Products

Evoq Content Overview Content Creation Workflow Asset Management Mobile Responsive Personalization Content Analytics SEO Integrations Security Website PerformanceEvoq Engage Overview Community Management  Dashboard  Analytics  Member Profile Gamification Advocate Marketing Community Engagement  Ideas  Answers  Discussions  Groups  Wikis  Events Mobile ReadyDNN Support PackagesEvoq: CMS FeaturesEvoq OnDemandCompare DNN's CMS Products

Solutions

Content Management SystemMulti-Channel PublishingDigital MarketingOnline Community ManagementIntranet Software SolutionOur CustomersPrime

Resources

Test DrivesSchedule A DemoDocumentation CenterWebinarsWhite PapersProduct ManualsRequest PricingData SheetsCase StudiesEvoq Preferred Products Content Management Ecommerce Forms Identity Management and Authentication Site Management Social Themes

Partners

DNN Partners Partner Directory Become a DNN Partner Partner Program Overview  Hosting  Implementation  ISV  Training  Competencies

Community

Participate Ask a Question Forums Community Showcase DNN MVP  Program Overview  Lifetime MVPs  Honorary MVPs Subscribe to DNN Digest Advisory Groups  Awareness Advisory Group  Developer Advisory Group  Partner Advisory Group  Technology Advisory GroupLearn Documentation Wiki Community Blog Video Library Project History Development RoadmapDownload DNN Store Language Packs Manuals Nightly BuildsSecurity Policies Security Center

Blog

About

News Press Releases News Coverage Press KitCareersContact DNN

QA

Ideas Test

New Community Website

Ordinarily, you'd be at the right spot, but we've recently launched a brand new community website... For the community, by the community.

Yay... Take Me to the Community!

Welcome to the DNN Community Forums, your preferred source of online community support for all things related to DNN.
In order to participate you must be a registered DNNizen
HomeHomeDNN Open Source...DNN Open Source...Provider and Extension ForumsProvider and Extension ForumsAuthenticationAuthenticationChecking Root Domain: FAILChecking Root Domain: FAIL
Previous
 
Next
New Post
7/16/2009 9:43 AM
 
Erika Day

Joined: 3/24/2009
Posts: 15

 I am trying to get AD working for DNN.  I'm on a Windows 2003 Server connected to a domain on AD using IIS6.  My DNN version is 5.1 and ActiveDirectory Authentication is version 5.0.2.

This is for an intranet and I want users to get the windows "grey box" login prompt and have DNN automatically log them in.  What is currently happening is users will get the windows box and login, but DNN will not actually put them in the users table and just has a register link where the user name should be.  Oddly enough if I manually add the user via DNN User Accounts section it will log them in no problem, however I don't want to have to do this every time we get a new user or transfer 500+ users to DNN.  

I believe all my settings in web.config are correct and I have tried a cornucopia of different options none of which work.  I think I have traced the problem to the ActiveDirectory settings in DNN, when I try and update the settings for our domain I get the following:

Accessing Global Catalog: OK

Checking Root Domain: FAIL

Accessing LDAP: OK

Find all domains in network: 

1 Domain(s):

If I can provide more information please let me know.  Any help is appreciated.

Thanks,

Erika Day
 
New Post
7/16/2009 11:23 AM
 
Mike Horton


Joined: 7/16/2003
Posts: 4865

What settings did you change in the web.config? Are you still using forms authentication in the web.config or Windows (you want to use forms)?

Are there any other errors when you try to do the settings for the provider?
 
New Post
7/16/2009 12:00 PM
 
Erika Day

Joined: 3/24/2009
Posts: 15

Hi Mike,

I messed with the <impersonation> settings, commenting and uncommenting it, adding a user and password etc.  It's currently commented out. 

It's currently set for forms Authentication since Windows Auth just throws the user in an infinate redirect loop.

No other errors when changing the settings in the provider.  I do have to use Secure insead of Delegation in the settings because it would throw errors saying the server required a more secure method.  I have tried every other option in the settings and Secure is the only one that will give me two OK's.

Thanks for your help on this.

Erika Day
 
New Post
7/16/2009 5:18 PM
 
Erika Day

Joined: 3/24/2009
Posts: 15

Just an update, I ran through the AD settings via DNN and then looked at the Event Viewer for DNN (should have done this a long time ago, but I forgot the viewer is there) and received the below errors:

InnerException: A more secure authentication method is required for this server.
FileName:
FileLineNumber: 0
FileColumnNumber: 0
Method: System.DirectoryServices.DirectoryEntry.Bind
StackTrace:
Message: System.Runtime.InteropServices.COMException (0x80072028): A more secure authentication method is required for this server. at System.DirectoryServices.DirectoryEntry.Bind(Boolean throwIfFail) at System.DirectoryServices.DirectoryEntry.Bind() at System.DirectoryServices.DirectoryEntry.get_Name() at DotNetNuke.Authentication.ActiveDirectory.ADSI.Utilities.GetRootEntry(Path ADSIPath)

Anyone know an answer to this?

Thanks,

Erika Day
 
New Post
7/17/2009 5:58 PM
 
Erika Day

Joined: 3/24/2009
Posts: 15

I seem to have fixed the above issue.  Coincidentally the same time all of this was going on, I was moving to a 64 bit edition of Server 2003.  I just transfered my DNN install and all of a sudden I no longer get the above errors when trying to configure AD.  It's still not adding users when they log in, but I believe that's covered in another post. 

I have no idea why the new system would work, everything is exactlly the same except I went from the 32 bit to 64.

Thanks for your help Mike,

Erika Day
 
 Page 1 of 3
123Next 
Previous
 
Next
HomeHomeDNN Open Source...DNN Open Source...Provider and Extension ForumsProvider and Extension ForumsAuthenticationAuthenticationChecking Root Domain: FAILChecking Root Domain: FAIL


These Forums are dedicated to discussion of DNN Platform and Evoq Solutions.

For the benefit of the community and to protect the integrity of the ecosystem, please observe the following posting guidelines:

  1. No Advertising. This includes promotion of commercial and non-commercial products or services which are not directly related to DNN.
  2. No vendor trolling / poaching. If someone posts about a vendor issue, allow the vendor or other customers to respond. Any post that looks like trolling / poaching will be removed.
  3. Discussion or promotion of DNN Platform product releases under a different brand name are strictly prohibited.
  4. No Flaming or Trolling.
  5. No Profanity, Racism, or Prejudice.
  6. Site Moderators have the final word on approving / removing a thread or post or comment.
  7. English language posting only, please.
What is Liquid Content?
Find Out
What is Liquid Content?
Find Out
What is Liquid Content?
Find Out