Groups field in Windows Active Directory doesn't get updated

Similar Messages

• When we change the non-mandatory field in the form, it doesn't get updated

  Hi... I have one question here..
  If I have non-mandatory fields in a custom form, and when I query the form and change the value in the non-mandatory field and click on save, then it doesn't save. It says 'No Changes to Save'. But, it's not the same for non-mandatory fields.
  Can you please suggest me?
  -vrdida

  VRdida,
  If I understand correctly, you have a non-Required item in your form that has an LOV assigned. While this item is Required=No, it works correctly. When you change the Required property of the item to 'Yes' then it fails. When this occurs, do you get an error message? Are you able to select a value from the LOV?
  It sounds like the Required=Yes property might be preventing you f rom opening the LOV. Try setting the Module property: Defer Required Enforcement = Yes. This is the typical setting in an EBS form. This is what allows you to navigate out of a Required field if the value is NULL, but will give you a Required message when you attempt to save the record if the value is still NULL.
  Hope this helps,
  Craig B-)
  If someone's response is helpful or correct, please mark it accordingly.
  Edited by: CraigB on Apr 6, 2011 11:43 AM

• Windows Active directory group policy objects

  Like many small to medium businesses, we use Firefox in addition to Internet Explorer. The Windows Active Directory group policy objects we have for IE works nicely in all versions of IE. Firefox on the other hand has stopped playing ball. Any policy files I have found on the Internet simply does not fire when used in Windows Group Policy. We have Windows 2008 R2 servers with Windows 7 clients.
  Does Mozilla have official group policy objects that will work with Windows Active Directory group policy and is supported in Firefox versions 27 onwards? A lot of the material on the Internet are simply workarounds to achieve something simple.
  I believe this may have been asked several times already, but no definitive answer has been supplied to
  resolve the issue to my knowledge.
  Thanks and regards

  To my knowledge, Firefox historically has not had integration with group policy, and third party tools have been required to bridge the gap. You may have found templates that work in one of those tools.
  These threads have links to third party tools, articles, mailing lists, and other resources:
  * [https://support.mozilla.org/questions/980567 i need to include the Firefox Browser Configuration in my Group Policy and Control Proxy and Browsing Settings]
  * [https://support.mozilla.org/questions/978874 Is it possible to configure firefox using group policy]
  Please report back if you find a solution. Thanks.

• Crystal Reports and Windows Active Directory

  Hi,
  I am trying to authenticate using the Windows Active Directory. I have created a test group in the Active directory and added myself as a member to that group. On the Crystal reports server side, I have enabled the Windows Active Directory. I can see the group that I created on the Active Directory. But I do not see any users. I have a Java infoview and I changed the web.xml file. I changed the authentication parameter to secWinAD. But does anyone know how to restart the web application server? I restarted the service Intelligent Agent. But when I login using my user id and password it still gives me the same error:
  Account Information Not Recognized: Enterprise authentication could not log you on. Please make sure your logon information is correct. (FWB 00008)
  Any help will be appreciated.
  Thanks.

  Infoview doesn't even need to be restarted.
  You said "I have a Java infoview and I changed the web.xml file" in your original post
  If you have .net IIS then it would be a web.config file that needs to be changed. IIS will pick up the changes as soon as you save the file and open an infoview logon page. you may also opt to set authentication.visible to true so users will have the ability to select AD when logging in.
  Regards,
  Tim

• Oracle database and Windows Active directory authentication

  Hello,
  Our developers have created a couple of web apps which look at our oracle database. Presently they use the APPS user and the user/password is hard coded into the config files.
  Is it possible to authenticate these using Windows Active Directory instead? Is it possible to use AD authentication for all developer access to the database?
  I'm trying to research this on the web but getting very confused. Would a lot of work be involved to get this up and running?
  Is anyone able to offer and advise?
  Thank you very much
  Sarah

  I don't have experience in joining a Linux system with Windows AD, and it generally does not sound like the best idea to me, but since Oracle Enterprise Linux is a clone of Red Hat Enterprise Linux, the solution you are looking for could be called Winbind.
  Perhaps the following links are useful:
  http://spiralbound.net/blog/2007/04/11/rhel-winbind-authentication-against-active-directory
  http://www.linuxmail.info/active-directory-integration-samba-centos-5/
  http://magazine.redhat.com/2007/11/12/tips-and-tricks-how-can-i-configure-winbind-to-synchronize-user-and-group-ids-across-multiple-red-hat-enterprise-linux-hosts-on-active-directory-accounts/

• Oracle Linux and Windows Active Directory

  I am looking for a good article on joining an Oracle Linux server to a Windows Active directory domain.
  We are primarily a Windows shop but need to bring up a couple of Oracle Linux servers (VM Server and VM Manager). I would like to use the existing Windows domain controller for user authentication.

