Products

Evoq Content Overview Content Creation Workflow Asset Management Mobile Responsive Personalization Content Analytics SEO Integrations Security Website PerformanceEvoq Engage Overview Community Management  Dashboard  Analytics  Member Profile Gamification Advocate Marketing Community Engagement  Ideas  Answers  Discussions  Groups  Wikis  Events Mobile ReadyDNN Support PackagesEvoq: CMS FeaturesEvoq OnDemandCompare DNN's CMS Products

Solutions

Content Management SystemMulti-Channel PublishingDigital MarketingOnline Community ManagementIntranet Software SolutionOur CustomersPrime

Resources

Test DrivesSchedule A DemoDocumentation CenterWebinarsWhite PapersProduct ManualsRequest PricingData SheetsCase StudiesEvoq Preferred Products Content Management Ecommerce Forms Identity Management and Authentication Site Management Social Themes

Partners

DNN Partners Partner Directory Become a DNN Partner Partner Program Overview  Hosting  Implementation  ISV  Training  Competencies

Community

Participate Ask a Question Forums Community Showcase DNN MVP  Program Overview  Lifetime MVPs  Honorary MVPs Subscribe to DNN Digest Advisory Groups  Awareness Advisory Group  Developer Advisory Group  Partner Advisory Group  Technology Advisory GroupLearn Documentation Wiki Community Blog Video Library Project History Development RoadmapDownload DNN Store Language Packs Manuals Nightly BuildsSecurity Policies Security Center

Blog

About

News Press Releases News Coverage Press KitCareersContact DNN

QA

Ideas Test

New Community Website

Ordinarily, you'd be at the right spot, but we've recently launched a brand new community website... For the community, by the community.

Yay... Take Me to the Community!

Welcome to the DNN Community Forums, your preferred source of online community support for all things related to DNN.
In order to participate you must be a registered DNNizen
HomeHomeDNN Open Source...DNN Open Source...Provider and Extension ForumsProvider and Extension ForumsAuthenticationAuthenticationClarification on functionality + Error messageClarification on functionality + Error message
Previous
 
Next
New Post
11/27/2007 12:22 PM
 
Kel Way

Joined: 4/25/2003
Posts: 35

Hi,

I've read through most of the recent posts on this forum and I remain confused with one thing.  Even when I disable the AD authentication provider, I still am able to achieve an automatic sign-in with my windows credentials passing through.  I think this must be normal and outside the scope of what the AD provider offers -- something made possible by configuring IIS for windows authentication and correctly applying the security settings to the windowssignin.aspx as documented.  Someone please confirm that this is normal behavior and that the AD provider isn't somehow doing work while disabled.  Note it even happened after uninstalling the provider all together, so I'm pretty confident.  I *thought* the provider was working when a new user could hit the site and a new account was added with their domain credentials etc... but I began to suspect something when I read a post suggesting that fields like first name, last name, etc. should have been pulled from the AD profile (the fields are indeed populated in the Active Directory).

Also, I'm getting this error when trying to update the provider settings (Domain/Username/password screen).  I reinstalled the provider with the same results...

Error: is currently unavailable.
DotNetNuke.Services.Exceptions.ModuleLoadException: Object reference not set to an instance of an object. ---> System.NullReferenceException: Object reference not set to an instance of an object. at DotNetNuke.Authentication.ActiveDirectory.ADSI.Utilities.AddADSIPath(String Path, Path ADSIPath) at DotNetNuke.Authentication.ActiveDirectory.ADSI.Utilities.GetRootEntry(Path ADSIPath) at DotNetNuke.Authentication.ActiveDirectory.ADSI.ADSIProvider.GetNetworkStatus() at DotNetNuke.Authentication.ActiveDirectory.Settings.UpdateSettings() --- End of inner exception stack trace ---

Big thanks! Kel
 
New Post
11/27/2007 3:55 PM
 
Mike Horton


Joined: 7/16/2003
Posts: 4865

There is a bug in the current version that where the provider doesn't become disabled when unchecked though if it's removed then automatic login shouldn't be working unless, possibly, you've got remnants of a previous version still in your DNN directories (possible if the site was originally 4.5.5 or lower).

I think my 2nd post from this thread (http://www.dotnetnuke.com/Community/Forums/tabid/795/forumid/89/threadid/177288/scope/posts/Default.aspx) might fix error message.

Anyways, open up your ModuleSettings table in the database and look for AD_ProviderTypeName. Change the value thats in there (something like DotNetNuke.Security......) and replace the cell with DotNetNuke.Authentication.ActiveDirectory.ADSI.ADSIProvider, DotNetNuke.Authentication.ActiveDirectory. That should do the trick.

