We recently retired our server 2003 domain controllers and moved to server 2008r2 DCs. We overlooked an old web application built using asp.net. The error we receive when attempting to log into the app is below. I assumed a setting in the web.config was pointed at a retired DC and it was. Removed the old value and added the correct DC name and we are still generating the error.
The group name could not be found
Source
System.DirectoryServices
Exception Type
System.Runtime.InteropServices.COMException
Message
The group name could not be found.
StackTrace
at System.DirectoryServices.DirectoryEntry.Bind(Boolean throwIfFail) at System.DirectoryServices.DirectoryEntry.Bind() at System.DirectoryServices.DirectoryEntry.get_NativeObject() at System.DirectoryServices.DirectoryEntry.Invoke(String methodName, Object[] args)
at CSBaseObjects.ADGroup.ReturnUsers() at sysusers.LoadDomainUsers()
is there a way i could find out how to get all the users in a group on my domain, i have a domain called "cot", within that domain we have multiple groups like "RO,Admin,PM,SPM and 2 or 3 more", i need to get all the users in a particular group, i am using vs2008 and coding on webforms with c#, i have tried various example i could find online but none have worked for me so far.
I have an application where I display every Active Directory group that the current user belongs to. When I have my config setup like this:
<authentication mode="Windows"/> <authorization> <deny users="?"/> <allow users="*"/> </authorization> It works fine. When it's like this: <authentication mode="Windows"/> <authorization> <!--<deny users="?"/>--> <allow users="*"/> </authorization>
No groups are found. Why does this make a difference? Does asp.net only authenticate if we are specifically denying access to unauthenticated users? If it helps this is how i'm getting the groups:
protected string GetUserGroups() { StringBuilder userGroups = new StringBuilder(); ArrayList groupMembers = new ArrayList(); DirectoryEntry root = new DirectoryEntry("LDAP://myldap/DC=nc,DC=local"); DirectorySearcher ds = new DirectorySearcher(root); ds.Filter = String.Format("(&(samaccountname={0})(objectClass=person))", User.Identity.Name.Substring(User.Identity.Name.LastIndexOf(@"") + 1)); ds.PropertiesToLoad.Add("memberof"); try { foreach (SearchResult sr in ds.FindAll()) { foreach (string str in sr.Properties["memberof"]) { string str2 = str.Substring(str.IndexOf("=") + 1, str.IndexOf(",") - str.IndexOf("=") - 1); groupMembers.Add(str2); } } } catch { //ignore if any properties found in AD } return String.Join("|", (string[])groupMembers.ToArray(typeof(string))); }
Currently in security setting in website configuration, there us only User, Roles, And Access Rules.i want to add Groups as top level for Users. is it possible?
I'm doing form authentication with roles to access areas of a website. The authentication is working great, but I'm having trouble with the roles piece. On the page in question (needing to narrow the access), the top lblGrps.text (below) shows I'm in the group I need to be in, while the response.write (also immediately below) reads false for the EdIT group:
I need to create individual account for a big group of people (around 200) from an Excel spreadsheet. What is the best practice? It will take too much time to create account using web form. I think there must be a way to do it. I tried to use Stored procedures created by ASP.NET.
Requirement(1): When any person is on the network, they can access this site EXCEPT one AD Group (Example: AD_Sales group).
Requirement(2): Also like for example if a person that has the access passes a url (Ex: http://mysite/Home/Index/Product/Letter) to a sales group person, he still should NOT access and need to display a custom message saying "You are not authorised to view this page".
If the scenario is like to issue the access to one AD Group and deny access for all others, it is fairly is. It can done from IIS. I am Wondering how to do this.
I want to populate members of a local computer group on a webpage and allow the user to add / remove users of that remote computer from a group say Administrators or Remote Users Group.
The application pool will be running with a user who is admin on all remove systems.
