Sorry if this question was already asked before - but I was not able
to find it - I need to verify user name and password, I don't need any
edits to be done - are there any method like VerifyLogin( UserName,
Password) available?
Thanks, in advance , Vlad.

I know:
Name of server is DIP
Name of Group is Farm_group

I need a page with code in ASP classic NO NET!...
create a page in ASP with a box and button.
In the box the user insert the username and after pressing the button
controll if the user is in Group on AD Winnt server.

If user is in group goto OK_page.asp if thje user not is in group
appera message yopu noet are in "Farm_Group , access denied"

Possible?

Hi salsaviorsal

If you have already solved this great if hot you might consider this
option.

There are probably a number of ways to do this but one might be to
write a .net web service that does the work and returns either a list
of the roles/groups the user is in or a yes/no binary flag that says
they are in or out.

Then consume the web service in the classic asp code. This can and has
been done. One link to how to consume the service from classic asp is
at http://www.4guysfromrolla.com/webtech/070302-1.shtml titled
Integrating ASP.NET XML Web Services with 'Classic' ASP Applications
by Paul Bunting. The code for the article is still available for
download.

Good luck!

I was looking through the archives looking for ways to filter out disabled
user accounts and came across a reference to this VS2003 add-in.

Microsoft Visual Studio.NET Server Explorer Extensions for Active Directory
-- This server explorer add-in allows you to build Active Directory queries.

http://www.microsoft.com/downloads/details.aspx?FamilyId=C82D7AB5-40A5-4DD4-
9595-53A79FF2C5BC



I don't have VS2003 around anymore to examine the add-in but I envision part
of it as being a wizard-like way to build AD queries.  Perhaps I'm just
dreaming J



Is that "would-be-nice" to have functionality available for VS2005 or
VS2008?  I know that you can drop DirEntry and DirectorySearcher objects
into VS2005 projects and manually build filters.



Thank you.





[Non-text portions of this message have been removed]

I'm not sure if the VS.NET addins still exist or not, but I don't think they
were ever too useful.

If you really want something to help you build queries, I'd suggest looking
at the new System.DirectoryServices.AccountManagement namespace in .NET 3.5.
It uses a different metaphor for building queries and finding objects that
eliminates the need to know much of anything about LDAP.

Joe K.

----- Original Message -----
From: "Richard Kline" <rkline01@...>
To: <ADSIANDDirectoryServices@yahoogroups.com>
Sent: Thursday, May 15, 2008 3:29 AM
Subject: [ADSI-DirSrv] Visual Studio.NET Server Explorer Extensions for
Active Directory


>I was looking through the archives looking for ways to filter out disabled
> user accounts and came across a reference to this VS2003 add-in.
>
> Microsoft Visual Studio.NET Server Explorer Extensions for Active
> Directory
> -- This server explorer add-in allows you to build Active Directory
> queries.
>
> http://www.microsoft.com/downloads/details.aspx?FamilyId=C82D7AB5-40A5-4DD4-
> 9595-53A79FF2C5BC
>
>
>
> I don't have VS2003 around anymore to examine the add-in but I envision
> part
> of it as being a wizard-like way to build AD queries.  Perhaps I'm just
> dreaming J
>
>
>
> Is that "would-be-nice" to have functionality available for VS2005 or
> VS2008?  I know that you can drop DirEntry and DirectorySearcher objects
> into VS2005 projects and manually build filters.
>
>
>
> Thank you.
>
>
>
>
>
> [Non-text portions of this message have been removed]
>
>

Hi,
    I have one service running on 2003 server. This service talks with
AD and gets the members of some groups from whole forest. This
service gets user attributes also of those members from AD. I want to
extend User schema to add this service specific attributes to User
objects. Whenever there is any change in any user attributes then I
need to get those users list from AD.

    Now here the extend user schema is the problem as not all
administrators allow to touch user schema. So I thought may be I can
ADAM to extend schema and then use the same ADSI calls which I am
using in this service to query users, groups, and their attributes
through ADAM.

    Please let me know if this is possible? Is ADAM is good choice?

    If yes, then I have one more question.
    Right now I am using Active Directory Users and computers snapin.
On user properties I have added my custom tab where I allow users to
set extended attributes of users. If I use ADAM then can I talk with
my ADAM instance from ADUC domain and get the extended attributes of
that user from ADAM and display here in ADUC. And once user sets the
attributes, can I set it back to the instance of ADAM?

Please help, as depending on your answer I can decide the development
direction

Thanks
Asawari

The code below works to obtain the list of domain controllers within the
currently logged in domain.  Is it possible to obtain the same list from
another domain within the same forest?



Thank you.



Rich





Function ListDomainControllers(ByVal DomainName As String) As String

         Dim strRet As New StringBuilder

         Try

             Dim context As New DirectoryContext(DirectoryContextType.Domain,
DomainName)



             Dim dcc As DomainControllerCollection =
DomainController.FindAll(context)



             For Each dc As DomainController In dcc

                 strRet.AppendLine(String.Concat(vbTab, dc.Name, " - ",
dc.IPAddress))

             Next

         Catch ex As Exception

             strRet.AppendLine(String.Concat(vbTab,"Error: " & ex.Message))

         End Try

         If strRet.Length = 0 Then

             strRet.AppendLine(String.Concat(vbTab,"Unable to locate domain
controllers"))

         End If

         Return strRet.ToString

     End Function



[Non-text portions of this message have been removed]

I altered the line

Dim context As New DirectoryContext(DirectoryContextType.Domain,DomainName)



To include a known valid username (using the format "domain\user") and
password.   The name/password is used successfully to retrieve user
information from that same foreign domain.   The new line reads



Dim context As New DirectoryContext(DirectoryContextType.Domain,DomainName,
UserName, UserPassword)



The results do not change.  The DomainControllerCollection contains nothing
if I attempt to retrieve the collection from a foreign domain.   There is a
firewall inserted between the client and the target foreign domain.



I'd appreciate any thoughts.



Thank you.



Rich



From: ADSIANDDirectoryServices@yahoogroups.com
[mailto:ADSIANDDirectoryServices@yahoogroups.com] On Behalf Of Richard Kline
Sent: Tuesday, July 29, 2008 5:25 AM
To: ADSIANDDirectoryServices@yahoogroups.com
Subject: [ADSI-DirSrv] Retrieving list of Domain Controllers from foreign
domain



The code below works to obtain the list of domain controllers within the
currently logged in domain. Is it possible to obtain the same list from
another domain within the same forest?

Thank you.

Rich

Function ListDomainControllers(ByVal DomainName As String) As String

Dim strRet As New StringBuilder

Try

Dim context As New DirectoryContext(DirectoryContextType.Domain,
DomainName)

Dim dcc As DomainControllerCollection =
DomainController.FindAll(context)

For Each dc As DomainController In dcc

strRet.AppendLine(String.Concat(vbTab, dc.Name, " - ",
dc.IPAddress))

Next

Catch ex As Exception

strRet.AppendLine(String.Concat(vbTab,"Error: " & ex.Message))

End Try

If strRet.Length = 0 Then

strRet.AppendLine(String.Concat(vbTab,"Unable to locate domain
controllers"))

End If

Return strRet.ToString

End Function

[Non-text portions of this message have been removed]





[Non-text portions of this message have been removed]

It sounds like you might have a problem with the firewall, but it is hard to
say.  You might start by doing a network trace while the code runs to see if
you see a bunch of traffic being initiated by the client that does not
return.

