August's CompTIA IT Fundamentals course includes 19 hours of basic computer principle modules and prepares you for the certification exam. It's free for Premium Members, Team Accounts, and Qualified Experts!
COURSE of the MONTH
14 days, 6 hours left to enrollBecome a Premium Member and unlock a new, free course in leading technologies each month.
Solved
ASP - LDAP Authentication
Posted on 2011-03-04
Hi,
i am trying to Authenticate user using LDAP on win2003 from my ASP application.
i always get result as "Failed" when ever i run this code even for existing users.
please correct my code where ever .
ASP -> legacy
FYI, i have another code which works fine and retrieves UserName - Emai l- Phonenumber when Passed userID
for the same LDAP://Domain
i am trying to Authenticate user using LDAP on win2003 from my ASP application.
i always get result as "Failed" when ever i run this code even for existing users.
please correct my code where ever .
ASP -> legacy
FYI, i have another code which works fine and retrieves UserName - Emai l- Phonenumber when Passed userID
for the same LDAP://Domain
function AuthenticateUser(UserName, Password, Domain)
dim strUser
' assume failure
AuthenticateUser = false
strUser = UserName
strPassword = Password
'response.write(UserName&"---"&Password)
strQuery = "SELECT cn FROM 'LDAP://" & Domain & "' WHERE objectClass='*' "
set oConn = server.CreateObject("ADODB.Connection")
oConn.Provider = "ADsDSOOBJECT"
oConn.Properties("User ID") = strUser
oConn.Properties("Password") = strPassword
oConn.Properties("Encrypt Password") = true
oConn.open "DS Query", strUser, strPassword
set cmd = server.CreateObject("ADODB.Command")
set cmd.ActiveConnection = oConn
cmd.CommandText = strQuery
on error resume next
set oRS = cmd.Execute
if oRS.bof or oRS.eof then
AuthenticateUser = false
else
AuthenticateUser = true
end if
set oRS = nothing
set oConn = nothing
end function
[X]
Welcome to Experts Exchange
Add your voice to the tech community where 5M+ people just like you are talking about what matters.
- Help others & share knowledge
- Earn cash & points
- Learn & ask questions
2
3 Comments
may be missing domain in :
oConn.Properties("User ID") = strUser
must be oConn.Properties("User ID") = domain & "\" & strUser
can you try it and post result ?
oConn.Properties("User ID") = strUser
must be oConn.Properties("User ID") = domain & "\" & strUser
can you try it and post result ?
Hi Tuyau2poil,
Thank you for showing up.
i changed it to domain\strUser ... still the same error.
when i used "LDAP:\\Mydomain" in some other program to retrieve the user's Email & phone number it worked fine.
dont i have to use any Bind? ..
i would really apprecite ur help
-----below is the sample code that works in different scenario.-----------
Thank you for showing up.
i changed it to domain\strUser ... still the same error.
when i used "LDAP:\\Mydomain" in some other program to retrieve the user's Email & phone number it worked fine.
dont i have to use any Bind? ..
i would really apprecite ur help
-----below is the sample code that works in different scenario.-----------
sample code which tells i can talk to my LDAP server(Not the problem code but other code which is working to get Email-Phone for a specific User)
strBase = "<LDAP://mydomain>"
strFilter = "(sAMAccountName=" & strUID & ")"
strAttributes = "cn, mail, company, givenName, sn, ADsPath, name, sAMAccountName, telephoneNumber"
'strAttributes = "cn, company, givenName, sn, ADsPath, name, sAMAccountName, telephoneNumber"
strScope = "subtree"
strFullCommand = strBase & ";" & strFilter & ";" & strAttributes & ";" & strScope
set rsADUserInfo = Server.CreateObject("ADODB.Recordset")
set rsADUserInfo = connAD.Execute(strFullCommand)
Try this two functions : first just test if user exist, second test user authentication (same as your but rewrited).
note : Domain must be in LDAP notation : "dc=MyDOMAIN,dc=Local"
you can try with netbios name but I don't think it work.
