M
Marc Eggenberger
Hi there.
I have the following environment:
Active Directory running on Windows 2000. There is a root domain called
ad.sys and within this root domain there are the following subdomains:
dom1.ad.sys
dom2.ad.sys
dom3.ad.sys
I need to restrict access to a certain part of a ASP.NET page to some
admin user and check their password agains the windows domain.
IIS Authentication doesnt seem to be an option, I cant seem to supply
several domains.
One possilbe way would probably be:
In the database have a list of names which have access to the admin
part. When the login name matches one of that list make an connection to
the domain and check the passwort. Connection could be ldap.
Is this procedure valid? Any other ideas?
If this is a valid way, how do I connect to another domains? If the
webpage runs in one or none of those domains. I tried
System.DirectoryServices.DirectoryEntry de = new DirectoryEntry
("ldap://servername/OU=Administrators,OU=Site,OU=Country,DC=dom1,DC=ad,D
C=sys", "DOM1\ldapuser", "Idontknow");
But when I try to access de.Children I get an error saying
System.Runtime.InteropServices.COMExcpetion ocured in
system.directoryservices.dll
Additional Information: Unknow error (0x80050000)
When I use a ldap client on my workstation which is in neither of these
domains I can connect and get the data.
Anyone knows whats going on or how I should do this?
I have the following environment:
Active Directory running on Windows 2000. There is a root domain called
ad.sys and within this root domain there are the following subdomains:
dom1.ad.sys
dom2.ad.sys
dom3.ad.sys
I need to restrict access to a certain part of a ASP.NET page to some
admin user and check their password agains the windows domain.
IIS Authentication doesnt seem to be an option, I cant seem to supply
several domains.
One possilbe way would probably be:
In the database have a list of names which have access to the admin
part. When the login name matches one of that list make an connection to
the domain and check the passwort. Connection could be ldap.
Is this procedure valid? Any other ideas?
If this is a valid way, how do I connect to another domains? If the
webpage runs in one or none of those domains. I tried
System.DirectoryServices.DirectoryEntry de = new DirectoryEntry
("ldap://servername/OU=Administrators,OU=Site,OU=Country,DC=dom1,DC=ad,D
C=sys", "DOM1\ldapuser", "Idontknow");
But when I try to access de.Children I get an error saying
System.Runtime.InteropServices.COMExcpetion ocured in
system.directoryservices.dll
Additional Information: Unknow error (0x80050000)
When I use a ldap client on my workstation which is in neither of these
domains I can connect and get the data.
Anyone knows whats going on or how I should do this?