Joe

----- Original Message -----
From: "Richard Kline" <rkline01@...>
To: <ADSIANDDirectoryServices@yahoogroups.com>
Sent: Tuesday, July 29, 2008 4:54 AM
Subject: RE: [ADSI-DirSrv] Retrieving list of Domain Controllers from
foreign domain


>I altered the line
>
> Dim context As New
> DirectoryContext(DirectoryContextType.Domain,DomainName)
>
>
>
> To include a known valid username (using the format "domain\user") and
> password.   The name/password is used successfully to retrieve user
> information from that same foreign domain.   The new line reads
>
>
>
> Dim context As New
> DirectoryContext(DirectoryContextType.Domain,DomainName,
> UserName, UserPassword)
>
>
>
> The results do not change.  The DomainControllerCollection contains
> nothing
> if I attempt to retrieve the collection from a foreign domain.   There is
> a
> firewall inserted between the client and the target foreign domain.
>
>
>
> I'd appreciate any thoughts.
>
>
>
> Thank you.
>
>
>
> Rich
>
>
>
> From: ADSIANDDirectoryServices@yahoogroups.com
> [mailto:ADSIANDDirectoryServices@yahoogroups.com] On Behalf Of Richard
> Kline
> Sent: Tuesday, July 29, 2008 5:25 AM
> To: ADSIANDDirectoryServices@yahoogroups.com
> Subject: [ADSI-DirSrv] Retrieving list of Domain Controllers from foreign
> domain
>
>
>
> The code below works to obtain the list of domain controllers within the
> currently logged in domain. Is it possible to obtain the same list from
> another domain within the same forest?
>
> Thank you.
>
> Rich
>
> Function ListDomainControllers(ByVal DomainName As String) As String
>
> Dim strRet As New StringBuilder
>
> Try
>
> Dim context As New DirectoryContext(DirectoryContextType.Domain,
> DomainName)
>
> Dim dcc As DomainControllerCollection =
> DomainController.FindAll(context)
>
> For Each dc As DomainController In dcc
>
> strRet.AppendLine(String.Concat(vbTab, dc.Name, " - ",
> dc.IPAddress))
>
> Next
>
> Catch ex As Exception
>
> strRet.AppendLine(String.Concat(vbTab,"Error: " & ex.Message))
>
> End Try
>
> If strRet.Length = 0 Then
>
> strRet.AppendLine(String.Concat(vbTab,"Unable to locate domain
> controllers"))
>
> End If
>
> Return strRet.ToString
>
> End Function
>
> [Non-text portions of this message have been removed]
>
>
>
>
>
> [Non-text portions of this message have been removed]
>
>

Hello

In Sharepoint Central Admin - User profile Properties - Can I map ADAM
Password to
New User Profile Properties? So I need not not to give Change Password
Web Part, and user can directly change his password in My Site -
Profile.

Is this possible?

Ashi

Hello

I am trying to create/update an existing code which I used for SQL
FBA Login. Now I am using same code with ADAM FBA Login. This code I
am using for allowing user to change their Password. I tested same
code succesfull with SQL FBA, but with ADAM it is giving error and
throwing exception. Here is the code, please advise whats wrong I am
doing

*------ Code Start
using System;
using System.Runtime.InteropServices;
using System.Web.UI;
using System.Web.UI.WebControls;
using System.Web.UI.WebControls.WebParts;
using System.Xml.Serialization;
using Microsoft.SharePoint;
using Microsoft.SharePoint.WebControls;
using Microsoft.SharePoint.WebPartPages;
using ActiveDs;
using System.DirectoryServices;
using System.Web.Security;

namespace ADAMPasswordChange
{
[Guid("ad337165-1119-4ac9-8d0b-2ad102c95245")]
public class ADAMPassword :
Microsoft.SharePoint.WebPartPages.WebPart
{
public ADAMPassword()
{
this.ExportMode = WebPartExportMode.All;
}

private TextBox oldpassword;
private TextBox newpassword;
private TextBox checknewpassword;

private string strLoginName;
private string strUserName;


private LinkButton btn;
private Label output;

protected override void CreateChildControls()
{
this.oldpassword = new TextBox();
this.oldpassword.TextMode = TextBoxMode.Password;
this.Controls.Add(oldpassword);

this.newpassword = new TextBox();
this.newpassword.TextMode = TextBoxMode.Password;
this.Controls.Add(newpassword);

this.checknewpassword = new TextBox();
this.checknewpassword.TextMode = TextBoxMode.Password;
this.Controls.Add(checknewpassword);

this.btn = new LinkButton();
this.btn.Click += new EventHandler(btn_Click);
this.btn.Text = "Change Password Now";
this.Controls.Add(btn);

this.output = new Label();
this.Controls.Add(output);

base.CreateChildControls();
}

void btn_Click(object sender, EventArgs e)
{

if (newpassword.Text.ToString() !=
checknewpassword.Text.ToString())
{
output.Text += "<BR><b>Passwords don't match....</b>";
return;
}
//if (newpassword.Text.ToString() ==
checknewpassword.Text.ToString())
else
{
Boolean NTUser = true;
try
{
//SPWeb webContext = SPControl.GetContextWeb
(Context);
//strLoginName =
webContext.CurrentUser.LoginName.ToUpper();

GetUserName();
//output.Text += strLoginName;

if (strLoginName != @"SHAREPOINT\SYSTEM")
{

if (!strLoginName.Contains(@"SERVER\"))
{
//forms auth user

NTUser = false;
}
}

}
catch
{
NTUser = false;
}

if (NTUser)
{


}
else
{
try
{
//change password for the forms auth user

//output.Text += strLoginName;
//MembershipUser mUser = Membership.GetUser
(GetUserName());
DirectoryEntry entry = new DirectoryEntry
("LDAP://localhost:389/CN=Users,O=ADAM,C=US", strLoginName,
oldpassword.Text.ToString(), AuthenticationTypes.None);
//mUser.ChangePassword
(oldpassword.Text.ToString(), newpassword.Text.ToString());
try
{
entry.Invoke("SetPassword", new object[]
{ newpassword.Text.ToString() });
entry.CommitChanges();
output.Text += "<BR> <b>Password is
changed</b>";
}
catch (Exception ex)
{
output.Text += "<b> Password couldn't be
changed due to restrictions 1<b>";
output.Text += ex.Message;


}

output.Text += "<BR> <b>Password is changed
1</b>";

}
catch (Exception error)
{
output.Text += "1 User Password Change
Error:\n" + error.StackTrace.ToString() + "\n" +
error.Message.ToString();
//output.Text += "<BR>" +
error.Message.ToString();
}
}
}
//else
//{
// output.Text += "<BR><b>Passwords don't
match....</b>";
//}
}


protected override void Render(System.Web.UI.HtmlTextWriter
writer)
{
//try
//{
// SPWeb webContext = SPControl.GetContextWeb(Context);
// strLoginName = webContext.CurrentUser.Name.ToUpper
();
//}
//catch (Exception)
//{
// output.Text += "<BR> <b>Please sign in first using
the 'Sign In' button above</b>";
//}
EnsureChildControls();
GetUserName();
if (strLoginName != string.Empty)
{
writer.Write("<table border=0>");
writer.Write("<tr>");
writer.Write("<td class='ms-vb'>");
writer.Write("User Name:");
writer.Write("</td>");
writer.Write("<td class='ms-vb'><b>");
writer.Write(strLoginName);
writer.Write("<b></td>");
writer.Write("<td class='ms-vb'>");
writer.Write("</td>");
writer.Write("</tr>");
writer.Write("<tr><td colspan='3'></td></tr>");
writer.Write("<tr>");
writer.Write("<td class='ms-vb'>");
writer.Write("Current password:");
writer.Write("</td>");
writer.Write("<td class='ms-vb'>");
oldpassword.RenderControl(writer);
writer.Write("</td>");
writer.Write("<td class='ms-vb'>");
writer.Write("</td>");
writer.Write("</tr>");
writer.Write("<tr valign='top'>");
writer.Write("<td class='ms-vb'>");
writer.Write("New password:");
writer.Write("</td>");
writer.Write("<td class='ms-vb'>");
newpassword.RenderControl(writer);
writer.Write("</td>");
writer.Write("<td class='ms-vb'>");
writer.Write("</td>");
writer.Write("</tr>");
writer.Write("<tr valign='top'>");
writer.Write("<td class='ms-vb'>");
writer.Write("Confirm new password:");
writer.Write("</td>");
writer.Write("<td class='ms-vb'>");
checknewpassword.RenderControl(writer);
writer.Write("</td>");
writer.Write("<td class='ms-vb'>");
writer.Write("</tr>");
writer.Write("<tr valign='top'>");
writer.Write("</td>");
writer.Write("<td class='ms-vb'>");
writer.Write("</td>");
writer.Write("<td class='ms-vb'>");
btn.RenderControl(writer);
writer.Write("</td>");
writer.Write("<td class='ms-vb'>");
writer.Write("</td>");
writer.Write("</tr>");
writer.Write("</table>");
output.RenderControl(writer);
}
else
{
output.RenderControl(writer);
}
}

string GetUserName()
{
strUserName = "";

try
{
SPWeb webContext = SPControl.GetContextWeb(Context);

strLoginName = webContext.CurrentUser.Name.ToUpper();
strUserName = webContext.CurrentUser.LoginName.ToUpper
();

string[] x = strUserName.Split(':');
if (x.Length > 1)
{
strUserName = x[1];
}
else
{
strUserName = x[0];
}
}
catch
{
strUserName = "";
}
return strUserName;
}
}
}

*------ Code Ends

What's the error you're encountering?