  I don't have experience in joining a Linux system with Windows AD, and it generally does not sound like the best idea to me, but since Oracle Enterprise Linux is a clone of Red Hat Enterprise Linux, the solution you are looking for could be called Winbind.
  Perhaps the following links are useful:
  http://spiralbound.net/blog/2007/04/11/rhel-winbind-authentication-against-active-directory
  http://www.linuxmail.info/active-directory-integration-samba-centos-5/
  http://magazine.redhat.com/2007/11/12/tips-and-tricks-how-can-i-configure-winbind-to-synchronize-user-and-group-ids-across-multiple-red-hat-enterprise-linux-hosts-on-active-directory-accounts/

• How to list all the Fields for an Active Directory Object

  How do I list all the fields that an Active Directory object contains? I know the most common ones, but would like to enumerate through all the fields and obtain the type of fields and their values...

  Here is my complete code - I only put snippets so that the post was not too huge...
  Option Explicit
  Const ADS_SCOPE_SUBTREE = 2
  Const ForReading = 1, ForWriting = 2, ForAppending = 8
  Dim adoCommand, adoConnection, adoRecordSet
  Dim dtmDate, dtmValue
  Dim j
  Dim lngBias, lngBiasKey, lngHigh, lngLow, lngValue
  Dim objADObject, objClass, objDate, objFile, objFSO, objRootDSE, objShell
  Dim pathToScript
  Dim strAdsPath, strConfig, strDNSDomain, strHex, strItem, strProperty, strValue
  Dim strFilter, strQuery
  Set objFSO = CreateObject("Scripting.FileSystemObject")
  Set objShell = CreateObject("Wscript.Shell")
  pathToScript = objShell.CurrentDirectory
  Set objFile = objFSO.CreateTextFile(pathToScript & "\TestAD.csv")
  ' Determine Time Zone bias in local registry.
  ' This bias changes with Daylight Savings Time.
  lngBiasKey = objShell.RegRead("HKLM\System\CurrentControlSet\Control\TimeZoneInformation\ActiveTimeBias")
  If (UCase(TypeName(lngBiasKey)) = "LONG") Then
  lngBias = lngBiasKey
  ElseIf (UCase(TypeName(lngBiasKey)) = "VARIANT()") Then
  lngBias = 0
  For j = 0 To UBound(lngBiasKey)
  lngBias = lngBias + (lngBiasKey(j) * 256^j)
  Next
  End If
  ' Determine configuration context and DNS domain from RootDSE object.
  Set objRootDSE = GetObject("LDAP://RootDSE")
  strConfig = objRootDSE.Get("configurationNamingContext")
  strDNSDomain = objRootDSE.Get("defaultNamingContext")
  Set adoCommand = CreateObject("ADODB.Command")
  Set adoConnection = CreateObject("ADODB.Connection")
  adoConnection.Provider = "ADsDSOObject"
  adoConnection.Open "Active Directory Provider"
  adoCommand.ActiveConnection = adoConnection
  adoCommand.CommandText = "SELECT * FROM 'LDAP://" & strDNSDomain & "'WHERE objectClass=user'"
  adoCommand.Properties("Page Size") = 1000
  adoCommand.Properties("Searchscope") = ADS_SCOPE_SUBTREE
  Set adoRecordSet = adoCommand.Execute
  Set adoRecordSet = adoCommand.Execute
  adoRecordSet.MoveFirst
  Do Until adoRecordSet.EOF
  strAdsPath = adoRecordSet.Fields("ADsPath").Value
  ' Bind to Active Directory object specified.
  Set objADObject = GetObject(strAdsPath)
  Set objClass = GetObject(objADObject.Schema)
  ' Write which object is grabbed from AD
  objFile.Write(Replace(strAdsPath, ",", ";;;"))
  ' Enumerate mandatory object properties.
  For Each strProperty In objClass.MandatoryProperties
  On Error Resume Next
  strValue = objADObject.Get(strProperty)
  If (Err.Number = 0) Then
  On Error GoTo 0
  If (TypeName(strValue) = "String") Or (TypeName(strValue) = "Long") Or (TypeName(strValue) = "Date") Then
  objFile.Write("," & strProperty & "|||" & Replace(CStr(strValue), ",", ";;;"))
  ElseIf (TypeName(strValue) = "Byte()") Then
  strHex = OctetToHexStr(strValue)
  objFile.Write("," & strProperty & "|||" & CStr(strHex))
  ElseIf (TypeName(strValue) = "Variant()") Then
  For Each strItem In strValue
  On Error Resume Next
  objFile.Write("," & strProperty & "|||" & Replace(CStr(strItem), ",", ";;;"))
  If (Err.Number <> 0) Then
  On Error GoTo 0
  objFile.Write("," & strProperty & "|||Value cannot be displayed")
  End If
  On Error GoTo 0
  Next
  ElseIf (TypeName(strValue) = "Boolean") Then
  objFile.Write("," & strProperty & "|||" & CBool(strValue))