 
New Post
11/27/2007 5:33 PM
 
Jeff Hughes

Joined: 10/2/2007
Posts: 57

I  have the same error occuring when I attempt to "update settings", adding Active Directory settings.  This was a fresh install of DNN 4.6.2.  I did check the AD_ProviderTypeName cell and found the entry you mention already there.  Not quite sure where I should go next.

Error: is currently unavailable.
DotNetNuke.Services.Exceptions.ModuleLoadException: Object reference not set to an instance of an object. ---> System.NullReferenceException: Object reference not set to an instance of an object. at DotNetNuke.Authentication.ActiveDirectory.ADSI.Utilities.AddADSIPath(String Path, Path ADSIPath) at DotNetNuke.Authentication.ActiveDirectory.ADSI.Utilities.GetRootEntry(Path ADSIPath) at DotNetNuke.Authentication.ActiveDirectory.ADSI.ADSIProvider.GetNetworkStatus() at DotNetNuke.Authentication.ActiveDirectory.Settings.UpdateSettings() --- End of inner exception stack trace ---
 
New Post
11/28/2007 12:35 AM
 
Mike Horton


Joined: 7/16/2003
Posts: 4865

Wait, I may have given you the wrong fix. Do you only get this error when you go to click on update or is it there when you go into the Authentication page? If it's the former then I gave you the wrong answer.

What you need to do is add impersonation to your web.config. Look for a commented out section that starts <impersonate="true"/>. Uncomment that line only and change it so that it looks like the following: <impersonate="true" userName="domain\user" password="password" />. The user can be any generic domain user. This user account will also need to have the same rights to the DNN directory (and sub directories) that the Network Service/ASPNET user account has.

Give that a shot and let me know.
 
New Post
11/28/2007 6:57 AM
 
Kel Way

Joined: 4/25/2003
Posts: 35

Hi Mike,

Thanks again for your help.  I'm drowning a bit with all the various setting combinations.  As I recall from yesterday, this error occurred when entering the domain in the format: dc=domain,dc=org as documented in 33% of the posts on the matter (I see some LDAP, some domain.org too) -- domain.org worked.  I had tried the impersonation setting with positive results (all OKs on the provider configuration page).  Then, I started having other errors, which I remedied by affording access to the account I used in the impersonation string to the .NET framework folders (read to the root of the .net 2.x folder and write to the nested temp directory.  This seemed to work for awhile and then I had problems with the database (I think a user instance issue).  I recall one about the impersonated user needing a local profile (so I logged on my development XP machine with that user to create one).  That worked, then I saw another error maybe 4 minutes later about the database being in use or something.  I can tell you, every time I solved one problem, another would creep up.  I saw the one where  the user is logged off after a random  amount of time (as posted on your project blog -- but I thought fixed in 4.7).

I'm using the new 4.7 (no upgrade).  My goal is to create a company intranet with 100% AD account access.  I don't need mixed mode.  Is there an authoritative procedure for this setup on 4.7 anywhere you can point me to?

Some questions:

1. Should I keep the User Instance=true (web.config) database setup in place with impersonation?  If so, is it normal for me to need to log in as the impersonated user to create a profile?

2. Is the "random log off" bug you highlighted on your project blog still be present in 4.7?

3. Is there a way to gain access to the 1.00.1 (or whatever it was) build of the provider?

Mike, I really appreciate your help...  I know I probably ask questions that are already answered, but compiling info from all these different sources with conflicting information and various versions is, as I know you know, difficult.

Kel
 
 Page 1 of 3
123Next 
Previous
 
Next
HomeHomeDNN Open Source...DNN Open Source...Provider and Extension ForumsProvider and Extension ForumsAuthenticationAuthenticationClarification on functionality + Error messageClarification on functionality + Error message


These Forums are dedicated to discussion of DNN Platform and Evoq Solutions.

For the benefit of the community and to protect the integrity of the ecosystem, please observe the following posting guidelines:

  1. No Advertising. This includes promotion of commercial and non-commercial products or services which are not directly related to DNN.
  2. No vendor trolling / poaching. If someone posts about a vendor issue, allow the vendor or other customers to respond. Any post that looks like trolling / poaching will be removed.
  3. Discussion or promotion of DNN Platform product releases under a different brand name are strictly prohibited.
  4. No Flaming or Trolling.
  5. No Profanity, Racism, or Prejudice.
  6. Site Moderators have the final word on approving / removing a thread or post or comment.
  7. English language posting only, please.
What is Liquid Content?
Find Out
What is Liquid Content?
Find Out
What is Liquid Content?
Find Out