----- Original Message ----
From: Ashish Kanoongo <ashishkanoongo@...>
To: ADSIANDDirectoryServices@yahoogroups.com
Sent: Wednesday, August 27, 2008 12:01:35 AM
Subject: [ADSI-DirSrv] ADAM - Change Password using Sharepoint


Hello

I am trying to create/update an existing code which I used for SQL
FBA Login. Now I am using same code with ADAM FBA Login. This code I
am using for allowing user to change their Password. I tested same
code succesfull with SQL FBA, but with ADAM it is giving error and
throwing exception. Here is the code, please advise whats wrong I am
doing

*------ Code Start
using System;
using System.Runtime. InteropServices;
using System.Web.UI;
using System.Web.UI. WebControls;
using System.Web.UI. WebControls. WebParts;
using System.Xml.Serializ ation;
using Microsoft.SharePoin t;
using Microsoft.SharePoin t.WebControls;
using Microsoft.SharePoin t.WebPartPages;
using ActiveDs;
using System.DirectorySer vices;
using System.Web.Security ;

namespace ADAMPasswordChange
{
[Guid("ad337165- 1119-4ac9- 8d0b-2ad102c9524 5")]
public class ADAMPassword :
Microsoft.SharePoin t.WebPartPages. WebPart
{
public ADAMPassword( )
{
this.ExportMode = WebPartExportMode. All;
}

private TextBox oldpassword;
private TextBox newpassword;
private TextBox checknewpassword;

private string strLoginName;
private string strUserName;

private LinkButton btn;
private Label output;

protected override void CreateChildControls ()
{
this.oldpassword = new TextBox();
this.oldpassword. TextMode = TextBoxMode. Password;
this.Controls. Add(oldpassword) ;

this.newpassword = new TextBox();
this.newpassword. TextMode = TextBoxMode. Password;
this.Controls. Add(newpassword) ;

this.checknewpasswo rd = new TextBox();
this.checknewpasswo rd.TextMode = TextBoxMode. Password;
this.Controls. Add(checknewpass word);

this.btn = new LinkButton() ;
this.btn.Click += new EventHandler( btn_Click) ;
this.btn.Text = "Change Password Now";
this.Controls. Add(btn);

this.output = new Label();
this.Controls. Add(output) ;

base.CreateChildCon trols();
}

void btn_Click(object sender, EventArgs e)
{

if (newpassword. Text.ToString( ) !=
checknewpassword. Text.ToString( ))
{
output.Text += "<BR><b>Passwords don't match....</b> ";
return;
}
//if (newpassword. Text.ToString( ) ==
checknewpassword. Text.ToString( ))
else
{
Boolean NTUser = true;
try
{
//SPWeb webContext = SPControl.GetContex tWeb
(Context);
//strLoginName =
webContext.CurrentU ser.LoginName. ToUpper() ;

GetUserName( );
//output.Text += strLoginName;

if (strLoginName != @"SHAREPOINT\ SYSTEM")
{

if (!strLoginName. Contains( @"SERVER\ "))
{
//forms auth user

NTUser = false;
}
}

}
catch
{
NTUser = false;
}

if (NTUser)
{

}
else
{
try
{
//change password for the forms auth user

//output.Text += strLoginName;
//MembershipUser mUser = Membership.GetUser
(GetUserName( ));
DirectoryEntry entry = new DirectoryEntry
("LDAP://localhost: 389/CN=Users, O=ADAM,C= US", strLoginName,
oldpassword. Text.ToString( ), AuthenticationTypes .None);
//mUser.ChangePassw ord
(oldpassword. Text.ToString( ), newpassword. Text.ToString( ));
try
{
entry.Invoke( "SetPassword" , new object[]
{ newpassword. Text.ToString( ) });
entry.CommitChanges ();
output.Text += "<BR> <b>Password is
changed</b>" ;
}
catch (Exception ex)
{
output.Text += "<b> Password couldn't be
changed due to restrictions 1<b>";
output.Text += ex.Message;

}

output.Text += "<BR> <b>Password is changed
1</b>";

}
catch (Exception error)
{
output.Text += "1 User Password Change
Error:\n" + error.StackTrace. ToString( ) + "\n" +
error.Message. ToString( );
//output.Text += "<BR>" +
error.Message. ToString( );
}
}
}
//else
//{
// output.Text += "<BR><b>Passwords don't
match....</b> ";
//}
}

protected override void Render(System. Web.UI.HtmlTextW riter
writer)
{
//try
//{
// SPWeb webContext = SPControl.GetContex tWeb(Context) ;
// strLoginName = webContext.CurrentU ser.Name. ToUpper
();
//}
//catch (Exception)
//{
// output.Text += "<BR> <b>Please sign in first using
the 'Sign In' button above</b>";
//}
EnsureChildControls ();
GetUserName( );
if (strLoginName != string.Empty)
{
writer.Write( "<table border=0>");
writer.Write( "<tr>");
writer.Write( "<td class='ms-vb' >");
writer.Write( "User Name:");
writer.Write( "</td>");
writer.Write( "<td class='ms-vb' ><b>");
writer.Write( strLoginName) ;
writer.Write( "<b></td> ");
writer.Write( "<td class='ms-vb' >");
writer.Write( "</td>");
writer.Write( "</tr>");
writer.Write( "<tr><td colspan='3'> </td></tr> ");
writer.Write( "<tr>");
writer.Write( "<td class='ms-vb' >");
writer.Write( "Current password:");
writer.Write( "</td>");
writer.Write( "<td class='ms-vb' >");
oldpassword. RenderControl( writer);
writer.Write( "</td>");
writer.Write( "<td class='ms-vb' >");
writer.Write( "</td>");
writer.Write( "</tr>");
writer.Write( "<tr valign='top' >");
writer.Write( "<td class='ms-vb' >");
writer.Write( "New password:");
writer.Write( "</td>");
writer.Write( "<td class='ms-vb' >");
newpassword. RenderControl( writer);
writer.Write( "</td>");
writer.Write( "<td class='ms-vb' >");
writer.Write( "</td>");
writer.Write( "</tr>");
writer.Write( "<tr valign='top' >");
writer.Write( "<td class='ms-vb' >");
writer.Write( "Confirm new password:");
writer.Write( "</td>");
writer.Write( "<td class='ms-vb' >");
checknewpassword. RenderControl( writer);
writer.Write( "</td>");
writer.Write( "<td class='ms-vb' >");
writer.Write( "</tr>");
writer.Write( "<tr valign='top' >");
writer.Write( "</td>");
writer.Write( "<td class='ms-vb' >");
writer.Write( "</td>");
writer.Write( "<td class='ms-vb' >");
btn.RenderControl( writer);
writer.Write( "</td>");
writer.Write( "<td class='ms-vb' >");
writer.Write( "</td>");
writer.Write( "</tr>");
writer.Write( "</table> ");
output.RenderContro l(writer) ;
}
else
{
output.RenderContro l(writer) ;
}
}

string GetUserName( )
{
strUserName = "";

try
{
SPWeb webContext = SPControl.GetContex tWeb(Context) ;

strLoginName = webContext.CurrentU ser.Name. ToUpper() ;
strUserName = webContext.CurrentU ser.LoginName. ToUpper
();

string[] x = strUserName. Split(':' );
if (x.Length > 1)
{
strUserName = x[1];
}
else
{
strUserName = x[0];
}
}
catch
{
strUserName = "";
}
return strUserName;
}
}
}

*------ Code Ends






[Non-text portions of this message have been removed]

We have been using the code below for a few years to create all of the
mailboxes for our university.  We are moving from Exchange 2003 to
Exchange 2007 and have already move AD to 2008.  Is my CDOEXM still
going to work?

             Dim IMailbox As CDOEXM.IMailboxStore =
CType(adsUser.NativeObject, CDOEXM.IMailboxStore)
             MDBURL = "LDAP://" & adsHost & "/" &
mdbData.GetMDBURL(mdbStoreData) & "," & adsRoot
             IMailbox.CreateMailbox(MDBURL)
             PutProp("mailNickname", adsUser.Username)  'use
samAccountName as mailNickname
             PutProp("proxyAddresses", "SMTP:" & eMailAddress & "@" &
adsDomain)
             PutProp("mDBUseDefaults", True)  'We want this value to
always be true for new MBs.
             ' enable immediate-logon for the user
             PutProp("msExchUserAccountControl", 0) 'just added this on
7/5/2005.
             adsUser.CommitChanges()

Richard

Not if you don't have an Exchange 2000/2003 server.



You'll have to move to PowerShell.



Regards,



Michael B. Smith

MCITP:SA,EMA/MCSE/Exchange MVP

http://TheEssentialExchange.com



From: ADSIANDDirectoryServices@yahoogroups.com
[mailto:ADSIANDDirectoryServices@yahoogroups.com] On Behalf Of Yantis,
Richard
Sent: Tuesday, September 09, 2008 11:13 PM
To: ADSIANDDirectoryServices@yahoogroups.com
Subject: [ADSI-DirSrv] Creating a mailbox



We have been using the code below for a few years to create all of the
mailboxes for our university. We are moving from Exchange 2003 to
Exchange 2007 and have already move AD to 2008. Is my CDOEXM still
going to work?

