Logo Questions Linux Laravel Mysql Ubuntu Git Menu
HTML CSS JAVASCRIPT SQL PYTHON PHP BOOTSTRAP JAVA JQUERY R React Kotlin
 

ASP.NET MVC Form based Auth using AD works locally but fails on server(iis7)

Tags:

iis-7

asp.net-mvc

asp.net-mvc-3

active-directory

web-config

I implemented a form based authentication that uses AD in an ASP MVC 3 application following the directions I found here ASP.NET MVC - Authenticate users against Active Directory, but require username and password to be inputted

I works fine when I run using the ASP.NET Development Server, but fails to go beyond the login page after I enter my credentials and gives the following error:

Configuration Error

Description: An error occurred during the processing of a configuration file required to service this request. Please review the specific error details below and modify your configuration file appropriately.

Parser Error Message: An operations error occurred.

Source Error: 

Line 37:     <membership defaultProvider="MY_ADMembershipProvider">
Line 38:       <providers>
Line 39:         <add name="MY_ADMembershipProvider" type="System.Web.Security.ActiveDirectoryMembershipProvider" connectionStringName="ADConnectionString" attributeMapUsername="sAMAccountName" />
Line 40:       </providers>
Line 41:     </membership>

Any help would be much appreciated, thanks in advance.

UPDATE: So far after a couple of debugs I think error might be coming from System.Web.Security.ActiveDirectoryMembershipProvider in the Web.xml config, I added System.Web (in which that class is found) as a reference and also to make a local copy but still, zip... :(

like image 724
dotKwame Avatar asked Feb 14 '13 12:02

dotKwame

2 Answers

Make sure you have passed a valid username and password of an account that has sufficient privileges to query your AD:

<add 
    name="MY_ADMembershipProvider" 
    type="System.Web.Security.ActiveDirectoryMembershipProvider" 
    connectionStringName="ADConnectionString" 
    attributeMapUsername="sAMAccountName" 
    connectionUsername="YOURDOMAIN\SomeAccount"
    connectionPassword="secret"
/>

If you don't want to do that you will have to configure the Application Pool in your IIS to run under an account which has sufficient privileges to query your Active Directory. By default your application runs under a local NetworkService account which has no access to the AD.

like image 155
Darin Dimitrov Avatar answered Nov 15 '22 08:11

Darin Dimitrov

I changed the Identity of the Application Pool from "ApplicationPoolIdentity" to "NetworkService" and everything works great now.

like image 24
Nick Avatar answered Nov 15 '22 07:11

Nick
Sign in to Comment

Related questions

How to leverage Resharper's "navigate to controller method" feature
Forms Authentication across Sub-Domains on local IIS
How to update complex model in ASP.NET MVC 3
Store session info in ASP.Net Cookie or Session State?
After add MapPageRoute to an asp.net mvc project, the site stops to enter in Home Controller
Using the Command-Query Separation principle in MVC Controllers
Remove mailto anchor from DisplayFor
More controllers but less actions or less controllers but more actions
Trying to check if urlreferrer is null
setting query string in redirecttoaction in asp.net mvc
Why do I have unstable session in a MVC3 application with godaddy servers
Custom Parameter Names With Special Characters in ASP.NET Web API MVC 4
JQuery.Ajax and MVC4
Localization - how to get the client locale in asp.net mvc?
MVC Model Validation on a dynamic form?
Orchard CMS: Content part not displayed
signalR interrupted while the page was loading error when navigating from a page
Pdf Viewer in MVC to show the pdf contents in View
ASP.NET MVC check for custom Attribute in Controller or Action
How to Hide Parameters of URL in MVC4

Donate For Us

If you love us? You can donate to us via Paypal or buy me a coffee so we can maintain and grow! Thank you!