Re: ActiveDirectoryMembershipProvider - IsInRole problem

---

• From: Dominick Baier [DevelopMentor] <dbaier@xxxxxxxxxxxxxxxxxxxxxxxxxxxxx>
• Date: Wed, 22 Mar 2006 20:24:15 +0000 (UTC)

---

right - and i think it is a pretty heavy limitation that there is no AD role provider...

it is on my todo list - but i haven't found time so far...


You have to fetch them manually - joe knows at least 3 ways to do that :)

---------------------------------------
Dominick Baier - DevelopMentor
http://www.leastprivilege.com

ps - the use case for this authentication method is all users are in
AD, but some use firefox or opera as their browser.

"Dominick Baier [DevelopMentor]" wrote:

is the problem on the other thread resolved??

There is no ActiveDirectoryRolesProvider - the roles are not
populated from AD...thats why IsInRole fails.

---------------------------------------
Dominick Baier - DevelopMentor
http://www.leastprivilege.com

Hi;

For forms/ActiveDirectoryMembershipProvider authentication, I get an
authenticated user but IsInRole fails. I am getting a FormsIdentity
where authentication-"Forms" and name="dave". I do have to enter my
domain password for it to login.

web.config:
<roleManager enabled="true"/>
<authentication mode="Forms">
<forms name=".ADAuthCookie" loginUrl="login.aspx">
</forms>
</authentication>
<authorization>
<deny users="?"/>
</authorization>
<membership defaultProvider="MyProvider">
<providers>
<clear/>
<add name="MyProvider"
type="System.Web.Security.ActiveDirectoryMembershipProvider,
System.Web, Version=2.0.0.0, Culture=neutral,
PublicKeyToken=b03f5f7f11d50a3a"
connectionStringName="ADService"
attributeMapUsername="SAMAccountName"
/>
</providers>
</membership>

.

---

• Follow-Ups:
  • Re: ActiveDirectoryMembershipProvider - IsInRole problem
    • From: Joe Kaplan \(MVP - ADSI\)

• Prev by Date: Re: Impersonation in ASP.NET 2.0 (works from XP, not 2003)
• Next by Date: Re: Impersonation in ASP.NET 2.0 (works from XP, not 2003)
• Previous by thread: Re: ActiveDirectoryMembershipProvider - IsInRole problem
• Next by thread: Re: ActiveDirectoryMembershipProvider - IsInRole problem
• Index(es):
  • Date
  • Thread

---

Relevant Pages Re: ActiveDirectoryMembershipProvider - IsInRole problem ... Dominick Baier - DevelopMentor ... populated from AD...thats why IsInRole fails. ... (microsoft.public.dotnet.framework.aspnet.security) Re: ActiveDirectoryMembershipProvider - IsInRole problem ... There is no ActiveDirectoryRolesProvider - the roles are not populated from AD...thats why IsInRole fails. ... Dominick Baier - DevelopMentor ... (microsoft.public.dotnet.framework.aspnet.security) Re: Securing static files ... Dominick Baier - DevelopMentor ... they are kicked back to the login page. ... The user may log in with other credentials. ... (microsoft.public.dotnet.framework.aspnet.security) Re: How to determine if the logged on user is in a group ... Dominick Baier - DevelopMentor ... I found that you to reboot the SERVER after you create a new group and put users in it so that the new group and the users appear in the whoami list on the server. ... although he is a member of these groups. ... (microsoft.public.dotnet.security) Re: HOWTO: Prevent Dynamic Loading of internal Types ... Dominick Baier - DevelopMentor ... Henning Krause ... I could get the public key from the entry assembly via ... (microsoft.public.dotnet.security)

---

• Security
• UNIX
• Linux
• Coding
• Usenet

• News
• Mailing-Lists
• Newsgroups
• Service
• About
• Privacy
• Search
• Imprint

www.derkeiler.com  > Newsgroups  > microsoft.public.dotnet.framework.aspnet.security  > 2006-03