Dim IMailbox As CDOEXM.IMailboxStore =
CType(adsUser.NativeObject, CDOEXM.IMailboxStore)
MDBURL = "LDAP://" & adsHost & "/" &
mdbData.GetMDBURL(mdbStoreData) & "," & adsRoot
IMailbox.CreateMailbox(MDBURL)
PutProp("mailNickname", adsUser.Username) 'use
samAccountName as mailNickname
PutProp("proxyAddresses", "SMTP:" & eMailAddress & "@" &
adsDomain)
PutProp("mDBUseDefaults", True) 'We want this value to
always be true for new MBs.
' enable immediate-logon for the user
PutProp("msExchUserAccountControl", 0) 'just added this on
7/5/2005.
adsUser.CommitChanges()

Richard





[Non-text portions of this message have been removed]

Is the below good info on how to do that?  Seems quite a bit more
involved than what I have now.  I am creating the accounts and mailboxes
from asp.Net.

< You can call the powershell cmdlets directly (and in-process) from
your
< application. If you wan't to do this in a web-page, you'll have to
separate
< the call to the cmdlet from the website (UI) and put it in a COM+
application.
<
< See http://msdn2.microsoft.com/en-us/library/bb332449.aspx.

-----Original Message-----
From: ADSIANDDirectoryServices@yahoogroups.com
[mailto:ADSIANDDirectoryServices@yahoogroups.com] On Behalf Of Michael
B. Smith
Sent: Wednesday, September 10, 2008 3:45 AM
To: ADSIANDDirectoryServices@yahoogroups.com
Subject: RE: [ADSI-DirSrv] Creating a mailbox

Not if you don't have an Exchange 2000/2003 server.

You'll have to move to PowerShell.

Regards,

Michael B. Smith
MCITP:SA,EMA/MCSE/Exchange MVP
http://TheEssentialExchange.com


From: ADSIANDDirectoryServices@yahoogroups.com
[mailto:ADSIANDDirectoryServices@yahoogroups.com] On Behalf Of Yantis,
Richard
Sent: Tuesday, September 09, 2008 11:13 PM
To: ADSIANDDirectoryServices@yahoogroups.com
Subject: [ADSI-DirSrv] Creating a mailbox



We have been using the code below for a few years to create all of the
mailboxes for our university. We are moving from Exchange 2003 to
Exchange 2007 and have already move AD to 2008. Is my CDOEXM still
going to work?

Dim IMailbox As CDOEXM.IMailboxStore =
CType(adsUser.NativeObject, CDOEXM.IMailboxStore)
MDBURL = "LDAP://" & adsHost & "/" &
mdbData.GetMDBURL(mdbStoreData) & "," & adsRoot
IMailbox.CreateMailbox(MDBURL)
PutProp("mailNickname", adsUser.Username) 'use
samAccountName as mailNickname
PutProp("proxyAddresses", "SMTP:" & eMailAddress & "@" &
adsDomain)
PutProp("mDBUseDefaults", True) 'We want this value to
always be true for new MBs.
' enable immediate-logon for the user
PutProp("msExchUserAccountControl", 0) 'just added this on
7/5/2005.
adsUser.CommitChanges()

Richard





[Non-text portions of this message have been removed]


------------------------------------

Yahoo! Groups Links

Yes, that's one way to do it and it's a lot more powerful than CDOEXM. With
that comes more complexity.



An easier way, if you don't need all the control, is just to shell out and
call PowerShell. That is:



                 %comspec% powershell.exe "&{new-exchangemailbox ..}"



Etc.etc.



Regards,



Michael B. Smith

MCITP:SA,EMA/MCSE/Exchange MVP

http://TheEssentialExchange.com



From: ADSIANDDirectoryServices@yahoogroups.com
[mailto:ADSIANDDirectoryServices@yahoogroups.com] On Behalf Of Yantis,
Richard
Sent: Wednesday, September 10, 2008 7:06 AM
To: ADSIANDDirectoryServices@yahoogroups.com
Subject: RE: [ADSI-DirSrv] Creating a mailbox



Is the below good info on how to do that? Seems quite a bit more
involved than what I have now. I am creating the accounts and mailboxes
from asp.Net.

< You can call the powershell cmdlets directly (and in-process) from
your
< application. If you wan't to do this in a web-page, you'll have to
separate
< the call to the cmdlet from the website (UI) and put it in a COM+
application.
<
< See http://msdn2.microsoft.com/en-us/library/bb332449.aspx.

-----Original Message-----
From: ADSIANDDirectoryServices@yahoogroups.com
<mailto:ADSIANDDirectoryServices%40yahoogroups.com>
[mailto:ADSIANDDirectoryServices@yahoogroups.com
<mailto:ADSIANDDirectoryServices%40yahoogroups.com> ] On Behalf Of Michael
B. Smith
Sent: Wednesday, September 10, 2008 3:45 AM
To: ADSIANDDirectoryServices@yahoogroups.com
<mailto:ADSIANDDirectoryServices%40yahoogroups.com>
Subject: RE: [ADSI-DirSrv] Creating a mailbox

Not if you don't have an Exchange 2000/2003 server.

You'll have to move to PowerShell.

Regards,

Michael B. Smith
MCITP:SA,EMA/MCSE/Exchange MVP
http://TheEssentialExchange.com


From: ADSIANDDirectoryServices@yahoogroups.com
<mailto:ADSIANDDirectoryServices%40yahoogroups.com>
[mailto:ADSIANDDirectoryServices@yahoogroups.com
<mailto:ADSIANDDirectoryServices%40yahoogroups.com> ] On Behalf Of Yantis,
Richard
Sent: Tuesday, September 09, 2008 11:13 PM
To: ADSIANDDirectoryServices@yahoogroups.com
<mailto:ADSIANDDirectoryServices%40yahoogroups.com>
Subject: [ADSI-DirSrv] Creating a mailbox

We have been using the code below for a few years to create all of the
mailboxes for our university. We are moving from Exchange 2003 to
Exchange 2007 and have already move AD to 2008. Is my CDOEXM still
going to work?

Dim IMailbox As CDOEXM.IMailboxStore =
CType(adsUser.NativeObject, CDOEXM.IMailboxStore)
MDBURL = "LDAP://" & adsHost & "/" &
mdbData.GetMDBURL(mdbStoreData) & "," & adsRoot
IMailbox.CreateMailbox(MDBURL)
PutProp("mailNickname", adsUser.Username) 'use
samAccountName as mailNickname
PutProp("proxyAddresses", "SMTP:" & eMailAddress & "@" &
adsDomain)
PutProp("mDBUseDefaults", True) 'We want this value to
always be true for new MBs.
' enable immediate-logon for the user
PutProp("msExchUserAccountControl", 0) 'just added this on
7/5/2005.
adsUser.CommitChanges()

Richard

[Non-text portions of this message have been removed]

------------------------------------

Yahoo! Groups Links





[Non-text portions of this message have been removed]

