Hi everyone,
I had this strange problem. We are using web services for our entreprise
applications. We are using IIS as the host for our webservices and IIS is
configured to use integrated authentication.
The problem arise when the user's password changes and he has not done it at
logon time. So it seams that at that specific time, the transaction goes to
IIS and bounces back with an http status 401: Unauthorized.
Since we cannot force the user to change his password at logon time on
WinXP, is there a way to protect ourself in making a web service transaction
in order for it not to return an http 401: unautorized?
Can someone explain how this process is working?
Any snippet of code supporting the solution?
Thank's for any help.
11  1237 
"Luc" <Lu*@discussions.microsoft.comwrote in message
news:FE**********************************@microsof t.com...
Hi everyone,
<snip>
Since we cannot force the user to change his password at logon time on
WinXP, is there a way to protect ourself in making a web service
transaction
in order for it not to return an http 401: unautorized?
???
Yes you can. When it expires they should not be allowed to log on. That
should stop them from executing the web service.
"Luc" <Lu*@discussions.microsoft.comwrote in message
news:FE**********************************@microsof t.com...
Hi everyone,
<snip>
The problem arise when the user's password changes and he has not done it
at
logon time. So it seams that at that specific time, the transaction goes
to
IIS and bounces back with an http status 401: Unauthorized.
Oh, you mean when they change it once they are logged in and just use the
Ctrl-Alt-Del window to change their password?
That does not work when accessing a web service?
Hmmmm
Luc,
Do you know that there are special active newsgroups for webserver
questions?
Cor
"Luc" <Lu*@discussions.microsoft.comschreef in bericht
news:FE**********************************@microsof t.com...
Hi everyone,
I had this strange problem. We are using web services for our entreprise
applications. We are using IIS as the host for our webservices and IIS is
configured to use integrated authentication.
The problem arise when the user's password changes and he has not done it
at
logon time. So it seams that at that specific time, the transaction goes
to
IIS and bounces back with an http status 401: Unauthorized.
Since we cannot force the user to change his password at logon time on
WinXP, is there a way to protect ourself in making a web service
transaction
in order for it not to return an http 401: unautorized?
Can someone explain how this process is working?
Any snippet of code supporting the solution?
Thank's for any help.
Yeah thank's. Have already done that but no traffic on this discussion
group. Had no answer there but as you can see, there is here.
"Cor Ligthert [MVP]" wrote:
Luc,
Do you know that there are special active newsgroups for webserver
questions?
Cor
"Luc" <Lu*@discussions.microsoft.comschreef in bericht
news:FE**********************************@microsof t.com...
Hi everyone,
I had this strange problem. We are using web services for our entreprise
applications. We are using IIS as the host for our webservices and IIS is
configured to use integrated authentication.
The problem arise when the user's password changes and he has not done it
at
logon time. So it seams that at that specific time, the transaction goes
to
IIS and bounces back with an http status 401: Unauthorized.
Since we cannot force the user to change his password at logon time on
WinXP, is there a way to protect ourself in making a web service
transaction
in order for it not to return an http 401: unautorized?
Can someone explain how this process is working?
Any snippet of code supporting the solution?
Thank's for any help.
Thank's. Is there a policy that exist on AD that specifies that at the last
day, it is not possible to log on without changing the password? If so?
where?
"Ray Cassick (Home)" wrote:
>
"Luc" <Lu*@discussions.microsoft.comwrote in message
news:FE**********************************@microsof t.com...
Hi everyone,
<snip>
Since we cannot force the user to change his password at logon time on
WinXP, is there a way to protect ourself in making a web service
transaction
in order for it not to return an http 401: unautorized?
???
Yes you can. When it expires they should not be allowed to log on. That
should stop them from executing the web service.
No, but once the password does actually expire they are not allowed to log
on until they get a new one :)
I would think that perhaps you could write some VB script code to force
someone to change their password, or maybe you would have to hackup a custom
GINA to do it.
"Luc" <Lu*@discussions.microsoft.comwrote in message
news:14**********************************@microsof t.com...
Thank's. Is there a policy that exist on AD that specifies that at the
last
day, it is not possible to log on without changing the password? If so?
where?
"Ray Cassick (Home)" wrote:
>>
"Luc" <Lu*@discussions.microsoft.comwrote in message
news:FE**********************************@microso ft.com...
Hi everyone,
<snip>
Since we cannot force the user to change his password at logon time on
WinXP, is there a way to protect ourself in making a web service
transaction
in order for it not to return an http 401: unautorized?
???
Yes you can. When it expires they should not be allowed to log on. That
should stop them from executing the web service.
