.NET Tutorials, Forums, Interview Questions And Answers
Welcome :Guest
Sign In
Win Surprise Gifts!!!

Top 5 Contributors of the Month
Gaurav Pal
Post New Web Links

ActiveDirectory Security and LDAP Server Signing Requirements

Posted By:      Posted Date: May 22, 2011    Points: 0   Category :Windows Application



I am getting the following warning on my domain controllers in a testing environment.


“The security of this directory server can be significantly enhanced by configuring the server to reject SASL (Negotiate,  Kerberos, NTLM, or Digest) LDAP binds that do not request signing (integrity verification) and LDAP simple binds that  are performed on a cleartext (non-SSL/TLS-encrypted) connection.  Even if no clients are using such binds, configuring the server to reject them will improve the security of this server.


Some clients may currently be relying on unsigned SASL binds or LDAP simple binds over a non-SSL/TLS connection, and will stop working if this configuration change is made.  To assist in identifying these clients, if such binds occur this  directory server will log a summary event once every 24 hours indicating how many such binds  occurred.  You are encoura

View Complete Post

More Related Resource Links

LDAP - Can't find server


Hey people,

I would like to get a persons name from their username - a common query on forums i know, but i haven't managed to get mine working yet and any help would be appreciated.

I currently have this code that I found here: http://www.vbforums.com/showthread.php?t=612655 (Thanks Chris128)

I have adapted it from VB into VB.net. The page renders but when i enter my username into the Username textBox and hit the submit button (Which calls IsUser) I just get "The specified domain either does not exist or could not be contacted." I have tried lots of other code but I always get this response...

If anyone can help by posting links to a tutorial or another post for code that they know works, i will give it a go.


Imports System.DirectoryServices

Partial Class UserInfo
    Inherits System.Web.UI.Page

    Private Function GetRealNameFromAd(ByVal UsernameToFind As String) As String
        Using searcher As New DirectorySearcher(New DirectoryEntry())
            searcher.PageSize = 1000
            searcher.SearchScope = SearchScope.Subtree
            searcher.Filter = "(&(samAccountType=805306368)(sAMAccountName=" & UsernameToFind & "))"
            Using Results A

Security Briefs: Add a Security Bug Bar to Microsoft Team Foundation Server 2010


Take a peek inside Microsoft's strict development security structure as Bryan Sullivan describes the objective security bug classification system?the "bug bar"?used by internal product and online services teams. He will show you how to incorporate this classification system into your own development environment using Microsoft Team Foundation Server 2010.

Bryan Sullivan

MSDN Magazine March 2010

Hackers Beware: Keep Bad Guys at Bay with the Advanced Security Features in SQL Server 2005


Get a peek at the new security features in SQL Server 2005 from a developer's point of view. While there are lots of admin enhancements, there are also plenty of dev-specific security improvements you can take advantage of, such as endpoint authentication and support for the security context of managed code that executes on the server. Here Don Kiely elucidates.

Don Kiely

MSDN Magazine June 2005

Intrusion Prevention: Build Security Into Your Web Services with WSE 2.0 and ISA Server 2004


Once you've addressed security in your code, it's time to look at the environment it runs in. Firewalls stop unauthorized traffic from getting into your network, and smart Web service-specific firewalls, like the one that comes with Internet Security and Acceleration (ISA) Server 2004, bring XML intrusion prevention to your system for that added layer of safety.

Dino Esposito

MSDN Magazine November 2004

ISA Server 2004: Developing an Application Filter for Microsoft Internet Security and Acceleration S


The beta version of Internet Security and Acceleration (ISA) Server 2004 is now publicly available. It includes a rich SDK with several extensibility mechanisms that allow third parties to integrate their specialized solutions on top of the ISA platform. In this article, the author explores the application filter extensibility mechanism, which enables you to add high-level application layer filtering capabilities to ISA Server and to provide rich content filtering solutions. He also highlights the new features of the ISA Server 2004 SDK, then moves on to describe how to develop a basic application filter that monitors all data going through the ISA Server, and how to integrate a filter into the ISA Server management console to create a seamless interface experience for your users.