Hello

I am getting following error

Password couldn't be changed due to restrictions

Please advise

Ashish
--- In ADSIANDDirectoryServices@yahoogroups.com, Ken Manuel
<ken_pogi@...> wrote:
>
> What's the error you're encountering?
>
>
>
> ----- Original Message ----
> From: Ashish Kanoongo <ashishkanoongo@...>
> To: ADSIANDDirectoryServices@yahoogroups.com
> Sent: Wednesday, August 27, 2008 12:01:35 AM
> Subject: [ADSI-DirSrv] ADAM - Change Password using Sharepoint
>
>
> Hello
>
> I am trying to create/update an existing code which I used for SQL
> FBA Login. Now I am using same code with ADAM FBA Login. This code I
> am using for allowing user to change their Password. I tested same
> code succesfull with SQL FBA, but with ADAM it is giving error and
> throwing exception. Here is the code, please advise whats wrong I am
> doing
>
> *------ Code Start
> using System;
> using System.Runtime. InteropServices;
> using System.Web.UI;
> using System.Web.UI. WebControls;
> using System.Web.UI. WebControls. WebParts;
> using System.Xml.Serializ ation;
> using Microsoft.SharePoin t;
> using Microsoft.SharePoin t.WebControls;
> using Microsoft.SharePoin t.WebPartPages;
> using ActiveDs;
> using System.DirectorySer vices;
> using System.Web.Security ;
>
> namespace ADAMPasswordChange
> {
> [Guid("ad337165- 1119-4ac9- 8d0b-2ad102c9524 5")]
> public class ADAMPassword :
> Microsoft.SharePoin t.WebPartPages. WebPart
> {
> public ADAMPassword( )
> {
> this.ExportMode = WebPartExportMode. All;
> }
>
> private TextBox oldpassword;
> private TextBox newpassword;
> private TextBox checknewpassword;
>
> private string strLoginName;
> private string strUserName;
>
> private LinkButton btn;
> private Label output;
>
> protected override void CreateChildControls ()
> {
> this.oldpassword = new TextBox();
> this.oldpassword. TextMode = TextBoxMode. Password;
> this.Controls. Add(oldpassword) ;
>
> this.newpassword = new TextBox();
> this.newpassword. TextMode = TextBoxMode. Password;
> this.Controls. Add(newpassword) ;
>
> this.checknewpasswo rd = new TextBox();
> this.checknewpasswo rd.TextMode = TextBoxMode. Password;
> this.Controls. Add(checknewpass word);
>
> this.btn = new LinkButton() ;
> this.btn.Click += new EventHandler( btn_Click) ;
> this.btn.Text = "Change Password Now";
> this.Controls. Add(btn);
>
> this.output = new Label();
> this.Controls. Add(output) ;
>
> base.CreateChildCon trols();
> }
>
> void btn_Click(object sender, EventArgs e)
> {
>
> if (newpassword. Text.ToString( ) !=
> checknewpassword. Text.ToString( ))
> {
> output.Text += "<BR><b>Passwords don't match....</b> ";
> return;
> }
> //if (newpassword. Text.ToString( ) ==
> checknewpassword. Text.ToString( ))
> else
> {
> Boolean NTUser = true;
> try
> {
> //SPWeb webContext = SPControl.GetContex tWeb
> (Context);
> //strLoginName =
> webContext.CurrentU ser.LoginName. ToUpper() ;
>
> GetUserName( );
> //output.Text += strLoginName;
>
> if (strLoginName != @"SHAREPOINT\ SYSTEM")
> {
>
> if (!strLoginName. Contains( @"SERVER\ "))
> {
> //forms auth user
>
> NTUser = false;
> }
> }
>
> }
> catch
> {
> NTUser = false;
> }
>
> if (NTUser)
> {
>
> }
> else
> {
> try
> {
> //change password for the forms auth user
>
> //output.Text += strLoginName;
> //MembershipUser mUser = Membership.GetUser
> (GetUserName( ));
> DirectoryEntry entry = new DirectoryEntry
> ("LDAP://localhost: 389/CN=Users, O=ADAM,C= US", strLoginName,
> oldpassword. Text.ToString( ), AuthenticationTypes .None);
> //mUser.ChangePassw ord
> (oldpassword. Text.ToString( ), newpassword. Text.ToString( ));
> try
> {
> entry.Invoke( "SetPassword" , new object[]
> { newpassword. Text.ToString( ) });
> entry.CommitChanges ();
> output.Text += "<BR> <b>Password is
> changed</b>" ;
> }
> catch (Exception ex)
> {
> output.Text += "<b> Password couldn't be
> changed due to restrictions 1<b>";
> output.Text += ex.Message;
>
> }
>
> output.Text += "<BR> <b>Password is changed
> 1</b>";
>
> }
> catch (Exception error)
> {
> output.Text += "1 User Password Change
> Error:\n" + error.StackTrace. ToString( ) + "\n" +
> error.Message. ToString( );
> //output.Text += "<BR>" +
> error.Message. ToString( );
> }
> }
> }
> //else
> //{
> // output.Text += "<BR><b>Passwords don't
> match....</b> ";
> //}
> }
>
> protected override void Render(System. Web.UI.HtmlTextW riter
> writer)
> {
> //try
> //{
> // SPWeb webContext = SPControl.GetContex tWeb(Context) ;
> // strLoginName = webContext.CurrentU ser.Name. ToUpper
> ();
> //}
> //catch (Exception)
> //{
> // output.Text += "<BR> <b>Please sign in first using
> the 'Sign In' button above</b>";
> //}
> EnsureChildControls ();
> GetUserName( );
> if (strLoginName != string.Empty)
> {
> writer.Write( "<table border=0>");
> writer.Write( "<tr>");
> writer.Write( "<td class='ms-vb' >");
> writer.Write( "User Name:");
> writer.Write( "</td>");
> writer.Write( "<td class='ms-vb' ><b>");
> writer.Write( strLoginName) ;
> writer.Write( "<b></td> ");
> writer.Write( "<td class='ms-vb' >");
> writer.Write( "</td>");
> writer.Write( "</tr>");
> writer.Write( "<tr><td colspan='3'> </td></tr> ");
> writer.Write( "<tr>");
> writer.Write( "<td class='ms-vb' >");
> writer.Write( "Current password:");
> writer.Write( "</td>");
> writer.Write( "<td class='ms-vb' >");
> oldpassword. RenderControl( writer);
> writer.Write( "</td>");
> writer.Write( "<td class='ms-vb' >");
> writer.Write( "</td>");
> writer.Write( "</tr>");
> writer.Write( "<tr valign='top' >");
> writer.Write( "<td class='ms-vb' >");
> writer.Write( "New password:");
> writer.Write( "</td>");
> writer.Write( "<td class='ms-vb' >");
> newpassword. RenderControl( writer);
> writer.Write( "</td>");
> writer.Write( "<td class='ms-vb' >");
> writer.Write( "</td>");
> writer.Write( "</tr>");
> writer.Write( "<tr valign='top' >");
> writer.Write( "<td class='ms-vb' >");
> writer.Write( "Confirm new password:");
> writer.Write( "</td>");
> writer.Write( "<td class='ms-vb' >");
> checknewpassword. RenderControl( writer);
> writer.Write( "</td>");
> writer.Write( "<td class='ms-vb' >");
> writer.Write( "</tr>");
> writer.Write( "<tr valign='top' >");
> writer.Write( "</td>");
> writer.Write( "<td class='ms-vb' >");
> writer.Write( "</td>");
> writer.Write( "<td class='ms-vb' >");
> btn.RenderControl( writer);
> writer.Write( "</td>");
> writer.Write( "<td class='ms-vb' >");
> writer.Write( "</td>");
> writer.Write( "</tr>");
> writer.Write( "</table> ");
> output.RenderContro l(writer) ;
> }
> else
> {
> output.RenderContro l(writer) ;
> }
> }
>
> string GetUserName( )
> {
> strUserName = "";
>
> try
> {
> SPWeb webContext = SPControl.GetContex tWeb(Context) ;
>
> strLoginName = webContext.CurrentU ser.Name. ToUpper() ;
> strUserName = webContext.CurrentU ser.LoginName. ToUpper
> ();
>
> string[] x = strUserName. Split(':' );
> if (x.Length > 1)
> {
> strUserName = x[1];
> }
> else
> {
> strUserName = x[0];
> }
> }
> catch
> {
> strUserName = "";
> }
> return strUserName;
> }
> }
> }
>
> *------ Code Ends
>
>
>
>
>
>
> [Non-text portions of this message have been removed]
>

Hello
 
I am getting following error
 
Login failure: unknown user name or bad password

 Regards

Ashish Kanoongo
732-491-7563




----- Original Message ----
From: Ken Manuel <ken_pogi@...>
To: ADSIANDDirectoryServices@yahoogroups.com
Sent: Tuesday, September 9, 2008 3:07:09 AM
Subject: Re: [ADSI-DirSrv] ADAM - Change Password using Sharepoint


What's the error you're encountering?