Hmm actually I should look into this more because where I work there is a
warning box that pops up telling people that their password is about to
expire and asking them if they want to change it. Should not be too hard to
hook into that and force it.
"Luc" <Lu*@discussions.microsoft.comwrote in message
news:14**********************************@microsof t.com...
Thank's. Is there a policy that exist on AD that specifies that at the
last
day, it is not possible to log on without changing the password? If so?
where?
"Ray Cassick (Home)" wrote:
>>
"Luc" <Lu*@discussions.microsoft.comwrote in message
news:FE**********************************@microso ft.com...
Hi everyone,
<snip>
Since we cannot force the user to change his password at logon time on
WinXP, is there a way to protect ourself in making a web service
transaction
in order for it not to return an http 401: unautorized?
???
Yes you can. When it expires they should not be allowed to log on. That
should stop them from executing the web service.
Well that's exactly what I want. When this popup is displayed on the last
day, not to allow the person to be able to log on until he make a passsword
change. That's exactly the idea.
If there is a way to do it, I would greatly appreciate.
Thank's
"Ray Cassick (Home)" wrote:
Hmm actually I should look into this more because where I work there is a
warning box that pops up telling people that their password is about to
expire and asking them if they want to change it. Should not be too hard to
hook into that and force it.
"Luc" <Lu*@discussions.microsoft.comwrote in message
news:14**********************************@microsof t.com...
Thank's. Is there a policy that exist on AD that specifies that at the
last
day, it is not possible to log on without changing the password? If so?
where?
"Ray Cassick (Home)" wrote:
>
"Luc" <Lu*@discussions.microsoft.comwrote in message
news:FE**********************************@microsof t.com...
Hi everyone,
<snip>
Since we cannot force the user to change his password at logon time on
WinXP, is there a way to protect ourself in making a web service
transaction
in order for it not to return an http 401: unautorized?
???
Yes you can. When it expires they should not be allowed to log on. That
should stop them from executing the web service.
Maybe this will help point to a way. http://www.jsifaq.com/SF/Tips/Tip.aspx?id=4755
Think about this in a logoff script that checks (somehow) to see if their
password will expire tomorrow and if it does set the bit that forces them to
change their password at the next logon.
Here is another tool (Amod) that seems like it might help. http://www.joeware.net/win/free/tools/admod.htm
"Luc" <Lu*@discussions.microsoft.comwrote in message
news:22**********************************@microsof t.com...
Well that's exactly what I want. When this popup is displayed on the last
day, not to allow the person to be able to log on until he make a
passsword
change. That's exactly the idea.
If there is a way to do it, I would greatly appreciate.
Thank's
"Ray Cassick (Home)" wrote:
>Hmm actually I should look into this more because where I work there is a
warning box that pops up telling people that their password is about to
expire and asking them if they want to change it. Should not be too hard
to
hook into that and force it.
"Luc" <Lu*@discussions.microsoft.comwrote in message
news:14**********************************@microso ft.com...
Thank's. Is there a policy that exist on AD that specifies that at the
last
day, it is not possible to log on without changing the password? If
so?
where?
"Ray Cassick (Home)" wrote:
"Luc" <Lu*@discussions.microsoft.comwrote in message
news:FE**********************************@microso ft.com...
Hi everyone,
<snip>
Since we cannot force the user to change his password at logon time
on
WinXP, is there a way to protect ourself in making a web service
transaction
in order for it not to return an http 401: unautorized?
???
Yes you can. When it expires they should not be allowed to log on.
That
should stop them from executing the web service.
Thank's for the answer. This will probably help.
"Ray Cassick (Home)" wrote:
Maybe this will help point to a way.
http://www.jsifaq.com/SF/Tips/Tip.aspx?id=4755
Think about this in a logoff script that checks (somehow) to see if their
password will expire tomorrow and if it does set the bit that forces them to
change their password at the next logon.
Here is another tool (Amod) that seems like it might help.
http://www.joeware.net/win/free/tools/admod.htm
"Luc" <Lu*@discussions.microsoft.comwrote in message
news:22**********************************@microsof t.com...
Well that's exactly what I want. When this popup is displayed on the last
day, not to allow the person to be able to log on until he make a
passsword
change. That's exactly the idea.
If there is a way to do it, I would greatly appreciate.
Thank's
"Ray Cassick (Home)" wrote:
Hmm actually I should look into this more because where I work there is a
warning box that pops up telling people that their password is about to
expire and asking them if they want to change it. Should not be too hard
to
hook into that and force it.
"Luc" <Lu*@discussions.microsoft.comwrote in message
news:14**********************************@microsof t.com...
Thank's. Is there a policy that exist on AD that specifies that at the
last
day, it is not possible to log on without changing the password? If
so?
where?
