Re: Security logging ldap Authentication in Active Directory

That means the service account authenticated, not the user account. You don't need a service account to authenticate users. They are using the service account to look something up. Then if they tried to auth the user, that would come across as a second request.

--
Joe Richards Microsoft MVP Windows Server Directory Services
Author of O'Reilly Active Directory Third Edition
www.joeware.net


---O'Reilly Active Directory Third Edition now available---

http://www.joeware.net/win/ad3e.htm


jblackburn wrote:
Hello,

I am trying to setup a NetApp NetCache to use ldap authentication with Active Directory. This setup required a service account that the NetCache uses to bind to AD. The configuration that we have is currently working except that authentication request only show up as "success" in the event log of the domain controller with the service account name, not the user account name that was authenticated. Any idea of how to get the account that was authorized instead?

Thanks,

Joe
.

Relevant Pages

  • Re: LDAP Authentication for Single Sign On
    ... So no authentication is required when performing bind operations only ... If I do find that I have to create a service account can you steer me ... If the client doesn't support anything other than a simple ... That isn't really necessarily part of the authentication though. ...
    (microsoft.public.windows.server.active_directory)
  • RE: How to Authenticate to WCF Service Via VPN
    ... \par Microsoft MSDN Online Support Lead ... He launches Cisco Systems VPN Client and authenticates as ... \par> includes the service account identity as a user principal name. ... \par> mutual authentication is assumed. ...
    (microsoft.public.dotnet.framework.webservices)
  • Re: URGENT: Pipe server security question
    ... You'll need to be using Kerberos authentication for starters. ... > We need to impersonate because the service account typically has admin ... If we don't impersonate then we are ...
    (microsoft.public.platformsdk.security)
  • Service Account replaced by IUSR ??
    ... - giving the service account administrator rights ... - in the IIS 6 web, anonymous access is switched off, using integrated authentication ... But the application breaks down when I want to create the folder, for the reason that the app doesn't have access rights to the folder. ... Logon Failure: ...
    (microsoft.public.inetserver.iis.security)
  • Re: Service Account replaced by IUSR ??
    ... - giving the service account administrator rights ... - in the IIS 6 web, anonymous access is switched off, using integrated authentication ... Logon Failure: ...
    (microsoft.public.inetserver.iis.security)
Loading