Hi Mike,

I am having the problem with AD. I am really in great need of help. I will really appreciate it if you could please help me solve my problem as I have a project deadline this friday and windows authenticationis the only part left. I have emailed about a month back with all my problems but havn't received any reply yet.

I am using AD 1.0.3 and DNN 4.8.4. Ad installation and seting in Authentication section was success. No errors. I am having one issue or the another with AD integration and there is no consistency with the results I am getting. Right now I am having same issue as mentioned in the post, New users are not automatically created. I just want to have windows authentication within intranet, not expecting any external users other then host or admin. I have checked the AD authentication documentation word by word and it is set up exactly as mentioned. All the permitions are right but it is not working for me.

These are the setting I have tried.

In web.config settings are:

<authentication mode="forms"><forms name=".DOTNETNUKE" protection="All" timeout="999" cookieless="UseCookies" /></authentication>
<identity impersonate="true" /> <!-- <identity impersonate="true" userName="domain\username" password="password"/> -->
 

I tried removing impersonation or adding domain\username, password to it, nothing is working.

<!-- <add name="Authentication" type="DotNetNuke.Authentication.ActiveDirectory.HttpModules.AuthenticationModule, DotNetNuke.Authentication.ActiveDirectory" /> -->

I have tried commenting uncommenting the above line and navigating to : http://<Domain install>/DesktopModules/AuthenticationServices/ActiveDirectory/WindowsSignin.aspx, didn't worked.

In IIS setting I disabled anonymus access just on WindowsSignin.aspx, didnt worked, then disabled for whole virtual directory, not working.

With the same setting it worked briefly for a day on Firefix, but next day, it didn't. So, I guess I tried everything mentioned in the forums.

And ONE MOST IMPORTANT thing is that it never worked on IE7, and our clients are going to use IE. When I navigate to the URL: "http://<Domain install>/DesktopModules/AuthenticationServices/ActiveDirectory/WindowsSignin.aspx" It prompts me for login, I provide my AD domain\username and password, prompt me three times and then throw this error: "You are not authorized to view this page.....HTTP 401.1 - Unauthorized: Logon Failed
Internet Information Services", even though the site is added in the list of tructed sites.

Please help me with this issue. I will really appreciate it.

Regards,

Divya

divya@hea.biz

Hi Mike, thank you very much for the reply. I appreciate it. Don't worry about the previous email as I have tried to summarize all the issues in this one

I do forgot to mention that I already tried your Website Authentication Test File and got the expected results. This is the current result from this test application:

Mozilla and IE7: Anonymous allowed
Welcome: <computer_name>\IUSR_JWR

Mozilla and IE7: Anonymous disabled
Welcome: Domain\Username
(Mozilla prompted for username password in this case.I)

I noticed one thing here, when I type this URL for my DNN site - "http://<DNNsite>/DesktopModules/AuthenticationServices/ActiveDirectory/WindowsSignin.aspx"

I got this URL instead when the page is loaded
http://<DNNSite>/FCPSRegistration/tabid/66/logon/633603134911472463/Default.aspx

what does this number represent  - 633603134911472463? Is it recognising my Active Directory account? If yes then why it is not creating an entry in Users table as it started doing briefly 3-4 days back.

What I am trying to do in my application is that as soon as the User's Active Directory is recognized on typing the above URL, I want to retreive his active directory email ID and relate it to other tables in my database which are specific to my application and retreive related data and show on this page called (FCPSRegistration).

Thanks,

Divya

I'm not 100% on what the number represents but I see it as well when I go directly to WindowsSignin.aspx. I'll have to look into it.

Mozilla will always have the popup asking for credentials. That's just the way it works.

With IE though..... I'm confused that it's working with the test app but not with DNN as it's essentially the same thing (a file that's set to web authentication and anonymous turned off). Once it passes that point it would be DNN that returns an error not IIS/IE asking you to enter your credentials with a pop-up. Does this do this from multiple computers? Have your network admins made any changes to group policy or to the actual network itself in the last few days?