Re: ADSI Problem

To know if ADAM was something you could use, we'd need to know more about
your design goals and such.
What is it you want to accomplish and what do you have to work with?

I suspect that at this point changing authentication mechanisms is not the
answer to your problem. That's just a guess though as your situation may
dictate that you do so.

Al


"robinwilson16" <robinwilson16@xxxxxxxxxxxxxxxxxxxxxxxxx> wrote in message
news:0E5CB532-910C-467E-8C79-EE9A3ED61FE6@xxxxxxxxxxxxxxxx
Hello

That string is WinNT://school.local/userid

It always works on the member server and sometimes on the webserver. It's
just too tempremental to use as a solution at the moment.

Could I use ADAM to get it to authenticate with localhost instead? Not
sure
how I would go about setting it up though.

I can always ping school.local whether it works or not.
I don't really want to add the webserver to the domain either for security
reasons.

Either authentication works straight away or it hangs for about 5 seconds
and fails.

It would be less frustrating if it didn't work at all!

"QuaffAPint" wrote:

What is strAdsPath that is getting passed - what does it look like?
Are you passing the user like 'domain\userid' ?

-Matt

On Jan 15, 9:19 am, robinwilson16
<robinwilso...@xxxxxxxxxxxxxxxxxxxxxxxxx> wrote:
Thanks for the reply

I have tried with LDAP:// instead of WinNT:// and it is still the same
and
also with the IP address instead of the domain name
Do you know how I can also the script to make it work all the time.
I only need a simple login script which authenticates users via AD and
sets
up a session.

The script seems to allow so many users to log in and then it breaks.
Restarting IIS usually gets it working again. This seems like very
strange
behaviour???

I will try posting at vbscripting too, thanks
Robin

"Al Mulnick" wrote:
Honestly? It surprises me that it works at all. I wouldn't have
thought
mixing WINNT provider with adspath would work as you have it.
IADS sometimes surprises me though :)

You may want to post this on the VBScripting news groups and possibly
for
IIS. You may also want to check the IIS logs to see what errors
you're
throwing. You have no authentication mechanism that I see in there,
so
you're relying on anonymous connections (and using WINNT provider)
meaning
that you should be logging some attempts (if not try enabling
auditing to
see them better) to the domain.

"robinwilson16" <robinwilso...@xxxxxxxxxxxxxxxxxxxxxxxxx> wrote in
message
news:AA50061B-2F91-41D8-92DC-DC38D21B5460@xxxxxxxxxxxxxxxx
Hello

I have written a script to authenticate Active Directory users via
ADSI
within a vb script in IIS.
It works fine on one pc which is a member server.

But on the webserver which is not part of the domain, the script
works ok
for a while then stops working with the following errors when
attempting
to
authenticate the users:

Error: 424
Description: Object Required

Error: -2147023677
Description: Object Required

Restarting IIS normally fixes it until it stops working again.
Please can someone tell me why this might be happening.
The code is below:

Thanks
Robin

'Get the username and password from the form
Dim strUserName
strUserName = Request.Form("username")
Dim strPassword
strPassword = Request.Form("password")

'Get the page action
Dim act
act = Request.Form("act")
Dim iFlags
iFlags = Request.Form("Flags")

'If the action is authenticate
if act = "auth" then

'If the AD path is not empty
if (not strADsPath= "") then

'Bind to the ADSI object and authenticate the user
Dim oADsObject
Dim objUser
Dim objGroup

Dim accountDisabled
Dim accessLevel

Dim isAdmin
Dim isTeacher

Set oADsObject = GetObject(strADsPath)

Dim strADsNamespace
Dim oADsNamespace
strADsNamespace = left(strADsPath, instr(strADsPath, ":"))
set oADsNamespace = GetObject(strADsNamespace)

Set oADsObject = oADsNamespace.OpenDSObject(strADsPath,
strUserName,
strPassword, 0)

'Set up a user object to enable information about the user to be
obtained
Set objUser = GetObject("WinNT://school.local/" & strUserName )

'Set up a group object to enable group information to be obtained
Set objAdminGroup = GetObject("WinNT://school.local/" &
adminGroup )
Set objTeacherGroup = GetObject("WinNT://school.local/" &
teacherGroup )

'Boolean to say whether a user is a member if the given group
isAdmin = objAdminGroup.IsMember(objUser.ADsPath)
isTeacher = objTeacherGroup.IsMember(objUser.ADsPath)

'If there was an error
if not (Err.number = 0) then
...




.

Relevant Pages

  • Re: ADSI Problem
    ... I have now managed to get this script working by having 2 ... If you are doing forms authentication using ADSI (which it sounds like ... Restarting IIS usually gets it working again. ... Dim strUserName ...
    (microsoft.public.windows.server.active_directory)
  • Re: ADSI Problem
    ... I suggest posting to IIS groups as well because if IIS will cause it to ... causing the script to stop working after it has been working. ... I have written a script to authenticate Active Directory users via ADSI ... Dim strUserName ...
    (microsoft.public.windows.server.active_directory)
  • RE: IIS 5.0 Custom Errors Tab
    ... Do you see all the custom errors for ... Dim IISSrverObj ... Backup the IIS Metabase before running this script so that if something ...
    (microsoft.public.inetserver.iis)
  • Re: ADSI Problem
    ... I have made a script which will authenticate a user based on their ... Restarting IIS usually gets it working again. ... Dim strUserName ...
    (microsoft.public.windows.server.active_directory)
  • Re: ADSI Problem
    ... If you are doing forms authentication using ADSI (which it sounds like you ... Do you know how I can also the script to make it work all the time. ... Restarting IIS usually gets it working again. ... Dim strUserName ...
    (microsoft.public.windows.server.active_directory)