifecycle of a software development project—planning, coding, testing, and deployment—without human intervention. Imagine an AI that can take a project description, break it down, write the code, debug it, and then...
|
by: TSSRALBI |
last post by:
Hello
I'm a network technician in training and I need your help.
I am currently learning how to create and manage the different types of VPNs and I have a question about LAN-to-LAN VPNs.
The last exercise I practiced was to create a LAN-to-LAN VPN between two Pfsense firewalls, by using IPSEC protocols.
I succeeded, with both firewalls in...
|
by: muto222 |
last post by:
How can i add a mobile payment intergratation into php mysql website.
| |
by: bsmnconsultancy |
last post by:
In today's digital era, a well-designed website is crucial for businesses looking to succeed. Whether you're a small business owner or a large corporation in Toronto, having a strong online presence can significantly impact your brand's success. BSMN Consultancy, a leader in Website Development in Toronto offers valuable insights into creating...
| |