----- Original Message ----
From: Ashish Kanoongo <ashishkanoongo@ yahoo.com>
To: ADSIANDDirectorySer vices@yahoogroup s.com
Sent: Wednesday, August 27, 2008 12:01:35 AM
Subject: [ADSI-DirSrv] ADAM - Change Password using Sharepoint

Hello

I am trying to create/update an existing code which I used for SQL
FBA Login. Now I am using same code with ADAM FBA Login. This code I
am using for allowing user to change their Password. I tested same
code succesfull with SQL FBA, but with ADAM it is giving error and
throwing exception. Here is the code, please advise whats wrong I am
doing

*------ Code Start
using System;
using System.Runtime. InteropServices;
using System.Web.UI;
using System.Web.UI. WebControls;
using System.Web.UI. WebControls. WebParts;
using System.Xml.Serializ ation;
using Microsoft.SharePoin t;
using Microsoft.SharePoin t.WebControls;
using Microsoft.SharePoin t.WebPartPages;
using ActiveDs;
using System.DirectorySer vices;
using System.Web.Security ;

namespace ADAMPasswordChange
{
[Guid("ad337165- 1119-4ac9- 8d0b-2ad102c9524 5")]
public class ADAMPassword :
Microsoft.SharePoin t.WebPartPages. WebPart
{
public ADAMPassword( )
{
this.ExportMode = WebPartExportMode. All;
}

private TextBox oldpassword;
private TextBox newpassword;
private TextBox checknewpassword;

private string strLoginName;
private string strUserName;

private LinkButton btn;
private Label output;

protected override void CreateChildControls ()
{
this.oldpassword = new TextBox();
this.oldpassword. TextMode = TextBoxMode. Password;
this.Controls. Add(oldpassword) ;

this.newpassword = new TextBox();
this.newpassword. TextMode = TextBoxMode. Password;
this.Controls. Add(newpassword) ;

this.checknewpasswo rd = new TextBox();
this.checknewpasswo rd.TextMode = TextBoxMode. Password;
this.Controls. Add(checknewpass word);

this.btn = new LinkButton() ;
this.btn.Click += new EventHandler( btn_Click) ;
this.btn.Text = "Change Password Now";
this.Controls. Add(btn);

this.output = new Label();
this.Controls. Add(output) ;

base.CreateChildCon trols();
}

void btn_Click(object sender, EventArgs e)
{

if (newpassword. Text.ToString( ) !=
checknewpassword. Text.ToString( ))
{
output.Text += "<BR><b>Passwords don't match....</b> ";
return;
}
//if (newpassword. Text.ToString( ) ==
checknewpassword. Text.ToString( ))
else
{
Boolean NTUser = true;
try
{
//SPWeb webContext = SPControl.GetContex tWeb
(Context);
//strLoginName =
webContext.CurrentU ser.LoginName. ToUpper() ;

GetUserName( );
//output.Text += strLoginName;

if (strLoginName != @"SHAREPOINT\ SYSTEM")
{

if (!strLoginName. Contains( @"SERVER\ "))
{
//forms auth user

NTUser = false;
}
}

}
catch
{
NTUser = false;
}

if (NTUser)
{

}
else
{
try
{
//change password for the forms auth user

//output.Text += strLoginName;
//MembershipUser mUser = Membership.GetUser
(GetUserName( ));
DirectoryEntry entry = new DirectoryEntry
("LDAP://localhost: 389/CN=Users, O=ADAM,C= US", strLoginName,
oldpassword. Text.ToString( ), AuthenticationTypes .None);
//mUser.ChangePassw ord
(oldpassword. Text.ToString( ), newpassword. Text.ToString( ));
try
{
entry.Invoke( "SetPassword" , new object[]
{ newpassword. Text.ToString( ) });
entry.CommitChanges ();
output.Text += "<BR> <b>Password is
changed</b>" ;
}
catch (Exception ex)
{
output.Text += "<b> Password couldn't be
changed due to restrictions 1<b>";
output.Text += ex.Message;

}

output.Text += "<BR> <b>Password is changed
1</b>";

}
catch (Exception error)
{
output.Text += "1 User Password Change
Error:\n" + error.StackTrace. ToString( ) + "\n" +
error.Message. ToString( );
//output.Text += "<BR>" +
error.Message. ToString( );
}
}
}
//else
//{
// output.Text += "<BR><b>Passwords don't
match....</b> ";
//}
}

protected override void Render(System. Web.UI.HtmlTextW riter
writer)
{
//try
//{
// SPWeb webContext = SPControl.GetContex tWeb(Context) ;
// strLoginName = webContext.CurrentU ser.Name. ToUpper
();
//}
//catch (Exception)
//{
// output.Text += "<BR> <b>Please sign in first using
the 'Sign In' button above</b>";
//}
EnsureChildControls ();
GetUserName( );
if (strLoginName != string.Empty)
{
writer.Write( "<table border=0>");
writer.Write( "<tr>");
writer.Write( "<td class='ms-vb' >");
writer.Write( "User Name:");
writer.Write( "</td>");
writer.Write( "<td class='ms-vb' ><b>");
writer.Write( strLoginName) ;
writer.Write( "<b></td> ");
writer.Write( "<td class='ms-vb' >");
writer.Write( "</td>");
writer.Write( "</tr>");
writer.Write( "<tr><td colspan='3'> </td></tr> ");
writer.Write( "<tr>");
writer.Write( "<td class='ms-vb' >");
writer.Write( "Current password:");
writer.Write( "</td>");
writer.Write( "<td class='ms-vb' >");
oldpassword. RenderControl( writer);
writer.Write( "</td>");
writer.Write( "<td class='ms-vb' >");
writer.Write( "</td>");
writer.Write( "</tr>");
writer.Write( "<tr valign='top' >");
writer.Write( "<td class='ms-vb' >");
writer.Write( "New password:");
writer.Write( "</td>");
writer.Write( "<td class='ms-vb' >");
newpassword. RenderControl( writer);
writer.Write( "</td>");
writer.Write( "<td class='ms-vb' >");
writer.Write( "</td>");
writer.Write( "</tr>");
writer.Write( "<tr valign='top' >");
writer.Write( "<td class='ms-vb' >");
writer.Write( "Confirm new password:");
writer.Write( "</td>");
writer.Write( "<td class='ms-vb' >");
checknewpassword. RenderControl( writer);
writer.Write( "</td>");
writer.Write( "<td class='ms-vb' >");
writer.Write( "</tr>");
writer.Write( "<tr valign='top' >");
writer.Write( "</td>");
writer.Write( "<td class='ms-vb' >");
writer.Write( "</td>");
writer.Write( "<td class='ms-vb' >");
btn.RenderControl( writer);
writer.Write( "</td>");
writer.Write( "<td class='ms-vb' >");
writer.Write( "</td>");
writer.Write( "</tr>");
writer.Write( "</table> ");
output.RenderContro l(writer) ;
}
else
{
output.RenderContro l(writer) ;
}
}

string GetUserName( )
{
strUserName = "";

try
{
SPWeb webContext = SPControl.GetContex tWeb(Context) ;

strLoginName = webContext.CurrentU ser.Name. ToUpper() ;
strUserName = webContext.CurrentU ser.LoginName. ToUpper
();

string[] x = strUserName. Split(':' );
if (x.Length > 1)
{
strUserName = x[1];
}
else
{
strUserName = x[0];
}
}
catch
{
strUserName = "";
}
return strUserName;
}
}
}

*------ Code Ends

[Non-text portions of this message have been removed]






[Non-text portions of this message have been removed]

Hi, Here is the code that i am using to authenticate a user. this
works fine when i work with localhost(asp.net 2005 inbuilt iis). but
when i deployed the page to a IIS webserver then it throws "An
operations error occurred".

Here is my code:

  bool IsExistInAD(string loginName)
     {
         string userName = loginName;
         bool retVal = false;

         try
         {
     string strLDAP = "LDAP://cn=xxxx,ou=xxxDistribution Lists,ou=ZZ
DXB,ou=domainname,dc=SD01,dc=domainname,dc=st";

             DirectoryEntry objDirEntry = new DirectoryEntry
(strLDAP, "domainname\\username", "password",
AuthenticationTypes.Secure);
             //objDirEntry.Path =
             Response.Write(objDirEntry.Username.ToString());
             DirectorySearcher search = new DirectorySearcher
(objDirEntry);

             search.Filter = String.Format("(SAMAccountName={0})",
userName);
             search.PropertiesToLoad.Add("cn");

             SearchResult result = search.FindOne();

             if (result == null)
             {
                 retVal= false;
             }
             else
             {
                 retVal= true;
             }
         }
         catch (Exception ex)
         {
             Response.Write("IsExistInAD - " + ex.Message.ToString()
+ "<br>");
             Response.Write("IsExistInAD - " + ex.Source.ToString()
+ "<br>");
             //Response.Write(userName);
         }
         Response.Write(retVal.ToString());
         return retVal;
     }


ALWAYS IT RETURNS FALSE...

Hi everybody,

I want to authenticate users from multiple active directory domains. It was
working fine with Application Pool Identity "NetWork Servcie" but failed to work
when I changed the Application Pool Identity to "Local System". But I have to do
this change due to some issues in document generation but my authentication to
cross Domains is failed. Is there any solution to this???????????

Please help for this issue. Code for Active Directory User Authentication is
given below.