Adding ACL for access to the RSA Key container. The RSA key container was not found. Failed! I am getting this when I run the debug:
Server Error in '/' Application. Configuration Error
Description: An error occurred during the processing of a configuration file required to service this request. Please review the specific error details below and modify your configuration file appropriately.
Parser Error Message: Failed to decrypt using provider 'CompanyDirectoryRsaProvider'. Error message from the provider: The RSA key container could not be opened.
Source Error:
[Code]....
Source File: C:ProjectsSystemInformationSystemInformationweb.config Line: 21 Version Information: Microsoft .NET Framework Version:2.0.50727.3607; ASP.NET Version:2.0.50727.3082
And, last but not least, I did copy all the MachineKeys over into my MachineKey directory as well, with one explicitly saying CompanyDirectoryKeyProvider in it. What I am doing wrong and what do I need to do to correct this?
I have a requirement to make parts of forms (and sometimes the entire form) read-only based on the user's active-directory group. I already have integrated AD into the dynamic menu, so that users cannot view certain menu itmes based on their AD group - and this is working fine; however, now they want to get down to the control-level on the forms. The first way that comes to mind is for me to just grab the AD groups for the users and then loop through them, and write my own code to make controls read-only or enabled. Is this a good way to do it, or is there another way? Also, while we're on the topic, is there an easy way to protect an entire form, or maybe an entire panel?
I'm using a linq group by query (with two grouping parameters) and would like to use the resulting data in a nested repeater.
var dateGroups = from row in data.AsEnumerable() group row by new { StartDate = row["StartDate"], EndDate = row["EndDate"] }; "data" is a DataTable from an SqlDataAdapter-filled DataSet. "dateGroups" is used in the parent repeater, and I can access the group keys using Eval("key.StartDate") and Eval("key.EndDate").
Since dateGroups actually contains all the data rows grouped neatly by Start/End date, I'd like to access those rows to display the data in a child repeater. To what would I set the child repeater's DataSource? I have tried every expression in markup I could think of; I think the problem is that I'm trying to access an anonymous member (and I don't know how.) In case it doesn't turn out to be obvious, what would be the expression to access the elements in each iteration of the child repeater? Is there an expression that would let me set the DataSource in the markup, or will it have to be in the codebehind on some event in the parent repeater?
Stack-Overflow :3 I've got a kind of hard-case question.
So I'll try clearly explain my idea with my poor english :/ need select to DataTable SOME values from ???_**GetDisplayData **procedure for each day of previos month (GROUP IT) where group rules for different columns is different
I need to select some values in stored procedure from other stored procedure like this :
SELECT X FROM Y_Procedure(@ProcedureParameters)Also I need to select from dynamic SQL Procedure like
Y_Procedure=@Y+'_Procedure' SELECT X FROM Y_Procedure(@ProcedureParameters)
Also I need to load it to DataTable :-/INSERT INTO @Report (CellHorizontal, CellVertical, CellValue) --to TABLE SELECT Date,X2,X3 FROM Y_GetDisplayData(@Param)
SET NOCOUNT OFF; SELECT * FROM @Report
GetDisplayData works as select with parameters and that doesn't returns SQL DataTable And there is no way to recode GetDisplayData's procedures, it's just constant procedures for me.Finally I need to Group nodes from this table
INSERT INTO @Report (CellHorizontal, CellVertical, CellValue) SELECT T1.Date, IF ((Select grouptype...)=1) T1.X2 + T2.X2 ELSE IF ((Select grouptype...)=2) AVG(T1.X2,T2.X2), IF ((Select grouptype...)=1) T1.X3 + T2.X3 ELSE IF ((Select grouptype...)=2) AVG(T1.X3,T2.X3), (SELECT T2.Date,X2,X3 FROM Y_GetDisplayData(@Param) T2 WHERE T2.Date>T1.Date AND T2.Date>=T1.Date) FROM Y_GetDisplayData(@Param) T1 GROUP BY EVERY DAY ???--and here is epic fail
I can make all stuff on asp server :And C# allows me to use something like SelectCommand = IzmProc + "_GetDisplayData"; And then I will work (select special data) with DataTables on ASP.NET Server but it's better to make all on SQL ... But looking like it's just unrealizable on SQL >_<
I gonna think about C# realization,but my code is very weird , got errors and doesn't works >_<
My application source code is under Driver H: in my Dev server.
