Re: ADAM Question: Windows users cannot login unless they are member of local admins
- From: "Joe Kaplan" <joseph.e.kaplan@xxxxxxxxxxxxxxxxxxxxxxxx>
- Date: Tue, 16 Dec 2008 22:27:39 -0600
Windows users can bind to ADAM as long as the user represents a security principal trusted by the ADAM server (a local user or a domain user from a trusted domain).
That said, by default users who are not in the readers role may not have permissions to see any objects in the directory. Is this what you meant by "log in"? There is a difference between successful authentication and authorization to perform an operation like a search to read something.
You can use ADAM ADSI Edit to add Windows users to a group. In some cases, it is easier to add a built in security principal like Authenticated Users or the local Users group on the server so that you don't have to constantly add new Windows users to ADAM to grant read access.
Joe K.
--
Joe Kaplan-MS MVP Directory Services Programming
Co-author of "The .NET Developer's Guide to Directory Services Programming"
http://www.directoryprogramming.net
"Max2006" <alanalan1@xxxxxxxxxxxxxxxx> wrote in message news:65BDEF1B-2E36-4514-8341-5309F7C18992@xxxxxxxxxxxxxxxx
Hi,
I made a local machine user part of ADAM's Reader role; however, the user cannot login through ADSIEdit.
Basically I found that unless a windows user is not part of local admins, it cannot login into ADAM.
Not sure what I am missing here. Is there any procedure explains how to add a normal windows user part of ADAM's Reraders Role?
Any help would be appreciated,
Max
.
- References:
- Prev by Date: ADAM Question: How to create a new ADAM role
- Next by Date: Re: ADAM Question: How to create a new ADAM ole
- Previous by thread: ADAM Question: Windows users cannot login unless they are member of local admins
- Next by thread: ADAM Question: Windows users cannot login unless they are member of local admins
- Index(es):
Relevant Pages
|