"Ray Cassick (Home)" wrote:
"Luc" <Lu*@discussions.microsoft.comwrote in message
news:FE**********************************@microsof t.com...
Hi everyone,
<snip>
Since we cannot force the user to change his password at logon time
on
WinXP, is there a way to protect ourself in making a web service
transaction
in order for it not to return an http 401: unautorized?
???
Yes you can. When it expires they should not be allowed to log on.
That
should stop them from executing the web service.
Maybe I'm missing the point entirely but...in your webservice you can
use the VB.NET code at the following location: http://support.microsoft.com/default...b;en-us;323750
to inquire as to the expiration date of the users' password. From there
you can log to the event log that you prommpted the user to change the
password & any other events that may be of interest (like changing the
password).
There are methods available in Active Directory for you to effect the
change to the password from your web application.
*** Sent via Developersdex http://www.developersdex.com *** This thread has been closed and replies have been disabled. Please start a new discussion. Similar topics
by: Liza |
last post by:
Hello,
can you guys help me out here....?
this is part of my masters degree and hence is very important to
me..... my supervisor doesn't seem to be too interested in helping me
and infact is...
|
by: Richard Steele |
last post by:
I have created a WinForm application that needs to be run as a windows
service (the PC is inaccesible by any user) i have successfully installed the
application as a windows service. When i start...
|
by: Tom Simpson |
last post by:
I have set up a Windows service in VB.NET, and created a
'Service Manager' Windows Forms app that can 'get'
information from that service. The service consists of the
basic service 'framework'...
|
by: John A |
last post by:
I have a Web Service that I am reponsible for that we use for data
integration purposes. Recently I have been tasked with sending some of this
data to a third party. Because they need to receive...
|
by: UJ |
last post by:
Is there any way for a windows service to start a windows program ? I have a
service that will need to restart a windows app if it needs to.
TIA - Jeff.
|
by: deko |
last post by:
When to use a privileged user thread rather than a windows service?
That's the question raised in a previous post . It was suggested that if the service needs to interact
with a WinForms app...
|
by: Tom |
last post by:
Using multiple System.Timers.Timer objects in a Windows Service for
performing multi-thread activities in a periodic fashion. Timers are
AutoReset=false, to only have a single timer execution...
|
by: Joseph Geretz |
last post by:
I have the following class which I am serializing and passing back and forth
between my Web Service application and the client.
public class Token : SoapHeader
{
public string SID;
public...
|
by: dm3281 |
last post by:
I'm really starting to hate writing services -- or trying to, anyway.
Why do I need to rename my project to the service name?
Why do I need to set the "ServiceName" property to my service name?...
|
by: =?Utf-8?B?bXVyYWRqYW1lcw==?= |
last post by:
Yes, sorry I tried to make it clear in the original question that I want to
get the user token of the service - ie. the account the service is running
under. I know services don't have user tokens...
|
by: Hystou |
last post by:
There are some requirements for setting up RAID:
1. The motherboard and BIOS support RAID configuration.
2. The motherboard has 2 or more available SATA protocol SSD/HDD slots (including MSATA, M.2...
|
by: Oralloy |
last post by:
Hello folks,
I am unable to find appropriate documentation on the type promotion of bit-fields when using the generalised comparison operator "<=>".
The problem is that using the GNU compilers,...
|
by: Hystou |
last post by:
Overview:
Windows 11 and 10 have less user interface control over operating system update behaviour than previous versions of Windows. In Windows 11 and 10, there is no way to turn off the Windows...
|
by: tracyyun |
last post by:
Dear forum friends,
With the development of smart home technology, a variety of wireless communication protocols have appeared on the market, such as Zigbee, Z-Wave, Wi-Fi, Bluetooth, etc. Each...
|
by: agi2029 |
last post by:
Let's talk about the concept of autonomous AI software engineers and no-code agents. These AIs are designed to manage the entire lifecycle of a software development project—planning, coding, testing,...
|
by: isladogs |
last post by:
The next Access Europe User Group meeting will be on Wednesday 1 May 2024 starting at 18:00 UK time (6PM UTC+1) and finishing by 19:30 (7.30PM).
In this session, we are pleased to welcome a new...
|
by: TSSRALBI |
last post by:
Hello
I'm a network technician in training and I need your help.
I am currently learning how to create and manage the different types of VPNs and I have a question about LAN-to-LAN VPNs.
The...
|
by: 6302768590 |
last post by:
Hai team
i want code for transfer the data from one system to another through IP address by using C# our system has to for every 5mins then we have to update the data what the data is updated ...
|
by: muto222 |
last post by:
How can i add a mobile payment intergratation into php mysql website.
| |
