Has everyone ever programatically created a custom attribute? (At the moment I've just used the Scheme snap-in) Ideally I want (admin) users to be able to administer an ADAM instance through a web interface. I'm writing web-services to be able to do things such as create new users but it's also been requested that custom attributes be ...
I get the error " A constraint violation occurred. (Exception from HRESULT: 0x8007202F) " when trying to add users to a group. My code looks like this: public string addUserToGroup(string userDN, string groupDN) { try { DirectoryEntry de = new DirectoryEntry("LDAP://localhost:389/" + groupDN); ...
Hi Everyone, I have ADAM set-up & I've written web-services to complete admin tasks like adding new users etc. (I have multiple applications utilising the same ADAM instance) What I am trying to achieve will probably sound a bit odd - but basically I want an admin user to be able to select which attributes the web service should retu...
Project Background: I am setting up a small farm where the Intranet is its own application. Following the Least Priveleged Account setup principle, I have Domain User accounts created for each process/app. pool. The service authentication works great over Kerberos. One of the projects needs to have another web application (separate from...
I was following this example http://msdn.microsoft.com/en-us/library/ms998331.aspx but seem to be messing something. I keep getting the parameter is incorrect. (Exception from HRESULT: 0x80070057 (E_INVALIDARG)) Line throwing the error: Line 30: if (Roles.IsUserInRole("TestRole")) Stack Trace: [ArgumentException:...
I created a sample ADAM Instance. Used AzMan. Created a webservice to get the information from ADAM and AzMan. I created a user in AD. Used that user for anonymous access in IIS. Gave reader access to that user, in ADAM and AzMan. This setup worked successfully. Now I am creating the actual ADAM Instance for Dev, Test and Prod. My W...
We're in the process of building a MOSS site and one of the 3rd party tools we're using has a requirement of AD/ADAM as the authentication provider. We would like the user's to manage their own accounts (e.g. resetting passwords, registering new users, etc) so we're going to need WebParts for administering users in an AD/ADAM/LDAP DB. ...
I'm trying to read from an ADAM directory using C# as well as Delphi. On some machines the code executes very fast (sub-second). On other machines the authentication is fast but reading values from the directory takes a long time (> 12 minutes). I am using the System.DirectoryServices.DirectoryEntry class in C# to access the directory....
Hi! I try to use ASP.Net's MembershipProvider to give access only to certain users. This is backed up by an ADAM instance. I use some test-code which runs just fine: public static DataTable getADValuesByParameter(string strFilter, string strLDAPUser, string strLDAPPath, string strLDAPPWD, string strLDAPProperties) { ...
Hello, I have a principal with credentials to login to an ADAM, creating a successful DirectoryEntry object with: DirectoryEntry entry = new DirectoryEntry(" LDAP://site.com:10001/ CN=MyPrincipal,OU=Users,DC=site,DC=com", "MyUserName", "MyPassWord"); However, what i need to do is to authenticate users logging in. The problem is tha...
Is there a limit on number of concurrent connections to ADAM. Is is configurable? -- How many concurrent connections from a same user could be established? -- How many concurrent connections from different users could be established? Any help/pointers will be appreciated. Thanks. ...
Hi, I'm wondering if there are security (or otherwise) advantages of using an ADAM (Active Directory Application Mode) store for asp.net membership. I'm afraid that setting up the ADAM store is more difficult than the default aspnet_regsql scripts for a default membership database, but i will prefer the more secure solution. Wich of th...
I'm having some difficulty connecting to an ADAM instance from my Commerce Server 2007 ASP .NET solution, and I believe it relates to my config file somehow. The short version is that I can connect to ADAM through ADAM-ADSIEdit with my current username/password, but when I put this in my web.config i get "Parser Error Message: Logon fa...
I have an ADAM directory that our application needs to interface with. Currently we have an abstraction such that our repository uses Sql Server instead of making hte appropriate LDAP calls. We'd like to get closer to our integration point and utilise our actual LDAP repository instead. The problem is that this slows down our dev scenar...
Hi all. This is my situation: We are in the process of replacing a certificate store currently hosted on Sun's iPlanet with Microsoft's Lightweight Directory Services (new version of ADAM with Server 2008). These certificates have been imported into LDS into an application partition (say o=myorg, C=AU). Under this structure I have ...
Hi all, I am currently using the ActiveDirectoryMembershipProvider just for authentication on an internal business app built in asp.net. This works like a charm. I am now looking to add some functionality to handle custom profile information for a user, ideally also stored in Active Directory. For a simple example let's just say the c...
I'm very new to AD LDS and experienced but not qualified with SSAS, so my apologies for my ignorances with these. We have a couple implementations where we expose SSAS via an HTTPS proxy (msmdpump.dll) and currently we have a temporary domain setup handling this (where our end-users have a second account+creds to manage because of this ...
We are using ADAM to simulate an AD server in our development environment. We need to expire passwords for a couple of our users to test several key code paths. We have been doing this by setting the password expiry window low (1 day) and then waiting that interval until the password expires. However, this is slow and once we change...
Hello, I have a AD lightweight instance for testing purposes running on a windoows server 2008 R2 Created an AD structure that contains a container called Roles container Roles contains a bunch of groups (A, B and C) Binded a windows security principal (USER) to one of the groups (group A) Added group A to group B as a member (by addin...
I am binding to an ADAM instance from a C# client using the ADSI provider. When the bind fails I get a generic error condition back that indicates a failure. If I look at a network trace of the traffic I can see that the ADAM instance itself send extended error information back to my client indicating why this authentication has failed, ...