Re: NTLM authentication

Willy,

thanks you again for your answer.
I think you're right, we'll have to see if we can remove NT4 from our
requirement.
Anyway, I would like to ask you a last question regarding your answer.

Something is not clear.
You say:
"you are actually binding against the server pstrDomain using pstrUser,
pstrPassword as
credentials for the bind (done by objADAM.NativeObject.Equals(null);).
That means that you are authenticating against the LOCAL account DB
(the SAM of pstrDomain)
using NTLM. "

Then you say:
". But, you can't use this to authenticate domain credentials
(username\domain). "

It looks like the opposite?? Or what is the difference between "binding
against the server pstrDomain using pstrUser, pstrPassword" and
"authenticate domain credentials (username\domain)"?

I mean, with this code, I am not authenticating local user, I am really
authenticating users who belong to a domain. So this is exactly what I
want. Or maybe I misunderstand something?

The .NET script has been run on my XP workstation.
It belongs to a NT4 domain.
I have called the function this way:
Boolean test=Logon("localhost:50004", "BOB", "BOBPWD")

I have used localhost because ADAM is installed on my Windows XP
workstation (no users within ADAM and only one local account: admin).
Bob is registered on the NT4 domain (SAM db), he is not a local user.

So when I bind the local ADAM, it automatically authenticates the NT
domain user, right??
And I can authenticate any users within the SAM this way, it works.

Rod

.

Relevant Pages

  • Re: NTLM authentication
    ... That means that you are authenticating against the LOCAL account DB ... It belongs to a NT4 domain. ... So when I bind the local ADAM, ...
    (microsoft.public.dotnet.languages.csharp)
  • Re: ADAM - ldp bind credentials change when using machine account
    ... The directory server has failed to create the ADAM serviceConnectionPoint ... Unfortunately after about an hour he was backing to authenticating as ... in DNS is widgee.sarahsvm.local an A record? ... Kerberos errors logged on server start but from what I read on the net its ...
    (microsoft.public.windows.server.active_directory)
  • Re: ADAM - ldp bind credentials change when using machine account
    ... The DC regularly whacks any "foreign" LDAP SPNs on its computer account. ... ADAM registers them once an hour. ... The directory server has failed to create the ADAM serviceConnectionPoint ... Unfortunately after about an hour he was backing to authenticating as ...
    (microsoft.public.windows.server.active_directory)
  • Re: ADAM - ldp bind credentials change when using machine account
    ... My probability estimates are that there's a 19% chance that the ADAM LDAP ... The directory server has failed to create the ADAM ... Unfortunately after about an hour he was backing to authenticating as ... ADAM instance or a fixed service account? ...
    (microsoft.public.windows.server.active_directory)
  • Re: NTLM authentication
    ... I have installed ADAM, I have not added any users in ADAM. ... and provide the pstrDomain of ADAM, ... I guess this wat you were saying when you said "using a ProxyUserObject ... That means that you are authenticating against the LOCAL account DB using NTLM. ...
    (microsoft.public.dotnet.languages.csharp)
Loading