         Dim Result As Boolean
         Dim objDirectoryEntry As New DirectoryEntry
         objDirectoryEntry.Username = "userName"
         objDirectoryEntry.Password = "password"
         objDirectoryEntry.AuthenticationType = AuthenticationTypes.Secure
         objDirectoryEntry.Path =
"LDAP://greatminds.org/CN=Users,DC=greatminds,DC=org"

         Try
             Dim objProp As PropertyCollection = objDirectoryEntry.Properties
             Dim tempCount As Integer
             tempCount = objProp.Count
             Result = True
         Catch ex As Exception
         End Try


Regards,Azeem






________________________________
From: ADSIANDDirectoryServices Moderator
<ADSIANDDirectoryServices-owner@yahoogroups.com>
To: imazeemahmad@...
Sent: Friday, October 24, 2008 5:47:00 PM
Subject: File - guidconverter.zip



File        : guidconverter.zip
Description : Guid Converter for creating and converting GUIDs to all the
various formats that LDAP needs (octet, LDAP filter, base64 for LDIF, etc.)

Your use of Yahoo! Groups is subject to http://docs.yahoo.com/info/terms/




[Non-text portions of this message have been removed]

that is probably you are running your code in localhost as admin right, but if a
regular user access iis, they dont have it, then it will return error, what you
might do is put your code as component on iis, that should work for you

--- On Sun, 10/19/08, pio_richard <pio_richard@...> wrote:

From: pio_richard <pio_richard@...>
Subject: [ADSI-DirSrv] works as localhost but not in IIS
To: ADSIANDDirectoryServices@yahoogroups.com
Date: Sunday, October 19, 2008, 9:26 AM






Hi, Here is the code that i am using to authenticate a user. this
works fine when i work with localhost(asp. net 2005 inbuilt iis). but
when i deployed the page to a IIS webserver then it throws "An
operations error occurred".

Here is my code:

bool IsExistInAD( string loginName)
{
string userName = loginName;
bool retVal = false;

try
{
string strLDAP = "LDAP://cn=xxxx, ou=xxxDistributi on Lists,ou=ZZ
DXB,ou=domainname, dc=SD01,dc= domainname, dc=st";

DirectoryEntry objDirEntry = new DirectoryEntry
(strLDAP, "domainname\ \username" , "password",
AuthenticationTypes .Secure);
//objDirEntry. Path =
Response.Write( objDirEntry. Username. ToString( ));
DirectorySearcher search = new DirectorySearcher
(objDirEntry) ;

search.Filter = String.Format( "(SAMAccountName ={0})",
userName);
search.PropertiesTo Load.Add( "cn");

SearchResult result = search.FindOne( );

if (result == null)
{
retVal= false;
}
else
{
retVal= true;
}
}
catch (Exception ex)
{
Response.Write( "IsExistInAD - " + ex.Message.ToString ()
+ "<br>");
Response.Write( "IsExistInAD - " + ex.Source.ToString( )
+ "<br>");
//Response.Write( userName) ;
}
Response.Write( retVal.ToString( ));
return retVal;
}

ALWAYS IT RETURNS FALSE...


















[Non-text portions of this message have been removed]

Or perhaps look into the 'account impersonate' (account with admin rights)
setting to put into your web.config.



From: ADSIANDDirectoryServices@yahoogroups.com
[mailto:ADSIANDDirectoryServices@yahoogroups.com] On Behalf Of wei huang
Sent: Monday, October 27, 2008 8:36 AM
To: ADSIANDDirectoryServices@yahoogroups.com
Subject: Re: [ADSI-DirSrv] works as localhost but not in IIS



that is probably you are running your code in localhost as admin right, but
if a regular user access iis, they dont have it, then it will return error,
what you might do is put your code as component on iis, that should work for
you

--- On Sun, 10/19/08, pio_richard <pio_richard@...
<mailto:pio_richard%40hotmail.com> > wrote:

From: pio_richard <pio_richard@...
<mailto:pio_richard%40hotmail.com> >
Subject: [ADSI-DirSrv] works as localhost but not in IIS
To: ADSIANDDirectoryServices@yahoogroups.com
<mailto:ADSIANDDirectoryServices%40yahoogroups.com>
Date: Sunday, October 19, 2008, 9:26 AM

Hi, Here is the code that i am using to authenticate a user. this
works fine when i work with localhost(asp. net 2005 inbuilt iis). but
when i deployed the page to a IIS webserver then it throws "An
operations error occurred".

Here is my code:

bool IsExistInAD( string loginName)
{
string userName = loginName;
bool retVal = false;

try
{
string strLDAP = "LDAP://cn=xxxx, ou=xxxDistributi on Lists,ou=ZZ
DXB,ou=domainname, dc=SD01,dc= domainname, dc=st";

DirectoryEntry objDirEntry = new DirectoryEntry
(strLDAP, "domainname\ \username" , "password",
AuthenticationTypes .Secure);
//objDirEntry. Path =
Response.Write( objDirEntry. Username. ToString( ));
DirectorySearcher search = new DirectorySearcher
(objDirEntry) ;

search.Filter = String.Format( "(SAMAccountName ={0})",
userName);
search.PropertiesTo Load.Add( "cn");

SearchResult result = search.FindOne( );

if (result == null)
{
retVal= false;
}
else
{
retVal= true;
}
}
catch (Exception ex)
{
Response.Write( "IsExistInAD - " + ex.Message.ToString ()
+ "<br>");
Response.Write( "IsExistInAD - " + ex.Source.ToString( )
+ "<br>");
//Response.Write( userName) ;
}
Response.Write( retVal.ToString( ));
return retVal;
}

ALWAYS IT RETURNS FALSE...

[Non-text portions of this message have been removed]





[Non-text portions of this message have been removed]

Let me pick this thread back up since I am getting closer to having
to make the coding change to Exchange 2007.  For now we are running a
mix of Exchange 2003 and 2007 servers.  I am a programmer, not an
Exchange administrator.

We have a web page that allows new students to the university to
create their account and mailbox. Does the PowerShell cmdlet to
create the mailbox need to run on the Exchange server itself or can
it run from the web server where the ASP.Net runs?

Thanks for any help.

richard

--- In ADSIANDDirectoryServices@yahoogroups.com, "Michael B. Smith"
<michael@...> wrote:
>
> Yes, that's one way to do it and it's a lot more powerful than
CDOEXM. With
> that comes more complexity.
>
>
>
> An easier way, if you don't need all the control, is just to shell
out and
> call PowerShell. That is:
>
>
>
>                 %comspec% powershell.exe "&{new-exchangemailbox ..}"
>
>
>
> Etc.etc.
>
>
>
> Regards,
>
>
>
> Michael B. Smith
>
> MCITP:SA,EMA/MCSE/Exchange MVP
>
> http://TheEssentialExchange.com
>
>
>
> From: ADSIANDDirectoryServices@yahoogroups.com
> [mailto:ADSIANDDirectoryServices@yahoogroups.com] On Behalf Of
Yantis,
> Richard
> Sent: Wednesday, September 10, 2008 7:06 AM
> To: ADSIANDDirectoryServices@yahoogroups.com
> Subject: RE: [ADSI-DirSrv] Creating a mailbox
>
>
>
> Is the below good info on how to do that? Seems quite a bit more
> involved than what I have now. I am creating the accounts and
mailboxes
> from asp.Net.
>
> < You can call the powershell cmdlets directly (and in-process) from
> your
> < application. If you wan't to do this in a web-page, you'll have to
> separate
> < the call to the cmdlet from the website (UI) and put it in a COM+
> application.
> <
> < See http://msdn2.microsoft.com/en-us/library/bb332449.aspx.
>
> -----Original Message-----
> From: ADSIANDDirectoryServices@yahoogroups.com
> <mailto:ADSIANDDirectoryServices%40yahoogroups.com>
> [mailto:ADSIANDDirectoryServices@yahoogroups.com
> <mailto:ADSIANDDirectoryServices%40yahoogroups.com> ] On Behalf Of
Michael
> B. Smith
> Sent: Wednesday, September 10, 2008 3:45 AM
> To: ADSIANDDirectoryServices@yahoogroups.com
> <mailto:ADSIANDDirectoryServices%40yahoogroups.com>
> Subject: RE: [ADSI-DirSrv] Creating a mailbox
>
> Not if you don't have an Exchange 2000/2003 server.
>
> You'll have to move to PowerShell.
>
> Regards,
>
> Michael B. Smith
> MCITP:SA,EMA/MCSE/Exchange MVP
> http://TheEssentialExchange.com
>
>
> From: ADSIANDDirectoryServices@yahoogroups.com
> <mailto:ADSIANDDirectoryServices%40yahoogroups.com>
> [mailto:ADSIANDDirectoryServices@yahoogroups.com
> <mailto:ADSIANDDirectoryServices%40yahoogroups.com> ] On Behalf Of
Yantis,
> Richard
> Sent: Tuesday, September 09, 2008 11:13 PM
> To: ADSIANDDirectoryServices@yahoogroups.com
> <mailto:ADSIANDDirectoryServices%40yahoogroups.com>
> Subject: [ADSI-DirSrv] Creating a mailbox
>
> We have been using the code below for a few years to create all of
the
> mailboxes for our university. We are moving from Exchange 2003 to
> Exchange 2007 and have already move AD to 2008. Is my CDOEXM still
> going to work?
>
> Dim IMailbox As CDOEXM.IMailboxStore =
> CType(adsUser.NativeObject, CDOEXM.IMailboxStore)
> MDBURL = "LDAP://" & adsHost & "/" &
> mdbData.GetMDBURL(mdbStoreData) & "," & adsRoot
> IMailbox.CreateMailbox(MDBURL)
> PutProp("mailNickname", adsUser.Username) 'use
> samAccountName as mailNickname
> PutProp("proxyAddresses", "SMTP:" & eMailAddress & "@" &
> adsDomain)
> PutProp("mDBUseDefaults", True) 'We want this value to
> always be true for new MBs.
> ' enable immediate-logon for the user
> PutProp("msExchUserAccountControl", 0) 'just added this on
> 7/5/2005.
> adsUser.CommitChanges()
>
> Richard
>
> [Non-text portions of this message have been removed]
>
> ------------------------------------
>
> Yahoo! Groups Links
>
>
>
>
>
> [Non-text portions of this message have been removed]
>

