It has been a while since I've worked on my client's intranet site but they are wanting to go live soon and we've discovered that some users get logged in when they browse to the site from any other machine onthe network and others do not.  Other than something I missed while setting up AD Authentication, there is one item that could be responsible, but I need some DNN team feedback to help me downthe right troubleshooting path.

The AD Authentication extension only creates a user when they first visit the site.  This is fine unless you have 1000 users that all need to be configured in various roles before the launch of the site - i.e. I can't wait for them to visit the site.  So, I used a 3rd party AD import tool and it pulled all users from AD.  This seemed to work just fine except that now I'm discovering that the few users I created manually get logged in just fine using Windows authentication but the users imported do not. 

My question is...how does the AD Auth extension validate a user?  Does it only got to AD if the user does not exist?  I notice that the import tool did not set the Create Date field in the user record - would this cause a problem?

Any informatin would be greatly appreciated.  I can't aford to delete all the users for the roles reaon mentioned above.

Mike,
I tried deleting my test user and then accessing the intranet site from a machine where I was logged in as that user. The problem seems to be something fundamental. When I 1st browse to the site I get an error - the second time I get in to the site but I am not logged in - I am just at the home page wityh the typical Login link. Am I missing something simple? Below is the error:

Server Error in '/Intranet' Application.
--------------------------------------------------------------------------------

Object reference not set to an instance of an object.
Description: An unhandled exception occurred during the execution of the current web request. Please review the stack trace for more information about the error and where it originated in the code.

Exception Details: System.NullReferenceException: Object reference not set to an instance of an object.

Source Error:

An unhandled exception was generated during the execution of the current web request. Information regarding the origin and location of the exception can be identified using the exception stack trace below.

Stack Trace:


[NullReferenceException: Object reference not set to an instance of an object.]
DotNetNuke.Authentication.ActiveDirectory.AuthenticationController.AuthenticationLogon() +376
DotNetNuke.Authentication.ActiveDirectory.WindowsSignin.Page_Init(Object sender, EventArgs e) +127
System.Web.UI.Control.OnInit(EventArgs e) +131
System.Web.UI.Page.OnInit(EventArgs e) +15
System.Web.UI.Control.InitRecursive(Control namingContainer) +142
System.Web.UI.Page.ProcessRequestMain(Boolean includeStagesBeforeAsyncPoint, Boolean includeStagesAfterAsyncPoint) +1476

Hey Mike,

One more update before I head out for the day.  I went ahead and deleted all users that were created via the import and reseeded the users table ID.  I'm seeing varying results now with my testing.

I first logged in to my machine as user A, browsed to the site, and viola - it worked! - logged me in just fine.

I then logged in as user B, browsed to the site, but did not get logged in.  No errors & nothing in the event log indicating that any attempt was made to authenticate against AD.

I then followed the Login link and logged in manually - worked fine - authenticated against AD and created the user.

I then deleted both users again and ran the test again.  This time neither user was logged in/authenticated against AD automatically, but again, when I logged in manually it did authenticate and create the users.

Do you know why it doesn’t always authenticate against AD went the user browse to the site?