Yigal Edery

MSDN Magazine March 2004

Windows Server 2003: Discover Improved System Info, New Kernel, Debugging, Security, and UI APIs


There's a lot to say about Windows Server 2003. First of all, it's the first operating system with built-in .NET Framework support, and it's the first 64-bit OS from Microsoft. But wait, there's more! There are lots of new features and APIs in this version as well. For instance, Windows Server 2003 features Hot Add Memory and a number of other arcane new tidbits. There are new APIs for handling threads, directories, and files, and new features like the low fragmentation heap for managing memory and system information. There's vectored exception handling and new UI APIs as well.OS internals expert Matt Pietrek takes a look at the additions he finds most interesting and useful so you'll have a good place to start when you dive into Windows Server 2003.

Matt Pietrek

MSDN Magazine June 2003

Security Briefs: Exploring S4U Kerberos Extensions in Windows Server 2003


Building Web sites that provide services external to the corporate firewall is tricky. Usually it's not desirable to grant corporate domain accounts to external clients, and from a purely practical standpoint Kerberos does not work well over the Internet due to the typical configuration of client-side firewalls.

Keith Brown

MSDN Magazine April 2003

Active Server Pages+: ASP+ Improves Web App Deployment, Scalability, Security, and Reliability


ASP has been rebuilt from the ground up. The result? Active Server Pages+. ASP+, with a host of new features, provides for easier to write, cleaner code that's simple to reuse and share. ASP+ boosts performance and scalability by offering access to complied languages; development is more intuitive thanks to Web Forms; and an object-oriented foundation facilitates reuse. Other important features include page events, Web Controls, and caching. Server Controls and improvements in data binding are also new with ASP+. Libraries for use with ASP+, and the Microsoft .NET Framework which allows custom business functions to be exposed over the Web, provide more new development opportunities.

Dave Sussman

MSDN Magazine September 2000

Administrator and Developer Guide to Code Access Security in SharePoint Server 2007

Explore configuration options, get best practices for managing CAS in SharePoint environments, and walk through a complex CAS scenario.

Tips on using the SQL Server Security forum

I am collecting here a few tips on using this forum. The tips are actually pretty general, they're not really specific to SQL Server or to this particular SQL Server Security forum. 1. Verify that you are posting to the right forum. Check the list from http://forums.microsoft.com/MSDN/default.aspx?SiteID=1 to see whether there is a more appropriate forum for your discussion topic. By posting to the appropriate forum, you will be able to get an answer to your questions faster. 2. Try to avoid crossposting or posting the same issue several times. Do a search to see if your question was already answered. If you receive an answer on another forum, please update or remove your other posts on the same subject. 3. Please mark the posts that answer your questions using the "Mark as Answer" button. This will allow other readers to quickly identify the useful information in a thread. There can be more posts marked as answers in a single thread! 4. If you have posted on this forum but cannot find the post in it anymore, then it might have been moved to another forum. Check using the "My Threads" link: http://forums.microsoft.com/MSDN/User/MyForums.aspx?SiteID=1; it will show all the posts you've made and it will allow you to track a post that was moved to another forum. Also, consider enabling email notifications when a response is made to the threads you initiate. 5

SQL Server + ASP.NET Security Validation + HTML Markup Security

Hey everyone!I have an application, that for example, the customer gives me their Address. I store it in my database using the below code:        Dim connectionString As String = ConfigurationManager.ConnectionStrings("DMBConnstring").ConnectionString         Dim insertSql As String = "INSERT INTO BasicUserProfile(UserGuid, Firstname, Lastname, Nickname, Address1, City, State, Zip, DOB, Gender, SeekingGender, Sexuality, SeekingSexuality, HaveKids, WantKids, BodyType, SeekingBodyType, Ethnicity, SeekingEthnicity, Religion, SeekingReligion, Smoking, SeekingSmoking, Education, SeekingEducation, Relationship, SeekingRelationship) " _         & "VALUES (@UserGuid, @Firstname, @Lastname, @Nickname, @Address1, @City, @State, @Zip, @DOB, @Gender, @SeekingGender, @Sexuality, @SeekingSexuality, @HaveKids, @WantKids, @BodyType, @SeekingBodyType, @Ethnicity, @SeekingEthnicity, @Religion, @SeekingReligion, @Smoking, @SeekingSmoking, @Education, @SeekingEducation, @Relationship, @SeekingRelationship)"         Dim connectionString As String = ConfigurationManager.ConnectionStrings("myconnstring").ConnectionString        Dim insertSql As String = "INSERT INTO BasicUserProfile(UserGuid, Firstname, Lastname, Nickname, A

Passing security credentials to the third server

I have the following scenario.  An user uses the desktop application to call our WCF Service which has windows authentication.  The WCF Service calls the Office Communication Server (OCS) in order to do some custom work.  When the WCF Service calls OCS we have to pass an instance of NetWorkCredential into the call.  I want to pass in the original calling users NetworkCredential object into the OCS call rather than constructing it using a custom username and password.  How do I get access to the calling users NetworkCredential object from the WCF service and pass it to the OCS call?ThanksArjuna.