  Else
  objFile.Write("," & strProperty & "|||Type:" & TypeName(strValue))
  End If
  Else
  Err.Clear
  sColl = objADObject.GetEx(strProperty)
  If (Err.Number = 0) Then
  For Each strItem In sColl
  objFile.Write("," & strProperty & "|||" & CStr(strItem))
  If (Err.Number <> 0) Then
  objFile.Write("," & strProperty & "|||Value cannot be displayed")
  End If
  Next
  On Error GoTo 0
  Else
  Err.Clear
  Set objDate = objADObject.Get(strProperty)
  If (Err.Number = 0) Then
  lngHigh = objDate.HighPart
  If (Err.Number = 0) Then
  lngLow = objDate.LowPart
  If (lngLow < 0) Then
  lngHigh = lngHigh + 1
  End If
  lngValue = (lngHigh * (2 ^ 32)) + lngLow
  If (lngValue > 120000000000000000) Then
  dtmValue = #1/1/1601# + (lngValue / 600000000 - lngBias) / 1440
  On Error Resume Next
  dtmDate = CDate(dtmValue)
  If (Err.Number <> 0) Then
  objFile.Write("," & strProperty & "|||<Never>")
  Else
  objFile.Write("," & strProperty & "|||" & CStr(dtmDate))
  End If
  Else
  objFile.Write("," & strProperty & "|||" & FormatNumber(lngValue, 0))
  End If
  Else
  objFile.Write("," & strProperty & "|||Value cannot be displayed")
  End If
  Else
  On Error GoTo 0
  objFile.Write("," & strProperty)
  End If
  On Error GoTo 0
  End If
  End If
  Next
  ' Enumerate optional object properties.
  For Each strProperty In objClass.OptionalProperties
  On Error Resume Next
  strValue = objADObject.Get(strProperty)
  If (Err.Number = 0) Then
  On Error GoTo 0
  If (TypeName(strValue) = "String") Then
  objFile.Write("," & strProperty & "|||" & Replace(CStr(strValue), ",", ";;;"))
  ElseIf (TypeName(strValue) = "Long") Then
  objFile.Write("," & strProperty & "|||" & Replace(CStr(strValue), ",", ";;;"))
  ElseIf (TypeName(strValue) = "Date") Then
  objFile.Write("," & strProperty & "|||" & Replace(CStr(strValue), ",", ";;;"))
  ElseIf (TypeName(strValue) = "Byte()") Then
  strHex = OctetToHexStr(strValue)
  objFile.Write("," & strProperty & "|||" & CStr(strHex))
  ElseIf (TypeName(strValue) = "Variant()") Then
  For Each strItem In strValue
  On Error Resume Next
  objFile.Write("," & strProperty & "|||" & Replace(CStr(strItem), ",", ";;;"))
  If (Err.Number <> 0) Then
  On Error GoTo 0
  objFile.Write("," & strProperty & "|||Value cannot be displayed")
  End If
  On Error GoTo 0
  Next
  ElseIf (TypeName(strValue) = "Boolean") Then
  objFile.Write("," & strProperty & "|||" & CBool(strValue))
  Else
  objFile.Write("," & strProperty & "|||Type:" & TypeName(strValue))
  End If
  Else
  Err.Clear
  sColl = objADObject.GetEx(strProperty)
  If (Err.Number = 0) Then
  For Each strItem In sColl
  objFile.Write("," & strProperty & "|||" & CStr(strItem))
  If (Err.Number <> 0) Then
  objFile.Write("," & strProperty & "|||Value cannot be displayed")
  End If
  Next
  On Error GoTo 0
  Else
  Err.Clear
  Set objDate = objADObject.Get(strProperty)
  If (Err.Number = 0) Then
  lngHigh = objDate.HighPart
  If (Err.Number = 0) Then
  lngLow = objDate.LowPart
  If (lngLow < 0) Then
  lngHigh = lngHigh + 1
  End If
  lngValue = (lngHigh * (2 ^ 32)) + lngLow
  If (lngValue > 120000000000000000) Then
  dtmValue = #1/1/1601# + (lngValue / 600000000 - lngBias) / 1440
  On Error Resume Next
  dtmDate = CDate(dtmValue)
  If (Err.Number <> 0) Then
  objFile.Write("," & strProperty & "|||<Never>")
  Else
  objFile.Write("," & strProperty & "|||" & CStr(dtmDate))
  End If
  Else
  objFile.Write("," & strProperty & "|||" & lngValue)
  End If
  Else
  objFile.Write("," & strProperty & "|||Value cannot be displayed")
  End If
  Else
  On Error GoTo 0
  objFile.Write("," & strProperty & "||| ")
  End If
  On Error GoTo 0
  End If
  End If
  Next
  objFile.WriteLine("")
  adoRecordSet.MoveNext
  Loop
  objFile.Close
  ' Function to convert OctetString (Byte Array) to a hex string.
  Function OctetToHexStr(arrbytOctet)
  Dim k
  OctetToHexStr = ""
  For k = 1 To Lenb(arrbytOctet)
  OctetToHexStr = OctetToHexStr _
  & Right("0" & Hex(Ascb(Midb(arrbytOctet, k, 1))), 2)
  Next
  End Function
  I have been able to obtain all the Computer, Contact, Group and OU objects without issue with this code...