Hello

We are using ADAM with MOSS. I want to generate a information for a
particular user i.e. user attribues using vbs. Is there any way to
generate this information?

Ashish

Hi everyone,

Im trying to get Password Policies and rights from a very huge amount
of servers where i work.  I could found some code from microsoft
documentation, using WMI, to capture Password policies, but these seams
to be local ones.

What im looking for are the password policies that comes from the DC.
So is it possible to do this with ADSI interface. Please get me some
help in this matter.

I also tried the secedit command in the powershell, but sometimes it
doesnt work and i make it dificult when im triying to get some data
remotely.

Thanks a lot in advance to the group. And sorry for the bad english.

Rodolfo
Peru

The ch12-pwd-expires.vbs script in
http://theessentialexchange.com/blogs/michael/archive/2008/05/22/chapter-12-
exchange-2003-scripting.aspx should give you everything you need.



Regards,



Michael B. Smith, MCITP:SA,EMA/MCSE/Exchange MVP

My blog: http://TheEssentialExchange.com/blogs/michael

Link with me at: http://www.linkedin.com/in/theessentialexchange



From: ADSIANDDirectoryServices@yahoogroups.com
[mailto:ADSIANDDirectoryServices@yahoogroups.com] On Behalf Of
vilchez.rodolfo
Sent: Thursday, November 27, 2008 7:00 PM
To: ADSIANDDirectoryServices@yahoogroups.com
Subject: [ADSI-DirSrv] A question to start using ADSI



Hi everyone,

Im trying to get Password Policies and rights from a very huge amount
of servers where i work. I could found some code from microsoft
documentation, using WMI, to capture Password policies, but these seams
to be local ones.

What im looking for are the password policies that comes from the DC.
So is it possible to do this with ADSI interface. Please get me some
help in this matter.

I also tried the secedit command in the powershell, but sometimes it
doesnt work and i make it dificult when im triying to get some data
remotely.

Thanks a lot in advance to the group. And sorry for the bad english.

Rodolfo
Peru





[Non-text portions of this message have been removed]

Can anyone here let me know how to Set newly created AD User's
Password ?

Actually I am creating a new user in Active Directory using my C#
code.
It is created successfully.
Now when I tried to Set the Password of that newly created user , it
gives me an exception message as follows:
"Exception has been thrown by the target of an invocation."

The InnerException message is as follows:

"The network path was not found. (Exception from HRESULT: 0x80070035)"

The C# code I am using to Set Password is as follows :
-------------------------------------------------------
DirectoryEntry parent = new DirectoryEntry
("RootLDAPPath", "username", "password", AuthenticationTypes.Secure);

DirectoryEntry ouCustomer = parent.Children.Find("OU=Customers");
DirectoryEntry user = ouCustomer.Children.Find
("CN=testinguser", "user");

user.AuthenticationType = AuthenticationTypes.Secure;
user.Invoke("SetPassword", new object[] { "wohkaun@123" });
user.CommitChanges();

In the same ballpark, here's what I do after the account has been created.

Web.config "account impersonate" comes to mind also, but that (or
equivalent) should already be in place if you're able to create the users, I
believe.





Const UF_DONT_EXPIRE_PASSWD = 6553

Const UF_PASSWD_CANT_CHANGE = 64



Dim user As IADsUser

user = GetObject("WinNT://servernamehere/" + txtUN.Text + ",user")

user.AccountDisabled = False

user.SetInfo()



Dim lUserFLags = user.Get("userFlags")

lUserFLags = lUserFLags Or UF_PASSWD_CANT_CHANGE

lUserFLags = lUserFLags Or UF_DONT_EXPIRE_PASSWD

user.Put("userFlags", lUserFLags)

user.SetInfo()



user.SetPassword(txtPassword.Text)

user.SetInfo()







From: ADSIANDDirectoryServices@yahoogroups.com
[mailto:ADSIANDDirectoryServices@yahoogroups.com] On Behalf Of tarakvbhatt
Sent: Wednesday, December 17, 2008 11:34 PM
To: ADSIANDDirectoryServices@yahoogroups.com
Subject: [ADSI-DirSrv] Set Active Directory User Password




Can anyone here let me know how to Set newly created AD User's
Password ?

Actually I am creating a new user in Active Directory using my C#
code.
It is created successfully.
Now when I tried to Set the Password of that newly created user , it
gives me an exception message as follows:
"Exception has been thrown by the target of an invocation."

The InnerException message is as follows:

"The network path was not found. (Exception from HRESULT: 0x80070035)"

The C# code I am using to Set Password is as follows :
-------------------------------------------------------
DirectoryEntry parent = new DirectoryEntry
("RootLDAPPath", "username", "password", AuthenticationTypes.Secure);

DirectoryEntry ouCustomer = parent.Children.Find("OU=Customers");
DirectoryEntry user = ouCustomer.Children.Find
("CN=testinguser", "user");

user.AuthenticationType = AuthenticationTypes.Secure;
user.Invoke("SetPassword", new object[] { "wohkaun@123" });
user.CommitChanges();





---------------------------------------------------------------------------
The information transmitted is intended only for the person or entity to
which it is addressed and may contain confidential or privileged material.
Any review, retransmission, dissemination or other use of, or taking of any
action in reliance upon, this information by persons or entities other than
the intended recipient is prohibited. If you received this in error, please
notify the sender and delete the material from your computer.
---------------------------------------------------------------------------


[Non-text portions of this message have been removed]

T,
   See code example that creates AD user and sets password.  It's VBA, but still
using ADSI:
http://rfltech.blogspot.com/2002/05/ocnetcreatenewuser-create-new-ad-user.html
<http://rfltech.blogspot.com/2002/05/ocnetcreatenewuser-create-new-ad-user.html>
Thanks, Robert

Robert Lawson
Senior Database Administrator/account administrator
Soka University of America
1 University Drive
Aliso Viejo, CA. 92656  USA
main: 949.480.4000 fax: 949.480.4258
direct: 949.480.4224 rlawson@...

________________________________

From: ADSIANDDirectoryServices@yahoogroups.com on behalf of tarakvbhatt
Sent: Wed 12/17/2008 9:33 PM
To: ADSIANDDirectoryServices@yahoogroups.com
Subject: [ADSI-DirSrv] Set Active Directory User Password




Can anyone here let me know how to Set newly created AD User's
Password ?

Actually I am creating a new user in Active Directory using my C#
code.
It is created successfully.
Now when I tried to Set the Password of that newly created user , it
gives me an exception message as follows:
"Exception has been thrown by the target of an invocation."

The InnerException message is as follows:

"The network path was not found. (Exception from HRESULT: 0x80070035)"

The C# code I am using to Set Password is as follows :
-------------------------------------------------------
DirectoryEntry parent = new DirectoryEntry
("RootLDAPPath", "username", "password", AuthenticationTypes.Secure);

DirectoryEntry ouCustomer = parent.Children.Find("OU=Customers");
DirectoryEntry user = ouCustomer.Children.Find
("CN=testinguser", "user");

user.AuthenticationType = AuthenticationTypes.Secure;
user.Invoke("SetPassword", new object[] { "wohkaun@123" });
user.CommitChanges();






[Non-text portions of this message have been removed]

Hello

I have created 3 ADAM Instance. How do I remove 1 instance including
their configuration instance also.

Is there any GUI tool available on ADAM other then ADSIEdit utility for
useer maint?