The security settings under Driver C: (right click->properties->security tab) has access setup as "Everyone", but when I remove "Everyone" from C: and run my application, I am getting HTTP 404 - File not found. The app works fine if it has Everyone. I dont want to grant access to Everyone under C:.
How can I run my app which is setup under driver H: run without any issues by removing the Everyone Access in C drive.
I have a summary page that has an Add New Record button, andEdit Record butto and a Delete Record button.Every user has ReadOnly access.However, only users with administrators Access Level can add, edit, delete, view.Users with Staffers Access Level can only Add records but cannot delete or edit.So, basically, 2 access Levels, Administrators, Staffers.Administrators can view, add, delete, update records.The rest, Staffers, can only view and Add records.I am struggling to figure this out.I have done this a ton of times using Classic ASP, something like:
If AccessLevel <> "Administrator" Then Response.Redirect"login.asp" 'so if user has admin password, s/he ccan log in with that. End if
[code]...
4 different groups will be using the system, each will be redirected to their own summary page based on their groupNumber.All I just want now is to ensure that a user from a particular group is redirected to his/her summary page, then that user is checked again against AccessLevel (view, edit, delete, update).
When trying to open a page I am getting this error: Failed to decrypt using provider 'RsaProtectedConfigurationProvider'. Error message from the provider: The RSA key container could not be opened. I did some reading and it seems that this command woudl fix it:
from here [URL] aspnet_regiis -pa "NetFrameworkConfigurationKey" "ASPNET"
Adding ACL for access to the RSA Key container. The RSA key container was not found. failed . Now, I don't really understand all of this stuff (my boss just said: Heres the problem, fix it).
This is probably a lame question, but I know little of web development. I inherited a web project that I'm trying to get running locally. I get the mentioned error on line 46.
Line 44: </authentication> Line 45: <membership defaultProvider="AD_MyCompanyName" /> Line 46: <roleManager enabled="true" defaultProvider="ADRP_MyCompanyName_Readonly" cacheRolesInCookie="true" cookieName="MyCompanyName.ROLES" createPersistentCookie="true" cookieSlidingExpiration="true" cookieTimeout="240" /> Line 47: <profile enabled="false"/> Line 48: <customErrors mode="Off"/>
This code works on the old developer's box, but not on mine. I've been working through some TFS checkout issues on his box, assuming it was simply files left checked out. I can't figure out where the providers are added. I don't see them being added in the config file above. In fact, if I search for "AD_MyCompanyName" and "ADRP_MyCompanyName_Readonly", I get no hits in the entire solution. I can't figure out what they are. Not sure why it works on that box if I can't even find the providers being added.
- I started an empty ASP.NET 3.5 website - I included the assembly reference <add assembly="System.Web.ApplicationServices, Version=4.0.0.0, Culture=neutral, PublicKeyToken=31BF3856AD364E35"/> - I included using System.Web.Security; - I want to use the following code to add a confirmation code to an email
I'm using Membership but allow to change UserName of specified user. I had user named Customer bound to role Customer, and then his username was changed to 123. Then i try to do something to get Roles of this user and get an error or empty result.
I use Membership.ValidateUser to check user credentials, but when I do so, I get the following ArgumentException: "The serviceUri configuration setting was not found." I just can't understand what is the problem here.
I am trying to create my own membership system. Therefore I created my own membershipuser class and membership provider class. But I am getting the following error on Createuser method of My membership provider class; no suitable method found to override
This is how my CreateUser method looks like:
public override MyMembershipUser CreateUser(string username, string password, string email, string status, int registerd_on, out UserCreationStatus creation_status)