• Windows active directory logs

  Hi,
  We are using Windows active directory to manage our users. Another company has configured the same for us.
  Currently we don't have permissions to create a new user. They have given us one account and by using that account, we are able to create new groups in AD, add users to the groups, etc. We would like to get the logs for each user removal or addition to the
  AD groups. How do we enable the same. We would like to know who  and when each user is getting added to the AD groups. Please help us in this.

  Hi Kewpin,
  To enable the complete details on user account account changes including group membership, you need enable the following audit settings,
  1. Open GPMC console, click Start --> Administrative Tools --> Group Policy Management.
  2. Right click the Default Domain Controllers Policy, and then click Edit.
  3. Navigate to Audit Policy node, “Computer Configuration/ Policies/ Windows Settings/ Security Settings/ Local Policies/ Audit Policy”.
  4. Now enable the Success auditing for - Audit Account Management and Audit Directory Service Access.
  5. Execute the command “GPUPDATE /FORCE” in the Domain Controller to force apply the GPO settings.
  For Windows Server 2008 R2 and later versions, additional configuration is required in  “Advanced Audit Policy Configuration” section in Default Domain Controller Policy.
  For additional auditing configuration of,
  1. AD Changes 
      Go to the node DS Access (Computer Configuration/Policies/Windows Settings/Security Settings/Advanced Audit Policy Configuration/Audit Policies/DS Access.) 
     Enable Success auditing for the following settings
      - Audit Directory Service Changes
  2. Account Management
      Go to the node Account Management (Computer Configuration/Policies/Windows Settings/Security Settings/Advanced Audit Policy Configuration/Audit Policies/Account Management.) 
     Enable Success auditing for the following settings
     - Audit User Account Management
     - Audit Security Group Management
     - Audit Distribution Group Management
  Once you have enabled the above audit settings, you can set an auditing SACL for the AD object.
  Checkout the below screenshot for setting the  auditing SACL,
  Checkout the below link on Security Event id list for auditing AD changes,
  http://www.morgantechspace.com/2013/08/active-directory-change-audit-events.html
  Regards,
  Gopi
  JiJi Technologies

• Windows Active Directory replacement

  Hello All,
  My company is using Windows Active Directory and now we are going to replace it with Novell solution. Is there any product from Novell to replace Windows Active Directory for 2 main features?
  - Group Policy
  - Windows users and workstations authentication and administration
  I did some researches on Domain Service for Windows, Identity Manager, ZENworks. Could you give me advice on which product meet my requirement?
  Thanks in advance.
  Best regards,
  Khiet Manh.

