LDAP Authentication

Question

Hi I am badly stucked in implementing LDAP Authentication. My moto is to find OU or(Groups) based on Username.Means find a particular group for user based on Username.I am trying below way but not getting what I expecting.Since my credentials are valid it throws an exception The user name or password is incorrect.: Snap 1: DirectoryEntry entry = new DirectoryEntry( LDAP://IP Address:Port/CN=UsersDC=domainDC=com usernamepassword); DirectorySearcher ds = new DirectorySearcher(entry); ds.Filter = (&(objectClass=user)(cn= + username + )) ; SearchResult results = ds.FindOne(); Snap 2 : The below code snippet works fine but it only confirms Authentication for me: using (LdapConnection ldap = new LdapConnection(ConfigurationManager.ConnectionStrings[ ADConnectionString ].ConnectionString)) { ldap.AuthType = AuthType.Basic; ldap.SessionOptions.ProtocolVersion = 3; // Distinguished name is reuired to pass to the bind method string distinguishedName = cn= + username + ou=Usersdc=domaindc=com ; ldap.Bind( new NetworkCredential(distinguishedName password)); } Please Correct Me ! As I am New to LDAP I don't know whats the replacement code for above circumstance . 1. Can I use any LDAP conection object or property so that I need not create any DirectoryEntry parameter (String PathString UsernameString password) ? 2. I have pair of two credentials set. One for Connection string to LDAP server and second one is for user. I tried both . But didn't find any way out. 3 . How to create connection string for LDAP or DirectoryEntry as connection parameter.? Thanks In advance.

Vaibhav Deshmukh · Answer

Hi Ramesh Thanks for reply. I tried out your solution but still I am facing same issue. Can you please clear my doubt once. I have credentials for connecting LDAP server as well as User credentials. So First I need to validate connection string with LDAP server credentials and then validate with User credentials. I am right or going in wrong way. Please correct me else.

Vaibhav Deshmukh · Answer

Hi Nitin Sontakke Sir Thanks for quick reply. Just now I referred link that you shared with me.But the problem is: LDAP://DC=YourCompanyDC=com I replaced this with my values still happening same. Yes. I tested it for another user.

Nitin Sontakke · Answer

I think first is fine. What is your intention of and then part? You can just logon to AD and do search.

Ramesh Palanivel · Answer

Hi Vaibhav you are going right way!.. If once the LDAP credential is success  it will goes to next line to validate the user credential.. Kindly try with this below step To access the LADP connection you should have administrator access to access LDAP DIrectory. Please Ensure your credential details whether its has administrator access or not... In beginning I faced this issue and entered proper administrator credential. For the reason you may not connect the LDAP Directory.. Kindly check

Ramesh Palanivel · Answer

Hi Vaibhav Kindly try this code its worked for me public UserDetails ValidateUser(string UserName string Password) { var userDetails = new UserDetails(); try { //TO:DO Web Config AD string DomainPath = LDAP://10.10.10.131; // IP address of active directory server machine DirectoryEntry searchRoot = new DirectoryEntry(DomainPath UserName Password AuthenticationTypes.Secure); DirectorySearcher search = new DirectorySearcher(searchRoot); SearchResult result = search.FindOne(); if (result != null) { userDetails = _repository.GetValidUserDetails(UserName Password true); } return userDetails; } catch (Exception ex) { //TODO : call the LOG to pass the exception return userDetails; } }

Nitin Sontakke · Answer

Have you had a look at this? http://stackoverflow.com/questions/5347096/how-can-i-get-a-list-of-organizational-units-from-active-directory What do you mean by  but it only confirms Authentication for me? How have you tested it for another user?