SQL Server Security > Logins vs. Databases > Security > Users

Why isn't all security needs done just in logins?  When migrating databases, the Logins are not brought over when restoring a backup.  It does not make sense.  Could it not be done all just in the Security > Logins area or why not?  That COULD be designed to track users and rights on various databases rather than a thing owned by each database....Thanks for your time.Gib

Simplify SQL Server 2008 Security

We are in the process of an application rewrite from the DB level up.  Our current DB is SQL2000 and we have just purchased SQL2008 R2.  I've read through various articles regarding Login's, Users and understand the difference.  I am confused about Schema's and their benefits. I have created two Login accounts as WindowsLogin1 and WebLogin1.  I have also created a database called MyDB with two tables T1 and T2.  I’ve also created a WindowsUser1 and WebUser1 user accounts.  So far so go, now for some questions: 1.       If I want WindowsUser1 to have Select, Delete, Insert, Update and Execute permissions on both T1 and T2 tables, should this be done with a role or schema (and how). 2.       If I want WebUser1 to only have Select, Delete, Insert, Update and Execute permissions on the T2 table, should this be done with a role or schema (and how). 3.       If we are using Schema’s for questions #1 and #2, do we construct two distinct schemas? 4.       What about stored procedures?  Should they be added as part of the schema (i.e. Server.MyDB.Schema1.myStoredProc1? 5.       Should the tables T1 and T2 be contained by the schema? 6.       Does adding schema

System.TypeLoadException: Could not load type 'Microsoft.Office.Server.Security.LdapMembershipProvi

So this is odd, I am attempting to setup FBA with Sharepoint Foundation 2010 and i get the following Error: (from ULS log viewer): System.TypeLoadException: Could not load type 'Microsoft.Office.Server.Security.LdapMembershipProvider' from assembly 'Microsoft.Office.Server, Version=, Culture=neutral, PublicKeyToken=71e9bce111e9429c'. at System.RuntimeTypeHandle._GetTypeByName(String name, Boolean throwOnError, Boolean ignoreCase, Boolean reflectionOnly, StackCrawlMark& stackMark, Boolean loadTypeFromPartialName) at System.RuntimeTypeHandle.GetTypeByName(String name, Boolean throwOnError, Boolean ignoreCase, Boolean reflectionOnly, StackCrawlMark& stackMark) at System.RuntimeType.PrivateGetType(String typeName, Boolean throwOnError, Boolean ignoreCase, Boolean reflectionOnly, StackCrawlMark& stackMark) at System.Type.GetType(String typeName, Boolean throwOnError, Boolean ignoreCase) at System.Web.Compilation.BuildManager.GetType(String typeName, Boolean throwOnError, Boolean ignoreCase) at System.Web.Configuration.ConfigUtil.GetType(String typeName, String propertyName, ConfigurationElement configElement, XmlNode node, Boolean checkAptcaBit, Boolean ignoreCase) and in IIS Logs: Exception information:     Exception type: ConfigurationErrorsException     Exception message: Could not load type 'Microsoft.Off

Security on Report Server



Right now we have a certain structure on our report server. Every department has it's own folders with their specific reports.
But every department can look at the reports of every other department, is it possible to manage this security?
For example the sales employees, they should only see the report concerning sales operations and not these of IT.
One solution i've been thinking of is managing the access to the folders on the server itself (back-end). But I was hoping there was a better way to take care of this problem in report server (front-end).

Database server version requirements



I have a very simple question but I am not sure in answer. I have to install Sharepoint server 2010 enterprise edition and I put it in farm with sql server 2008 enterprise edition.

My question is which edition of SQL server 2008 are compatibile for Sharepoint 2010 enteprise edition. If I choose SQL server 2008 Standard edition is there any limitation about services and features in Sharepoint. (currently we use performance point services for reporting).

Thanks in advance.


ASP.NetWindows Application  .NET Framework  C#  VB.Net  ADO.Net  
Sql Server  SharePoint  Silverlight  Others  All   

Hall of Fame    Twitter   Terms of Service    Privacy Policy    Contact Us    Archives   Tell A Friend