i am new to Active directory but i knew vbscript, how to write an vbscript in AD to extract data from NTFS permission by server and from nested group from AD, i need just an outline how to proceed, if solution are given in code bases, it fine for the beginners like me. please post as soon as possible ...
I've been reading up on DNS, and I've been quite interested on custom application directory partitions. Active-Directory uses them, but, as a developer, how can I extract the most out of them? What possible applications and real-world scenarios could I address and solve using custom application directory partitions? What problems can be ...
We have an application that is for both internal users and external customers. We would like to authenticate against AD for the internal users and against sql membership for the external customers. Has anyone taken a similar approach? Also what is the best way to authenicate against AD when in a DMZ? I would rather have a proxy of some s...
I want to authenticate my web service in Spring with an Active Directory lookup at both the producer and the consumer - under the Principal that that each are executing under (ie Service Accounts). I'm assuming I have to use JaasPlainTextPasswordValidationCallbackHandler and JaasCertificateValidationCallbackHandler and set up my ...
I'm running a piece of code within a web page that queries the IIS metabase using ADSI. The code is as simple as this: DirectoryEntry iisNode = new DirectoryEntry("/LM/W3SVC/1/ROOT/MyAspWebsite-1-128886021498831845"); foreach (DirectoryEntry de in iisNode.Parent.Children) { System.Console.Wri...
I want to be able to determine whether a particular domain controller is read-only. I know I can do stuff like this to get a writeable DC: using( Domain d = Domain.GetCurrentDomain() ) { DomainController dc = d.FindDomainController( "mysitename", LocatorOptions.WriteableRequired); } But given a DomainController object is...
I would like to accomplish this goal using AD/ADAM The ability to make an email or other attributeClass as part of inetOrgPerson globally unique across entries The ability to attach a regular expression to an attribute for validation purposes The ability to provide a constraint of enumerated choices such as choosing from a list of vali...
Using Active Directory, am trying to find the SamAccountName and email of the user’s manager. I find the logged on user in the AD by search where sAMAccountName = Domain\Account. I then retrieve the manager property, which looks like this, for example: "CN=Doe\, Jane E.,OU=Employees,OU=Users,OU=Detroit,OU=United States,DC=na,DC=gmc,DC...
We're having speed problems still with the login control and the Ad membership provider. We've tracked it down to a specific issue, when initally trying to connect for the first time, it sends this SAM LOGON message: 117 10.717526 10.140.4.84 10.140.4.223 SMB_NETLOGON SAM LOGON request from client It Gets sent 4 seperate time on udp p...
Hi, Is there a Active Directory Helper Class available somewhere? Just checking before I re-invent the wheel. I need to Validate a user in AD. Get hhis/her member roles. Thanks ...
How can I access AD from machines not on the domain. I have an app which needs to run on some machines which are part of the domain and some which are not. I assume I have to present a valid login token from the machine which is not in the domain, however the username and password must be. What book is recommended for .net and AD ...
I have a django application hosted on webfaction which now has a static/private ip. Our network in the office is obviously behind a firewall and the AD server is running behind this firewall. From inside the network i can authenticate using python-ldap with the AD's internal IP address and the port 389 and all works well. When i move t...
Hello, We have a MS Enterprise 2003 CA. I am trying to issue a certificate for a PKCS#10 CSR which is generated without a certificate template. I am getting the following error The request contains no certificate template information. 0x80094801 (-2146875391) Denied by Policy Module 0x80094801, The request doesnot contain a c...
Hi, I'm using LinqToActiveDirectory from codeplex and when I'm executing query using DirecotrySource I'm getting the following error: DisconnectedContext was detected Message: Context 0x3c5050' is disconnected. Releasing the interfaces from the current context (context 0x3c4f98).This may cause corruption or data loss. To avoid this pr...
I have two Active Directory domains, A and B. Users in domain A need to run an application on their desktops to view and manipulate a resource located on a server in domain B. Each user also has an account in domain B. Is it possible to impersonate each user's domain B identity to perform operations on the domain B resource programati...
What are the main diffrences between these two implementations of LDAP protocol? Which is better for heterogenous environment? Any good websites about this topic? ...
I'm responsible for some software that lives on a computer in a managed domain. The client is a mining giant and a third party manages the domain rather bureacratically. They have standard configurations they push out via Active Directory replication. Appropriate channels have been invoked for having the official configuration change m...
Using the ActiveDirectory Provider, when i'm execute the Membershhip.GetUser() i got the following error massage saying: "The parameter 'username' must not be empty.". Here is the membership configuration: <membership defaultProvider="AspNetActiveDirectoryMembershipProvider" > <providers> <clear/> <add name="AspNetActiveDirec...
Has everyone ever programatically created a custom attribute? (At the moment I've just used the Scheme snap-in) Ideally I want (admin) users to be able to administer an ADAM instance through a web interface. I'm writing web-services to be able to do things such as create new users but it's also been requested that custom attributes be ...
The (low level) Active Directory API System.DirectoryServices.Protocols contains a class called ExtendedRequest. I can not seem to find any good documentation for this class but the name suggests that you can perform Active Directory operations with it that are not modeled as a standard class in this namespace. Does anyone know what you...