Solved

Membership.ValidateUser returns error message The server is unwilling to process the request. (Exception from HRESULT: 0x80072035)

Posted on 2010-09-08
6
1,041 Views
Last Modified: 2013-11-08
I currently have a web site that is integrated with Active Directory using the MemberShip provider.  Everything works fine and I can create/edit/ and change passwords for users. Occasionally a user gets hung and calling the ValidateUser method returns  "The server is unwilling to process the request. (Exception from HRESULT: 0x80072035)" for a particular user.  The only way around this is to delete and add the account again.  Other users can continue to log in to the system.

Here is the method call : Membership.ValidateUser(uid, pwd);
0
Comment
Question by:zekuczynski
  • 3
  • 3
6 Comments
 
LVL 5

Expert Comment

by:LlamaJoe
ID: 33632891
In a brief web search - I found a number of references to this error and the user not having a password that met the Password policy as defined on the domain controller.  So ensure that the GUI enforces the same password policy as AD.
0
 

Author Comment

by:zekuczynski
ID: 33637067
I did.  I even set it to a password that I used to reset mine that did not conflict with the password policy.  Still no luck.  The domain lets me change the password for this user and I can get the user using GetUser(userid).  I still get this error when I try to validate the account.
0
 
LVL 5

Expert Comment

by:LlamaJoe
ID: 33668708
have you defined a machine key in your web.config?  this will ensure that the password hash is always the same.

try this tool to create a machine.key value - http://aspnetresources.com/tools/machineKey 
0
Industry Leaders: We Want Your Opinion!

We value your feedback.

Take our survey and automatically be enter to win anyone of the following:
Yeti Cooler, Amazon eGift Card, and Movie eGift Card!

 

Author Comment

by:zekuczynski
ID: 33674339
Yes we do have a machinekey in the web.config file
0
 
LVL 5

Accepted Solution

by:
LlamaJoe earned 500 total points
ID: 33678183
can I assume you have both encryption and decryption keys defined?
0
 

Author Closing Comment

by:zekuczynski
ID: 33852208
I will continue to research this further.
0

Featured Post

Forrester Webinar: xMatters Delivers 261% ROI

Guest speaker Dean Davison, Forrester Principal Consultant, explains how a Fortune 500 communication company using xMatters found these results: Achieved a 261% ROI, Experienced $753,280 in net present value benefits over 3 years and Reduced MTTR by 91% for tier 1 incidents.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

A company’s centralized system that manages user data, security, and distributed resources is often a focus of criminal attention. Active Directory (AD) is no exception. In truth, it’s even more likely to be targeted due to the number of companies …
This article demonstrates probably the easiest way to configure domain-wide tier isolation within Active Directory. If you do not know tier isolation read https://technet.microsoft.com/en-us/windows-server-docs/security/securing-privileged-access/s…
This tutorial will walk an individual through the process of transferring the five major, necessary Active Directory Roles, commonly referred to as the FSMO roles to another domain controller. Log onto the new domain controller with a user account t…
Attackers love to prey on accounts that have privileges. Reducing privileged accounts and protecting privileged accounts therefore is paramount. Users, groups, and service accounts need to be protected to help protect the entire Active Directory …

749 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question