|
|
Rank: Administration
Joined: 8/3/2007
Posts: 1,699
Location: Fort Atkinson, WI
|
You are outside of my realm of knowledge, so hopefully someone else can chime in.
Roger Martin
Creator and Lead Developer of Gallery Server Pro
|
|
Rank: Member
Joined: 10/22/2008
Posts: 9
Location: Halle/Leipzig
|
Dear,
I followed the steps and after refreshing and modifying the web.config I get this error:
Error - Unable to establish secure connection with the server (C:\Inetpub\wwwroot\PHP\galleryserverpro\web.config line 95)
Error Information
Name Value
Type System.Configuration.ConfigurationErrorsException
Message Unable to establish secure connection with the server (C:\Inetpub\wwwroot\PHP\galleryserverpro\web.config line 95)
Source System.Web
TargetSite System.Configuration.Provider.ProviderBase InstantiateProvider(System.Configuration.ProviderSettings, System.Type)
StackTrace at System.Web.Configuration.ProvidersHelper.InstantiateProvider(ProviderSettings providerSettings, Type providerType)
at System.Web.Configuration.ProvidersHelper.InstantiateProviders(ProviderSettingsCollection configProviders, ProviderCollection providers, Type providerType)
at System.Web.Security.Membership.Initialize()
at System.Web.Security.Membership.get_ApplicationName()
at GalleryServerPro.Web.WebsiteController.InitializeBusinessLayer()
at GalleryServerPro.Web.WebsiteController.InitializeApplication()
at GalleryServerPro.Web.GspPage..cctor()
Any suggestions??
|
|
Rank: Administration
Joined: 8/3/2007
Posts: 1,699
Location: Fort Atkinson, WI
|
Have you seen this thread?
Roger Martin Creator and Lead Developer of Gallery Server Pro
|
|
Rank: Newbie
Joined: 12/9/2008
Posts: 1
Location: MS
|
Roger,
Thanks so much for the great GSP application. I have been reading this thread and your blog on this topic, and realize that my scenario is slightly different. Is it possible to use Windows authentication instead of Active Directory Forms authentication (i.e. bypassing the GSP login completely), and still using the SqlRoleProvider roles?
Updating the web.config to reflect this setup isn't significant but I was wondering if you knew off-hand if this would present any issues with GSP. With what I've modified so far, I've gotten GSP to recognize my Windows auth username, but when I use the VS2005 ASP.NET Configuration tool to assign my username to the System Administrator role, I get a 'Could not load file or assembly 'System.Data.SQLite, Version=1.0.60.0.... Failed to grant minimum permission requests' error.
I will continue to play around with my current configuration to try to get it to work but any additional guidance you may have to offer would be greatly appreciated.
|
|
Rank: Administration
Joined: 8/3/2007
Posts: 1,699
Location: Fort Atkinson, WI
|
I haven't tested that scenario but I don't know of any reason why it wouldn't work. MS confirms that it is supported in ASP.NET: Quote:When you use Windows authentication, you can use alternate role providers, such as the AuthorizationStoreRoleProvider and SqlRoleProvider, if you need to store roles in alternate role stores such as Authorization Manager policy stores or SQL Server databases. For more information, see How To: Use Role Manager in ASP.NET 2.0.
Roger Martin Creator and Lead Developer of Gallery Server Pro
|
|
Rank: Advanced Member
Joined: 8/6/2007
Posts: 103
Location: England
|
Hi, i'm giving this a go and i am getting this error what have i missed. if i take it out it works fine. File Attachment(s):
 error.xps (109kb) downloaded 10 time(s).
|
|
Rank: Administration
Joined: 8/3/2007
Posts: 1,699
Location: Fort Atkinson, WI
|
You have a syntax error. There is a /> after the enableSearchMethods attribute. Remove it so it looks like this: Code:<membership defaultProvider="AspNetActiveDirectoryMembershipProvider"> <providers> <add name="AspNetActiveDirectoryMembershipProvider" type="System.Web.Security.ActiveDirectoryMembershipProvider, System.Web,Version=2.0.0.0,Culture=neutral,PublicKeyToken=b03f5f7f11d50a3a" connectionStringName="ADConnection" enableSearchMethods="true" connectionUsername="RMartin" connectionPassword="mypassword"/> </providers> </membership>
Roger Martin Creator and Lead Developer of Gallery Server Pro
|
|
Rank: Advanced Member
Joined: 8/6/2007
Posts: 103
Location: England
|
thats it!!
if u look at the guide the error is in there.
thanx sam
|
|
Rank: Administration
Joined: 8/3/2007
Posts: 1,699
Location: Fort Atkinson, WI
|
I can't find the error. Can you be more specific?
Roger Martin
Creator and Lead Developer of Gallery Server Pro
|
|
Rank: Advanced Member
Joined: 8/6/2007
Posts: 103
Location: England
|
sorry me just being dumb
|
|
Rank: Member
Joined: 3/13/2009
Posts: 6
Location: Oakland, CA
|
Step 2: Create, edit and delete AD accounts within Gallery Server Pro
Once you are logged on as an administrator, you can go to the Manage Users page and add the remaining AD accounts to appropriate roles. If the IIS user account does not have permission to make changes to AD, you may receive an error like this when you click Save changes:
I have AD integration working at this point and logging in works fine but I have a question I'm hoping someone can answer.
When you add a user to a role in GSP, what is being changed in the AD account itself by the priveledged account?
Is it merely a credential check but no actual changes to the account are made? Does it have nothing to do with the AD schema/data at all but just what's stored in the GSP DB?
And if it's something similar to the above paragraph, I could just add all my users one time and then removed the priveleged account from web.config, correct?
Thanks!!!
|
|
Rank: Administration
Joined: 8/3/2007
Posts: 1,699
Location: Fort Atkinson, WI
|
Quote:When you add a user to a role in GSP, what is being changed in the AD account itself by the priveledged account? Nothing. The role management is contained within the GSP database, so your idea to remove the privileged account after initial configuration should work.
Roger Martin Creator and Lead Developer of Gallery Server Pro
|
|
Rank: Member
Joined: 3/13/2009
Posts: 6
Location: Oakland, CA
|
Roger Martin wrote:Quote:When you add a user to a role in GSP, what is being changed in the AD account itself by the priveledged account? Nothing. The role management is contained within the GSP database, so your idea to remove the privileged account after initial configuration should work. Thanks! That means I can roll this out on a limited basis for testing.
|
|
Rank: Newbie
Joined: 4/7/2009
Posts: 1
Location: Sydney
|
Hi, Also check out this: http://www.codeproject.com/KB/aspnet/active_directory_roles.aspxCustom AD Rolemanager to retrieve AD groups. I'm looking at integrating it atm. :)
|
|
Rank: Member
Joined: 9/4/2008
Posts: 18
Location: NJ
|
To smorgan19:
Have you made any progress on the ad rolemanager? I am quite interested in such an option (it would make my life so much easier), but I am no programmer.
|
|
|
Guest |