I am using ADFS ,Active Directory and asp.net based relying party application.
In my active directory structure there are two OU (customer and CustomerSupport). I am creating a user in customer OU through C# code and using UPN field as user logon name. And Creating same UserId from backend in customerSupport OU.
Now I am using below code in my relying party application for retrieving the user from OU’s.
Expand|Select|Wrap|Line Numbers
- public static string GetADPath(string userType)
- {
- if (_logger.IsDebugEnabled)
- _logger.Debug("ADHelper:Enter GetADPath");
- // Local variables
- string adPath = string.Empty;
- try
- {
- if (userType.Equals(Constants.UserType.Customer))
- adPath = Utility.GetConfigSetting(Constants.AppSettings.CustomersOUPath);
- else if (userType.Equals(Constants.UserType.CustomerSupport))
- adPath = Utility.GetConfigSetting(Constants.AppSettings.CustomersSupportOUPath);
- if (_logger.IsDebugEnabled)
- _logger.Debug("ADHelper:Exit GetADPath");
- return adPath;
- }
- catch (ApplicationException appex)
- {
- if (_logger.IsErrorEnabled)
- _logger.Error("ADHelper:Exception occurred in GetADPath. Message: ", appex);
- throw appex;
- }
- catch (Exception ex)
- {
- if (_logger.IsErrorEnabled)
- _logger.Error("ADHelper:Exception occurred in GetADPath. Message: ", ex);
- throw ex;
- }
- }
But each time my application check Customer OU’s user (normal user) and user can login other application as normal user.
When I changed the password of CustomerSupport OU user’s then it’s throw “ invalid Id password error”.And user never login in the Relying Party application.
Please any one can suggest how can I handle this situation.
Thanks in Advance.