Active Directory calls failing in production....

From: Ollie (why)
Date: 08/15/04 

Date: Sun, 15 Aug 2004 19:12:34 +0100

I know this has been asked before, I have read the answers given and I am
unable to get this work ( I don't know that much about AD configuration)

I have an asp.net web service that is designed to authenticate and maintain
accounts in active directory. It all works fine when the web service is on
the same machine as the domain controller but when the web service is on a
remote machine it fails on any active directory calls.

I have configured the ProcessModel in the machine.config to run under the
'SYSTEM' account and have set the identity element in the web.config of the
web service to be:
<identity impersonate="true", userName="DOMAIN\ollie" password="password">

this account is a domain administrator account so it will have the
prviliedges required. I have NOT disabled anonymous access for the website.
( I tried this but it still fails)

The LDAP string for connection to the directory service is
LDAP://FB2/DC=DOMAIN,DC=COM

The error that it is returning is "The directory property cannot be found in
the cache" with error code 0x8000500D. I guess that it is able to find the
AD but unable to access the information because of a security restricition
as I said it all works perfectly fine when the web service is on the same
machine as the domain controller, or it could be that the information I am
looking for in the AD is not published for remote access.

Does anyone know what bit of configuration information I am missing to get
the damn thiing working......

Cheers in Advance

Ollie

Relevant Pages

  • Re: Unable To Add DC
    ... then deleted the computer account ... from active directory and then ran DCPROMO, ... >> In my hast to try and get the server rebuild, ... >> the option of the domain controller is no longer ...
    (microsoft.public.windows.server.active_directory)
  • Re: NTDS Replication Event ID 1083/1955 and account lockouts
    ... Active Directory could not update the following object with changes received ... from the domain controller at the following network address because Active ... Not sure if the event is ocurring after the account has been locked or the ...
    (microsoft.public.windows.server.active_directory)
  • Re: Unable To Add DC
    ... I have reloaded it with 2003 server again and given ... I have gone into active directory users and computers then ... it still had the old domain controller in there, ... account SERVERNAME$ to a domain controller ...
    (microsoft.public.windows.server.active_directory)
  • Re: Active Directory calls failing in production....
    ... select that webservice computer and enable the delegate option. ... If you are hosting the main webapplication on the domain controller ... It all works fine when the web service is on ... > 'SYSTEM' account and have set the identity element in the web.config of the ...
    (microsoft.public.dotnet.framework.aspnet.webservices)
  • Re: Active Directory calls failing in production....
    ... select that webservice computer and enable the delegate option. ... If you are hosting the main webapplication on the domain controller ... It all works fine when the web service is on ... > 'SYSTEM' account and have set the identity element in the web.config of the ...
    (microsoft.public.dotnet.languages.csharp)
Loading