tag:blogger.com,1999:blog-1804865242850018128.post8768350178455779950..comments2023-09-27T14:29:55.934+07:00Comments on Sohel's Blog: SharePoint 2010: Configure Form Based Authentication (FBA)Anonymoushttp://www.blogger.com/profile/15485221969375347012noreply@blogger.comBlogger19125tag:blogger.com,1999:blog-1804865242850018128.post-70483135700006208992013-11-12T22:51:43.709+07:002013-11-12T22:51:43.709+07:00Followed all the steps here.. When I try to add a ...Followed all the steps here.. When I try to add a forms auth user to the site I get the ever popular "Unexpected Error" Any thoughts?Anonymoushttps://www.blogger.com/profile/01672919709370194813noreply@blogger.comtag:blogger.com,1999:blog-1804865242850018128.post-49828534370792651012012-12-18T10:37:40.999+07:002012-12-18T10:37:40.999+07:00its my pleasure to have your timely reply ^_^
now ...its my pleasure to have your timely reply ^_^<br />now i'm able to lookup users on ldap using the config here:<br />http://www.advantive.nl/advantive/blog/Pages/SharePoint2010withOpenLDAPnotsosmooth.aspx<br /><br />but then i cannot login using FBA, it keeps saying:<br />"The server could not sign you in. Make sure your user name and password are correct, and then try again. "<br /><br />the sharepoint2010 logs showing the following related msg, please suggest what should I do next:<br /><br />12/17/2012 10:57:26.63 w3wp.exe (0x0E48) 0x0E10 SharePoint Foundation Claims Authentication 0000 Unexpected Password check on '00api009' generated exception: 'System.ServiceModel.FaultException`1[Microsoft.IdentityModel.Tokens.FailedAuthenticationException]: (Fault Detail is equal to Microsoft.IdentityModel.Tokens.FailedAuthenticationException: The security token username and password could not be validated.).'. <br /><br />12/17/2012 10:57:26.63 w3wp.exe (0x0E48) 0x0E10 SharePoint Foundation Claims Authentication fo1t Monitorable SPSecurityTokenService.Issue() failed: System.ServiceModel.FaultException`1[Microsoft.IdentityModel.Tokens.FailedAuthenticationException]: The security token username and password could not be validated. (Fault Detail is equal to Microsoft.IdentityModel.Tokens.FailedAuthenticationException: The security token username and password could not be validated.). <br /> <br />12/17/2012 10:57:26.63 w3wp.exe (0x13E8) 0x1A6C SharePoint Foundation Claims Authentication fsq7 High Request for security token failed with exception: System.ServiceModel.FaultException: The security token username and password could not be validated. at Microsoft.IdentityModel.Protocols.WSTrust.WSTrustChannel.ReadResponse(Message response) at Microsoft.IdentityModel.Protocols.WSTrust.WSTrustChannel.Issue(RequestSecurityToken rst, RequestSecurityTokenResponse& rstr) at Microsoft.IdentityModel.Protocols.WSTrust.WSTrustChannel.Issue(RequestSecurityToken rst) at Microsoft.SharePoint.SPSecurityContext.SecurityTokenForContext(Uri context, Boolean bearerToken, SecurityToken onBehalfOf, SecurityToken actAs, SecurityToken delegateTo) 46b8c1b7-b81b-40d7-a294-c4652167e02f<br /><br />12/17/2012 10:57:26.63 w3wp.exe (0x13E8) 0x1A6C SharePoint Foundation Claims Authentication 8306 Critical An exception occurred when trying to issue security token: The security token username and password could not be validated.. 46b8c1b7-b81b-40d7-a294-c4652167e02f<br />LionCathttps://www.blogger.com/profile/11640248966969928662noreply@blogger.comtag:blogger.com,1999:blog-1804865242850018128.post-86991954867172172132012-12-14T14:59:43.977+07:002012-12-14T14:59:43.977+07:00@LionCat, I think you should try to use the LDAP w...@LionCat, I think you should try to use the LDAP with Asp.Net Membership provider. Basically what you are doing in the web.config file, is using asp.net membership provider. Also when you are getting user not found error, you might find related error message in sharepoit log, or window event viewer or maybe linux log (if exists)Anonymoushttps://www.blogger.com/profile/15485221969375347012noreply@blogger.comtag:blogger.com,1999:blog-1804865242850018128.post-78432370338512382812012-12-13T09:35:47.325+07:002012-12-13T09:35:47.325+07:00I'm so happy to have your reply Sohel!
