Products

Evoq Content Overview Content Creation Workflow Asset Management Mobile Responsive Personalization Content Analytics SEO Integrations Security Website PerformanceEvoq Engage Overview Community Management  Dashboard  Analytics  Member Profile Gamification Advocate Marketing Community Engagement  Ideas  Answers  Discussions  Groups  Wikis  Events Mobile ReadyDNN Support PackagesEvoq: CMS FeaturesEvoq OnDemandCompare DNN's CMS Products

Solutions

Content Management SystemMulti-Channel PublishingDigital MarketingOnline Community ManagementIntranet Software SolutionOur CustomersPrime

Resources

Test DrivesSchedule A DemoDocumentation CenterWebinarsWhite PapersProduct ManualsRequest PricingData SheetsCase StudiesEvoq Preferred Products Content Management Ecommerce Forms Identity Management and Authentication Site Management Social Themes

Partners

DNN Partners Partner Directory Become a DNN Partner Partner Program Overview  Hosting  Implementation  ISV  Training  Competencies

Community

Participate Ask a Question Forums Community Showcase DNN MVP  Program Overview  Lifetime MVPs  Honorary MVPs Subscribe to DNN Digest Advisory Groups  Awareness Advisory Group  Developer Advisory Group  Partner Advisory Group  Technology Advisory GroupLearn Documentation Wiki Community Blog Video Library Project History Development RoadmapDownload DNN Store Language Packs Manuals Nightly BuildsSecurity Policies Security Center

Blog

About

News Press Releases News Coverage Press KitCareersContact DNN

QA

Ideas Test

New Community Website

Ordinarily, you'd be at the right spot, but we've recently launched a brand new community website... For the community, by the community.

Yay... Take Me to the Community!

Welcome to the DNN Community Forums, your preferred source of online community support for all things related to DNN.
In order to participate you must be a registered DNNizen
HomeHomeDNN Open Source...DNN Open Source...Provider and Extension ForumsProvider and Extension ForumsAuthenticationAuthenticationThis Membership Provider has not been configured to support password retrieval.This Membership Provider has not been configured to support password retrieval.
Previous
 
Next
New Post
12/23/2014 1:25 PM
 
David O'Leary


www.efficionconsulting.com
Joined: 7/6/2003
Posts: 335
Actually, it still does this when I first login but then things work fine after that.
David O'Leary
Efficion Consulting
 
New Post
1/8/2018 4:44 PM
 
muddeatr


Joined: 1/18/2013
Posts: 140
This still seems to be an issue using Active Directory 5.0.3 or 5.0.6

When I set the password format to hashed I get an error "Hashed passwords cannot be retrieved. Either set the password format to different type, or set enablePasswordRetrieval to false."
When I set the enablePasswordRetrieval to false I get an error trying to login with the AD module saying "This Membership Provider has not been configured to support password retrieval."
 
New Post
1/9/2018 1:55 AM
 
Joseph Craig


Joseph Craig's Avatar

Joseph Craig's Avatar

Joined: 7/24/2006
Posts: 1441
The current version of the DNN AD Provider is v6.0.2 and is located at https://github.com/DNNCommunity/DNN.A.... There are some instructions on the Wiki page.

I don't think that the DNN internals are not going to let you recover passwords from AD. And that certainly is not affected by any attributes you set in web.config, as those probably apply to the DNN authentication provider.

Hopefully the folks here who know the DNN AD Provider can provide some help.

For my money, though, the suite of products produced by Glanton for AD authentication and management are a great set of tools. They take all of the thinking out of implementing AD for a DNN installation, and provide all of the management tools you'll ever need. You'll find them in the DNN Store.


Joe Craig
Patapsco Research Group, Ellicott City, MD
DotNetNuke Development and Services (http://patapscorg.com)
 
New Post
1/11/2018 8:53 PM
 
steven west


Joined: 9/20/2012
Posts: 16
While bug fixing I took a deeper look into this issue as I and others have encountered it in the past. I will document here and in github: [https://github.com/DNNCommunity/DNN.A....

First the process....
First time user logins: when a user logs in, they are authenticated against AD and then a DNN user is created (if doesn't exist) with a random password.

Not first time user logs in: if the local DNN user exists after AD authentication, then for update purposes, the validated DNN user needs to be retrieved. In order to retrieve it, the "ValidateUser" method is
used [http://www.dotnetnukeru.com/dnndocs/a....
Here is where things get complicated. In order to validate the user, the local DNN password must be provided. The password was created at random and the module has no way of knowing the password. So how does the module retrieve the password for user validation? 2 Options....

Retrieve the password from the user using the System.Web.Security.MembershipUser.getPassword() method. This requires that the enablePasswordRetrieval attribute in web.config be set to true. Also required is the attribute passwordFormat to 'clear' or 'encrypted'. Hashed passwords cannot be retrieved. I believe that this module originally was created before the hashed option and therefore only checked for the enablePasswordRetrieval attribute before attempting the get the password (new check will be added in next pull request). If enablePasswordRetrieval is false and/or passwordFormat is hashed then option 2 must be used.

Create a new random password on the fly, change the users password to the new one, use the new password to validate the user. In the event that enablePasswordRetrieval and/or passwordFormat is hashed, then the system cannot retrieve the existing password. Exceptions will be thrown, tears shed, and many questions asked. Instead, a new password is created. Then the DNN user controller method "ChangePasswordByToken" is used to change the users password. HOWEVER, now the enablePasswordReset attribute must be set to true in web.config to allow this. If false then an exception will be thrown, tears shed, etc.

Conclusion,
For this module to work correctly, you must:

set enablePasswordRetrieval = false & set passwordFormat = hashed & set enablePasswordReset = true
set enablePasswordRetrieval = true & set passwordFormat = clear or encrypted

Next pull request will include a new check for passwordFormat = hashed so that if it is set to hashed no password retrieval will be attempted.
 
 Page 4 of 4
Previous1234 
Previous
 
Next
HomeHomeDNN Open Source...DNN Open Source...Provider and Extension ForumsProvider and Extension ForumsAuthenticationAuthenticationThis Membership Provider has not been configured to support password retrieval.This Membership Provider has not been configured to support password retrieval.


These Forums are dedicated to discussion of DNN Platform and Evoq Solutions.

For the benefit of the community and to protect the integrity of the ecosystem, please observe the following posting guidelines:

  1. No Advertising. This includes promotion of commercial and non-commercial products or services which are not directly related to DNN.
  2. No vendor trolling / poaching. If someone posts about a vendor issue, allow the vendor or other customers to respond. Any post that looks like trolling / poaching will be removed.
  3. Discussion or promotion of DNN Platform product releases under a different brand name are strictly prohibited.
  4. No Flaming or Trolling.
  5. No Profanity, Racism, or Prejudice.
  6. Site Moderators have the final word on approving / removing a thread or post or comment.
  7. English language posting only, please.
What is Liquid Content?
Find Out
What is Liquid Content?
Find Out
What is Liquid Content?
Find Out