1- this function return true if user exist :
Function testUserExist(strUser,Doma
dim oConn, Cmd, objRecordSet
if strUser = "" then testUserExist = false: exit function
Set oConn = CreateObject("ADODB.Connec
Set Cmd = CreateObject("ADODB.Comman
oConn.Provider = "ADsDSOObject"
oConn.Open "Active Directory Provider"
Set Cmd.ActiveConnection = oConn
Cmd.Properties("Searchscop
'Find some user's property
Cmd.CommandText = "SELECT ADSPath, givenName, sn, homeDirectory FROM 'LDAP://" & Domain & "' WHERE objectCategory='user' AND Name='" & strUser & "*'"
Set objRecordSet = Cmd.Execute
if objRecordSet.BOF and objRecordSet.EOF then
testUserExist = False
else
testUserExist = True
end if
end function
2- validating user authentication : (return 0 if OK, any other value if not OK)
function authenticateUser(username,
dim oConn
dim Cmd
dim objRecordSet
on error resume next
Set oConn = Server.CreateObject("ADODB
oConn.provider ="ADsDSOObject"
oConn.properties("user id")=username
oConn.properties("password
oConn.open "Active Directory Provider"
Set Cmd = CreateObject("ADODB.Comman
Set Cmd.ActiveConnection = oConn
Cmd.CommandText = "select sn from 'LDAP://" & domain & "' WHERE objectCategory='user' "
Set objRecordSet = Cmd.Execute
authenticateUser=err
objRecordSet.close
oConn.close
set objRecordSet=nothing
set Cmd=nothing
set oConn=nothing
end function
hope this will help
note : Domain must be in LDAP notation : "dc=MyDOMAIN,dc=Local"
you can try with netbios name but I don't think it work.
1- this function return true if user exist :
Function testUserExist(strUser,Doma
dim oConn, Cmd, objRecordSet
if strUser = "" then testUserExist = false: exit function
Set oConn = CreateObject("ADODB.Connec
Set Cmd = CreateObject("ADODB.Comman
oConn.Provider = "ADsDSOObject"
oConn.Open "Active Directory Provider"
Set Cmd.ActiveConnection = oConn
Cmd.Properties("Searchscop
'Find some user's property
Cmd.CommandText = "SELECT ADSPath, givenName, sn, homeDirectory FROM 'LDAP://" & Domain & "' WHERE objectCategory='user' AND Name='" & strUser & "*'"
Set objRecordSet = Cmd.Execute
if objRecordSet.BOF and objRecordSet.EOF then
testUserExist = False
else
testUserExist = True
end if
end function
2- validating user authentication : (return 0 if OK, any other value if not OK)
function authenticateUser(username,
dim oConn
dim Cmd
dim objRecordSet
on error resume next
Set oConn = Server.CreateObject("ADODB
oConn.provider ="ADsDSOObject"
oConn.properties("user id")=username
oConn.properties("password
oConn.open "Active Directory Provider"
Set Cmd = CreateObject("ADODB.Comman
Set Cmd.ActiveConnection = oConn
Cmd.CommandText = "select sn from 'LDAP://" & domain & "' WHERE objectCategory='user' "
Set objRecordSet = Cmd.Execute
authenticateUser=err
objRecordSet.close
oConn.close
set objRecordSet=nothing
set Cmd=nothing
set oConn=nothing
end function
hope this will help
Featured Post
Question has a verified solution.
If you are experiencing a similar issue, please ask a related question
I would like to start this tip/trick by saying Thank You, to all who said that this could not be done, as it forced me to make sure that it could be accomplished. :)
To start, I want to make sure everyone understands the importance of utilizing p…
This demonstration started out as a follow up to some recently posted questions on the subject of logging in: http://www.experts-exchange.com/Programming/Languages/Scripting/JavaScript/Q_28634665.html and http://www.experts-exchange.com/Programming/…
Michael from AdRem Software explains how to view the most utilized and worst performing nodes in your network, by accessing the Top Charts view in NetCrunch network monitor (https://www.adremsoft.com/). Top Charts is a view in which you can set seve…
In this video, Percona Solution Engineer Rick Golba discuss how (and why) you implement high availability in a database environment.
To discuss how Percona Consulting can help with your design and architecture needs for your database and infrastr…
Suggested Courses
Course of the Month14 days, 6 hours left to enroll
771 members asked questions and received personalized solutions in the past 7 days.
Join the community of 500,000 technology professionals and ask your questions.