  ab wrote:
  > Domain Services for Windows (DSfW) is meant to emulate MAD to a large
  > degree, and is probably what you need more than the other two
  > products.
  Well, that depends. If there's a need to still supply AD functionality
  after MAD is gone, then yes DSfW is a replacement. However, if that's
  not a requirement, then ZENworks Configuration Management is likely a
  better choice since it will provide much more Windows desktop
  administration capabilities than DSfW (or MAD) alone.
  Your world is on the move. http://www.novell.com/mobility/
  Supercharge your IT knowledge. http://www.novell.com/techtalks/

• Using Groups in SharePoint from Active Directory

  Hello,
  Is it possible to use groups in SharePoint from AD?
  I have several groups in AD that I would like to use in SP. Of course SP has its own set up groups in permission (Owner, Member and Visitor). I do not want to use these groups. What I would like to do is use groups that are in my AD and assign those the
  designer, contributor, read-only..etc permission.
  For example, SP people picker finds my AD group called "Finance_Project" and assign this group with permission rights as a contributor.
  Is this doable in SharePoint. I would think since SharePoint can be authenticated with AD, you should be able to use your own AD groups.
  Any suggestions, articles and answers are greatly appreciated.
  artisticweb

  You can do this in SharePoint. are you importing the AD groups via UPA?
  Creating a SharePoint group and adding an Active Directory group to its members…this allows anyone in the Active Directory group to participate in the SharePoint group
  Mapping roles directly to Active Directory groups and not using SharePoint groups at all.
  here is couple of article which will explain your choices one over to other
  Assign permission levels in SharePoint 2013
  Using Active Directory Vs. SharePoint Groups
  http://sergeluca.wordpress.com/2013/07/06/sharepoint-2013-use-ag-groups-yes-butdont-forget-the-security-token-caching-logontokencacheexpirationwindow-and-windowstokenlifetime/
  Please remember to mark your question as answered &Vote helpful,if this solves/helps your problem. ****************************************************************************************** Thanks -WS MCITP(SharePoint 2010, 2013) Blog: http://wscheema.com/blog

• How can I authenticate a User In Windows Active Directory?

  I need to authenticate a user in Windows Active Directory, but I found use the code below will return true if the user name and password are both correct and false if one of them is wrong. But when I input a user name which is not exist in Active Driectory with a blank password, it will also return true. What shall I do? Ask every user must input a password withnot blank?
  Please give me some help to solve this problem. Thanks a lot.
  Code:
  private Context ctx = null;
  Hashtable env = new Hashtable ();
  boolean isValid = false;
  try {
  this.setEnvironmentProperties();
  String domainName = AuthenticateResources.getString("mydomain.com");
  //set the name of domain with the user name
  String fullName = name + "@" + domainName;
  env.put(Context.INITIAL_CONTEXT_FACTORY, "com.sun.jndi.ldap.LdapCtxFactory");
  env.put(Context.PROVIDER_URL,"ldap://mydomain:389");
  env.put(Context.SECURITY_AUTHENTICATION,"simple");
  //set user related information
  env.put(Context.SECURITY_PRINCIPAL, fullName);
  //set user password
  env.put(Context.SECURITY_CREDENTIALS, password);
  //validate user
  ctx = new InitialDirContext(env);
  isValid = true;
  }catch (AuthenticationException ex){
  isValid = false;
  catch (NamingException ex) {
  throw ex;
  }finally{
  this.freeContext();
  return isValid;

  This is usually a problem if Anonymous Binding is enabled. I have faced this in other Directory Servers, but I am not familiar with Active Directory.
  I think by default Active Directory disables Anonymous Binding, but you may want to check.

• How to create mailboxes under mac os x 10.6.4 either using ldapv3 or windows active directory?

  hi,
  i'm working on the mail server of our company. the plan is to implement the built in mail server feature of mac mini OS X 10.6.4 using either ldapv3 or preferably our existing window active directory users.
  i was able to set the open directory and can view the user accounts from AD. my problem is i do not have any clear documentation or manual on how to create mailboxes using either AD accounts or MAC LDAPv3. i already checked the manual of mac os x mail service administration and have found none pertaining to this case.
  i would really appreciate if someone can give me reference on how to do this. as of now im quite desperate because i have a deadline for this project.
  thank you in advance for your help.

