Hi, we have an issue with Windows Server 2008 when using it as a domain controller: We have an application that uses the local Windows database for keeping the user accounts. When a user inserts the username Padmin in all systems the login works perfectly. But in Windows Server 2008 (DC) the user is not found. The application doesn't a...
I have this code and am using VS 2005 - works nicely - however, if I try it using VS 2008, doesn't work. Any ideas? webconfig: <connectionStrings> <add name="ADService" connectionString="LDAP://kingletvm.creighton.edu/DC=blue,DC=jays,DC=creighton,DC=edu" /> </connectionStrings> <system.web> <membership defaultProv...
An application I'm modifying has a Web Service, and one of the web methods on that web methods is used to authenticate a user against active directory. So the current code called by the AuthenticateUser web method looks something like this: string domainAndUsername = aDomain + @"\\" + username; string ldsPath = buildLdsPath(searchBase)...
Is it possible to query a list of IP addresses (or machine names) of domain computers that a domain user is currently logged into? The question "Getting logged on user’s name with or without domain in Windows" comes close, only I want to find the opposite. I ask about the possibility due to my lack of knowledge concerning the internal...
Is there a ldap query that will return or list user objects that have been removed from the active-directory system? Must you track all the user objects currently in the active-directory, and maintain a "last seen" stamp in order to tell when a user object has been removed from the active-directory? ...
I have an ASP.Net application (on Win2K) that is using Windows authentication and impersonation. We are using the following code to change password: Dim objDE As DirectoryEntry '... objDE.Invoke("ChangePassword", txtOldPassword, txtNewPassword) This code works great, except it does not lock the account if there were multiple unsucces...
I am trying develop an application (C#) to query an LDAP server. I don't know the actual server named to query - is there a way to find out using standard windows tools or something in .net? I've also heard rumors that having the server name (ldap://server/) is not always needed as long as I've got dc=domain,dc=com in my query string, ...
The Sys Admin guy is writing some common housekeeping Power Shell scripts. Predominantly for AD management (updating exchange details, moving people around security groups etc.) I'd like to use these scripts from C# (I intend to write it as a library, consumed by a web site). I've seen this code project article which looks interesting ...
I'm using Sharepoint in combination with Nintex. The possibility to query the ldap is available via Nintex, and basic querying actions work well! Now I am trying to get an array or collection of the groups the user is member of.. i've tried (&(objectCategory=group)(member=cn={itemproperty:ldapName},dc=MyDomain)) Unfortunately this doe...
Hi! I need to do that with tomcat and a J2EE Web App. I don't want a pop up window asking the user for credentials. I must use the user logged on Windows to authenticate him on my web app. How can I do it? Thanks! ...
In my asp.net mvc app i am using the activedirectorymembershipprovider. In the active directory i have created a couple of roles (groups) similar to, for simplicity of this example, "normal" and "administrator". I am currently querying whether user is in role by getting the IPrincipal of the httpcontext and calling User.IsInRole(nameOfR...
After resetting a users password in Active Directory, if the user tries to log in using their old password, the following code validates as True: Dim up As UserPrincipal = GetAdUser(objContext, arg_strBA, arg_strUsername) If up IsNot Nothing Then Dim valid As Boolean = up.Context.ValidateCredentials( up.UserPrincipalName, arg_...
I'm thinking about re-writing a web app in Django or Rails and wondering about authenticating against AD. Is one ecosystem better suited for this (libraries, etc) or is it a toss-up? (The app will be hosted on Linux) I have lots of reasons for the re-write, one them is to make myself more marketable. Anyone care to comment on the whic...
OK.. I am not really good at asking questions, but the title says it all. I got my script querying Active Directory to work when called from the command windows, but it won't work on my ASP page. Instead of echo("message") in the VBS file, I used Response.Redirect(message) in my ASP. So here's the code that is working fine in the CMD wi...
Are there tools that make the job easier? If command-line only tools exist, then can anyone speculate if there is a market for a GUI tool? For example, you can create a relational database by modeling visually. Should the same notion exist for LDAP? ...
First, a little background: We have an intranet site based on WSS 3.0 that is hosted on a server in *DOMAIN_A.LOCAL* and set up to use Integrated Windows Authentication to authenticate users against Active Directory user accounts of *DOMAIN_A.LOCAL*. This setup works just fine for users who are logged into Windows using an AD account f...
I'm writing a self service password reset system in c#, .Net 3.5 - one of the things that I need to do is allow users to authenticate with an expired password and give them the ability to change it. Can you, using the System.DirectoryServices or System.DirectoryServices.AccountManagement namespaces validate an expired password? Is ther...
I have a list of passwords that I need to examine and determine if they meet the default 3 of 4 rule for AD. Rule is contain 3 of the 4 following requirements: lower case character (a-z) upper case character (A-Z) numeric (0-9) special character ( !@#$%^&()+= ) I am still learning Regex. I know how to select only those that meet any...
Is anyone aware of an "web-based" application that allows developers to browse an LDAP server and view objectClasses and attributeClasses? Ideally I would love something open source that is written in either Java or .NET. ...
I am testing out using ADAM and the DSML services. I have two ADAM servers, one is a replica of the other and they are Load Balanced. How can you protect duplicate object creation in the ADAM directory? ...