More LDAP DirectoryEntry Issues...#
I should have known it wasn't over.

I am still making steady progress, but I am still finding stupid problems along the way.

Someone told me that they thought my assessment of my security problem was correct, that I need to get the ASP.NET worker thread to have higher access, not the default IIS user account, by using impersonation. I havn't found a way to do impersonation on just 1 page, so I think I will need to move the login page to a different directory and add another .config file.

Some of the goofy things I am finding are:
  1. When searching the directory for a user object, if you want to later call the .Invoke("SetPassword",agrs[]) then you need to specify the schema as "user" when doing the cnAD.Children.Find("CN=MyUser","user") method.
  2. If you try to invoke the ADSI "SetPassword" and you try to use the same password that the account already has, it will throw an error.
    I'm guessing this is because there is probably something indicating that the user must change the password or something, to get around this, I am first changing the password to a GUID, and then changing it again to what I want it to be.
    Call cnNewUser.Invoke("SetPassword", New Object() {New Guid().ToString()})
    Categories:  |  |  | 
    Wednesday, May 28, 2003 1:50:06 PM (Central Standard Time, UTC-06:00) #    Comments [3]  | 

     

    Thursday, May 29, 2003 3:15:53 PM (Central Standard Time, UTC-06:00)
    Oops. Looks like I made a tiny mistake. My code to create a new GUID should be "System.Guid.NewGuid().ToString". The code I have just creates a new GUID structure, with every bit set to 0.
    Chris May
    Thursday, August 21, 2003 8:33:10 AM (Central Standard Time, UTC-06:00)
    Hi, this is my first time on this site, it's very nice!!

    I would just like to say though, that number 2 sounds a bit dangerous. If the system policies restrict how often and how many times the password can be changed, then you're up the creek.
    Tom Spink | thomas dot spinkAT NOSPAMntlworld dot com
    Monday, April 05, 2004 7:17:36 AM (Central Standard Time, UTC-06:00)
    Hi

    I noticed your post about LDAP. I was wondering in all your experiments etc you have some code snippets of how to read the schema fro inside VB6.

    Regards

    Meir

    Meir Rotfleisch | meirAT NOSPAMmrrcomputers dot cc
    Name
    E-mail
    (will show your gravatar icon)
    Home page

    Comment (HTML not allowed)  

    Enter the code shown (prevents robots):
    All content © 2009, Christopher May, Inc
    Open Job Positions
    On this page
    Google Ads
    This site
    Syndicate
    Calendar
    <May 2003>
    SunMonTueWedThuFriSat
    27282930123
    45678910
    11121314151617
    18192021222324
    25262728293031
    1234567
    Archives
     Full Archives By Category
    January, 2009 (2)
    December, 2008 (3)
    November, 2008 (3)
    October, 2008 (11)
    September, 2008 (5)
    August, 2008 (1)
    July, 2008 (15)
    June, 2008 (14)
    May, 2008 (2)
    April, 2008 (6)
    March, 2008 (12)
    February, 2008 (7)
    January, 2008 (10)
    December, 2007 (2)
    November, 2007 (13)
    October, 2007 (10)
    September, 2007 (6)
    August, 2007 (4)
    July, 2007 (12)
    June, 2007 (25)
    May, 2007 (19)
    April, 2007 (14)
    March, 2007 (18)
    February, 2007 (18)
    January, 2007 (20)
    December, 2006 (18)
    November, 2006 (22)
    October, 2006 (12)
    September, 2006 (16)
    August, 2006 (15)
    July, 2006 (13)
    June, 2006 (8)
    May, 2006 (18)
    April, 2006 (53)
    March, 2006 (13)
    December, 2005 (5)
    October, 2005 (1)
    September, 2005 (23)
    August, 2005 (20)
    July, 2005 (18)
    June, 2005 (19)
    May, 2005 (15)
    April, 2005 (32)
    March, 2005 (22)
    February, 2005 (6)
    January, 2005 (12)
    December, 2004 (13)
    November, 2004 (6)
    September, 2004 (3)
    August, 2004 (4)
    July, 2004 (10)
    June, 2004 (10)
    May, 2004 (29)
    April, 2004 (20)
    March, 2004 (16)
    February, 2004 (10)
    January, 2004 (20)
    December, 2003 (20)
    November, 2003 (12)
    October, 2003 (17)
    September, 2003 (35)
    August, 2003 (17)
    July, 2003 (32)
    June, 2003 (27)
    May, 2003 (14)
    Sitemap
     
     
     
     
     
     
     
     
     
     
     
     
     
     
     
     
     
     
     
     
     
     
     
     
     
     
    Blogroll OPML
     Brad Abrams
     Clemens Vasters
     Don Box
     Harry Pierson
     Joshua Flanagan
     Omar Shahine
     Rob Howard
     Rocky Lhotka
     Scott Gu
     Scott Hanselman
     Tom Mertens
    Disclaimer

    Powered by: newtelligence dasBlog 1.9.6264.0

    The opinions expressed herein are my own personal opinions and do not represent my employer's view in any way.

    Send mail to the author(s) E-mail

    Theme design by Jelle Druyts


    Pick a theme: