Re: WSS and Active Directory Account Creation Mode
From: J Irving (pittster_at_hotmail.com)
Date: 02/24/04
- Next message: J Irving: "WSS - Suggested Security Measures for AD Account Creation Mode."
- Previous message: Tom Goddard: "Re: Discussion Boards - Sorting"
- In reply to: Dustin Miller [MVP]: "Re: WSS and Active Directory Account Creation Mode"
- Messages sorted by: [ date ] [ thread ]
Date: 24 Feb 2004 07:52:00 -0800
I did find a workaround and it works consistently:
Add your domain users to the local Administrators group of the server
that is hosting the site. You will be able to log into that site
without restrictions using the domain account credentials.
Click on a link to any list on the site. The log out and log back in
as an administrator for the site. now add the user using
DOMAIN\username. It will work. The next screen will simply ask for an
email address, just like in regular Active Directory mode. YAY!
However, the users will be administrators on the site. None of the
WSS security will apply. Simply remove them from the local
administrators group now and the WSS security model will apply to them
as normal. Voila!.
I haven't tested adding groups to the local Administrators group. But
Damn It I got it to work.
"Dustin Miller [MVP]" <dustin-s-p-a-m@sharepointexperts.com> wrote in message news:<uLiuOh89DHA.1392@tk2msftngp13.phx.gbl>...
> There are no workarounds, and we have consistent success with ADACM. :)
>
> Invite users by their e-mail address. Make sure your SMTP server knows that
> your WSS server is allowed to relay to outside domains. Don't invite people
> by DOMAIN\username, just give in and realize you'll always have to invite by
> e-mail address.
>
> Then it gets much easier. :)
>
> --
> Dustin Miller [MVP]
> SharePoint Experts http://www.sharepointexperts.com
> SharePoint University http://www.sharepointu.com
> SharePoint Bootcamp http://www.sharepointexperts.com/training.htm
> ______________________________________________________________________
> "J Irving" <pittster@hotmail.com> wrote in message
> news:330d3dde.0402200638.6c121f67@posting.google.com...
> > I've added the users to the local admin group but my latest attempt
> > does not seem to be working.
> >
> > Twice now I have been able to add users from the domain to a WSS site
> > in ADACM. Of course I fool around with so many settings I can't
> > remember which I did or what order I did them in. It also seems that
> > the changes that made it possible only took effect overnight, as crazy
> > as that sounds.
> >
> > Has anyone had any consistent success with work arounds?
> >
> >
> > "Ian Morrish" <anonymous@discussions.microsoft.com> wrote in message
> news:<13a5301c3f77d$72a42ac0$a601280a@phx.gbl>...
> > > Appart from members of the loacl administrators group...
> > > Regards,
> > > Ian
> > > >-----Original Message-----
> > > >If you're in ADACM, you can't use existing AD users. :(
> > > >--
> > > >Dustin Miller [MVP]
> > > >SharePoint Experts http://www.sharepointexperts.com
> > > >SharePoint University http://www.sharepointu.com
> > > >SharePoint Bootcamp
> http://www.sharepointexperts.com/training.htm
> > > >_________________________________________________________
> _____________
> > > >"J Irving" <pittster@hotmail.com> wrote in message
> > > >news:330d3dde.0402191332.4a30efaf@posting.google.com...
> > > >> Hi Everyone, hope someone can help.
> > > >>
> > > >> We have a Windows Server 2003 box with WSS installed
> in Active
> > > >> Directory Account Creation Mode that will be used for
> a couple of the
> > > >> local chapters of MPUG. They work fine.
> > > >>
> > > >> However, we were hoping to have our intranet on this
> box as well. We
> > > >> would like to use the existing accounts that have been
> created in AD.
> > > >> When I try to add accounts that exist in ad I get the
> following error:
> > > >>
> > > >> "None of the users or cross-site groups you entered
> could be added.
> > > >> Please make sure there were no typing mistakes on the
> previous page
> > > >> and semicolons were used to separate the names."
> > > >>
> > > >> So I have been experimenting, adding a user to the
> local Administrator
> > > >> group. I have tried adding the users to the STSAdmin
> group for the
> > > >> local machine as well. I have tried adding these users
> to Delegate
> > > >> Control of the Sharepoint OU. Clear the IE cache and
> restart IIS.
> > > >> Nothing... I still get the same error. I go home for
> the day
> > > >> fustrated.
> > > >>
> > > >> Here is what will make someone go crazy. The day after
> I try all this,
> > > >> I CAN ADD THE USER. I am simply prompted for their
> email address. What
> > > >> the hell???
> > > >>
> > > >> Does anyone have any idea why this occurs. Why doesn't
> WSS allow for
> > > >> account creation mode but not recognize existing
> domain users. Is
> > > >> there a registry entry or an entry in the DB that will
> allow the
> > > >> addition of existing domain users?
> > > >
> > > >
> > > >.
> > > >
- Next message: J Irving: "WSS - Suggested Security Measures for AD Account Creation Mode."
- Previous message: Tom Goddard: "Re: Discussion Boards - Sorting"
- In reply to: Dustin Miller [MVP]: "Re: WSS and Active Directory Account Creation Mode"
- Messages sorted by: [ date ] [ thread ]
Relevant Pages
|