  You said, "A 2014 iMac can't run either Snow Leopard or Lion." I know that. What I want to know is how I can install Lion or Snow Leopard on a peripheral hard drive, NOT on my iMac.
  – Larry

• SAP User Authentication via Windows Active Directory

  The non-profit company I work for as an SAP Security Admin has been using SAP since 1999.  We are currently running ECC 6.0, BI 7.0, and CRM 7.0.  With fewer than 300 SAP users, we have not implemented CUA, so each of our multiple clients in these systems is managed independently. 
  The company recently licensed and implemented some non-SAP software to be used by all of our employees (~1200) in keeping track of & catagorizing their work time; a very handy feature of this software is that it depends upon Windows Active Directory for user authentication.  Therefore, each employee logs into this time-keeping package by entering his/her standard PC userID & password.  If you can log onto your PC, you can log into the time-keeping software. 
  That got me thinking & researching, because our SAP users - especially those who have access to three or more SAP clients - must maintain their passwords independently in each SAP client that they hope to access in the future.  I'm certainly not the first person who has thought of how nice it would be to permit SAP users to log into all SAP clients across the landscape in which they have defined userIDs, using the same password that they are using to log into their PCs (i.e., the password that is stored & maintained in Windows Active Directory).  My quest has led me to find presentations on this topic that typically involve modules we aren't using & very complicated configurations that we really lack the time & resources to employ; or, to third-party solution providers who claim to be certified SAP partners who would love to sell us more software to provide this convenience, usually irelated to single sign-on, LDAP, etc.  The lowest pricing tier for such software usually would cover many times the number of SAP users we have to serve here - and it feels like trying to push in a tack using a sledgehammer.  It is true that we have not used the same userID for our PCs that we have defined in SAP, so there would need to be some way to translate from one to the other, but our PC password rules are consistent with those we have configured in SAP clients, so it seems to me it should be very simple.   Can anyone lead me to a more straightforward solution?  If not, can you articulate why this has to be so complicated using SAP software when it seems so simple using relatively inexpensive timekeeping sotware?

  >
  Gagan Deep Kaushal wrote:
  > Hi Tim,
  >
  > Its nice to see video.
  >
  > Is that mean using different username on OS and SAP level still we can achieve SSO.
  >
  > Correct if if am wrong.
  > The only thing we need to maintain SNC name.
  Once installed, yes. This is all you need to maintain when users are added. You can even use LDAP if you like to sync all user info between SAP and MS AD domain, but this cannot sync the password, so using SNC authentication instead of using SAP passwords is ideal.
  >
  > So for user test1 i can manage name as p:test2.....  ??
  Yes, that is correct. The mapping is maintained using standard SAP user management, such as su01. The user in AD domain might have long account name, e.g. "firstname.verylonglastname" which is too big for use as a SAP username so you can map this long AD account name onto a SAP user called FIRSTLAST in one or more SAP clients.
  >
  > I think that is what Ronald is also looking, user name need not to be same.
  >
  > Regards,
  > Gagan Deep Kaushal

• ISE 1.0.4 & Windows Active Directory

  We are planning to add a NAC sollution in our network and we are a  little confused with ISE. Can ISE support signle sign on with Windows  Active Directory in this version 1.0.4? If yes how we can do it?
  Thank you

  Thanks for prompt answer,
  Something more, i can't find in the following page which is the correct licence in order to install a DEMO ISE in my network. https://tools.cisco.com/SWIFT/Licensing/PrivateRegistrationServlet?DemoKeys=Y
  Can you help me?

• JNDI Realm for ADS (Windows Active Directory)

  Hi,
  Does anybody know how to connect to the windows active directory? I have to proof,
  that java can do this and I don't know how. Please help, otherwise we will start
  using .NET!!!!!
  sincerly
  Gabriel

  "gabriel" <[email protected]> wrote in message
  news:[email protected]..
  >
  Hi,
  Does anybody know how to connect to the windows active directory? I haveto proof,
  that java can do this and I don't know how. Please help, otherwise we willstart
  using .NET!!!!!
  We certainly don't want that.
  With WLS 6.x, you can use the ldap realm v2 to access active directory.
  With WLS 7.x and 8.x, you can use the External LDAP Authentication provider
  to access
  active directory.
  If you have to use JNDI to access Active Directory, then you can write your
  own authentication
  security provider and hook it up with WLS.