active-directory

How can I validate within an InfoPath form whether a user exists within a SharePoint Portal?

I am creating a form within InfoPath which is to be integrated into a SharePoint 2007 Portal. Within this form there will be a textfield into which a user can enter the Name of a Person. How can I validate whether this Person exists or not? Instead of validating the user, is there a way to fill a dropdown List with all usernames of th...

VBScript LDAP: Is there a way to query for physicalDeliveryOfficeName using the email address in Active Directory?

I'm attempting to utilize VBScript to connect pull the physicalDeliveryOfficeName attribute in Active Directory by providing the email address. I know how to do it with a common name like the following: Set MyUser = GetObject ("LDAP://cn=" & uname & ",ou=" & strname & ",DC=bobdom,DC=net") However only the email address is available...

Trouble getting GPO logon script to run using Active Directory Domain Services

I have just upgraded our company's domain controller from NT 4.0 to Windows 2008 Server. I used the in-place upgrade path, going first from NT 4.0 to Windows 2003 Server and then 2003 Server to 2008 Server. The orginal NT 4.0 domain was name Company. The new domain is Company.local. I have confirmed user and computer information was prop...

WindowsPrincipal.IsInRole() not returning the expected result

So here's my current code: List<string> rowGroups = GetFileGroups((int)row.Cells["document_security_type"].Value); bool found = false; System.Security.Principal.WindowsPrincipal p = new System.Security.Principal.WindowsPrincipal(System.Security.Principal.WindowsIdentity.GetCurrent()); foreach (string group in rowGroups) { if (p.IsInR...

LDAP & Active Directory results missing fields for some results

When querying with LDAP against our Active Directory structure to look up user accounts, some records (but not all) are missing certain key fields, specifically memberOf and userAccountControl (which has a bit flag that indicates whether the account is disabled or not). Here's a few refining details: If the query is set to filter on a...

Setting up SSL in Active Directory how-to

I need to set up SSL over Active Directory. I googled a lot but could not found a decent write up about how to do this. Please if you know some good resources about this let me know. Thanks! ...

Deny login to linux machine for users not in AD "Domain Admins" group?

So I've setup an Ubuntu server running the 8.04 release. I set it up to authenticate with our Active Directory using the likewise-open package using these instructions. Part of that setup was giving Domain Admin users who login to the machine sudo access. Now I'd like to deny login rights for all domain logins except for those users tha...

C# Validate a username and password against Active Directory?

How can I validate a username and password against Active Directory? I simply want to check if a username and password are correct. ...

Best Practices for Building a SSO System

I am looking to build a Single-signon system for a couple web apps that used form based authentication. They way that I envision it is that my sso system would handle authentication against active directory pass the verification through to the desired web app when ever the used clicked a link through my sso portal. What might be the b...

Cannot get .NET application to access AD groups across domains

I have a .NET application distributed through ClickOnce. Security within the application is implemented through the WindowsPrincipal.IsInRole(GroupName) method using a set of groups as resources. This structure works well for us for users within the same domain as the groups. Unfortunately we now have users that need to use the applicati...

How can I query users with an expired password in Active Directory?

I need to query Active Directory for a list of users whose password is about to expire. The obvious (and easy) way to do this is with: dsquery user -stalepwd n The problem is that I need to add additional filters to only look for users who are in certain security groups. This is hard to do with the "dsquery user" syntax that has the...

SharePoint - Adding users from Active Directory in a custom administration form

I have a project where I need to add users to a SharePoint portal, but when I add them, I also need to set addition parameters inside a separate database. I want to add a custom administration screen where the administration can set these values when they add the user rather than forcing them to first add the user then go to a separate ...

ADAM authentication - howto?

I'm attempting to authenticate a user against ADAM using a user I created in ADAM. However, regardless of the password used (correct, or incorrect), my search comes back with a valid DirectoryEntry object. I would assume that if the password is invalid, then the search would come back with a null object. Are my assumptions wrong or is...

ADAM authentication w/ ADAM user and simple bind

I've followed the ADAM Step by Step Guide from Microsoft and setup an ADAM instance on my local machine. I'm attempting to authenticate using the "Mary Baker" account, but every time I get a COM exception on the if (entry.Guid != null) line below. The exception states that there's an unknown user name or bad password. However, I can u...

How do I email Active Directory distribution groups from a c# web application?

I'm trying to send email to Active Directory distribution groups. I know you can send mail using something like: mail.From = new MailAddress("[email protected]"); mail.To.Add("[email protected]"); //set the content mail.Subject = "This is an email"; mail.Body = "this is a sample body with html in it."; mail.IsBodyHtml = tr...

ASP.NET Application to authenticate to Active Directory or SQL via Windows Authentication or Forms Authentication

I am in the process of writing an application that will need multiple forms of authentication. The application will need to support authentication to Active Directory, but be able to fail back to a SQL Membership Provider if the user is not in Active Directory. We can handle the failing to the SQL Provider in code based on the username...

Authenticate Sharepoint with Active Directory?

Just need to use find a simple way to have AD authenticate as the login for a Sharepoint site. This fairly quick and simple to get going ? Thanks! ...

AD People Picker for Word 2007?

Is it possible to use a people picker within a field in Word 2007, in order to populate the document with known values from AD user objects? ...

How to add a user in a different Active Directory Domain in C#?

So my goal is to be able to add a user from one Active Directory Domain to another group in a separate Active Directory Domain. I'd like to do this in C#. I know there is a System.DirectoryServices namespace with classes to communicate with AD, but I can't find any information on adding users across domains. In the environment there a...

Getting authenticate AD users objectGuid from asp.net

Hi all I am using windows authentication within an ASP.NET application. I am wondering how to best get the objectGuid from the currently logged in user? Regards, Egil. ...