i tried...I'm so happy to have your reply Sohel!<br />i tried your solution,<br />but still cannot lookup any users while "browse for users", shown "no Users found"<br />and i need an urgent solution from guru like you<br /><br />let me clarify my problem:<br />-i don't have the LDAP root or any superuser account, only an ordinary test account due to the security control design (should i simply omit the connectionUsername and connectionPassword?)<br /><br />-LDAP server port:401 (instead of default 389) but the code you posted seems didn't addressed port change<br /><br />-how should I replace the EntryDN parameter in connectionString and connectionUsername ? <br />my LDAP admin gave me this:<br />. EntryDN="uid=XXYYYYYY,ou=XX,o=HKSARG,c=HK" <br />. server host: test.asl.hksarg<br />. LDAP guest account:<br />. -LDAP Username: 00asl009<br />. -User Password: password<br /><br />-Upon lookup user failed, how could i troubleshoot whether its connection failure or LDAP lookup parameter misconfigured?<br /><br />looking forward for your precious replyLionCathttps://www.blogger.com/profile/11640248966969928662noreply@blogger.comtag:blogger.com,1999:blog-1804865242850018128.post-55552655049986619752012-12-12T21:30:46.699+07:002012-12-12T21:30:46.699+07:00@LionCat, You got me :-((
I'm not sure about L...@LionCat, You got me :-((<br />I'm not sure about Linux as I have never tried the settings with Linux, but do you have any specific problem in Linux based LDAP configuration? I think the LDAP connection details provided in this post should work, but I'm not sure.Anonymoushttps://www.blogger.com/profile/15485221969375347012noreply@blogger.comtag:blogger.com,1999:blog-1804865242850018128.post-91150040930275023952012-12-12T14:31:19.515+07:002012-12-12T14:31:19.515+07:00Sohel, could you please also share how to do this ...Sohel, could you please also share how to do this but to a Redhat Directory 7.1 LDAP server instead of AD LDAP?<br />My LDAP info:<br />EntryDN="uid=XXYYYYYY,ou=XX,o=HKSARG,c=HK" <br />server host: test.try.hksarg<br /><br />thanksLionCathttps://www.blogger.com/profile/11640248966969928662noreply@blogger.comtag:blogger.com,1999:blog-1804865242850018128.post-13996680910517535232012-02-28T05:54:14.749+07:002012-02-28T05:54:14.749+07:00Hello
you can change authentication methods used ...Hello<br /><br />you can change authentication methods used by Web Application after the creation<br />This works only from Classic to Claims Based<br />see http://blog.hametbenoit.info/Lists/Posts/Post.aspx?ID=305<br /><br />Don't forget to change the site admin and all other User policies at the Central admin level as after the change 'classic' user account are unknown and you may get Access deniedAnonymousnoreply@blogger.comtag:blogger.com,1999:blog-1804865242850018128.post-17929652852174175942011-12-21T17:50:31.052+07:002011-12-21T17:50:31.052+07:00soooperrrb...you have explained so easy !!! :) tha...soooperrrb...you have explained so easy !!! :) thanks a lott as you save my tones of time without worry !! <br /><br />one addition in your step is after following first 3 steps "add "Membership provider name" as group in owners group using windows authentication in site collection and get log off and log in by forms authentication users created before."Diptihttps://www.blogger.com/profile/13818687164288373781noreply@blogger.comtag:blogger.com,1999:blog-1804865242850018128.post-3805687817049637462011-12-15T01:04:23.112+07:002011-12-15T01:04:23.112+07:00which tool did you use for editing the code. Looks...which tool did you use for editing the code. Looks really nice.jawikohttps://www.blogger.com/profile/12595183427576507928noreply@blogger.comtag:blogger.com,1999:blog-1804865242850018128.post-44264358402740500872011-12-12T06:08:18.441+07:002011-12-12T06:08:18.441+07:00Will you provide a Poweshell Script for the same s...Will you provide a Poweshell Script for the same steps.Anonymousnoreply@blogger.comtag:blogger.com,1999:blog-1804865242850018128.post-86019959353194263482011-10-19T22:14:54.875+07:002011-10-19T22:14:54.875+07:00If you are familiar with Active Directory, then it...If you are familiar with Active Directory, then it's easy to understand. You can get details of object naming here: http://technet.microsoft.com/en-us/library/cc977992.aspxAnonymoushttps://www.blogger.com/profile/15485221969375347012noreply@blogger.comtag:blogger.com,1999:blog-1804865242850018128.post-43096211843240072612011-10-19T19:54:07.020+07:002011-10-19T19:54:07.020+07:00What is the meaning on o and c here? LDAP://myserv...What is the meaning on o and c here? LDAP://myserver/O=a,OU=b,C=c"Anonymousnoreply@blogger.comtag:blogger.com,1999:blog-1804865242850018128.post-80312252540878476722011-09-17T20:27:39.574+07:002011-09-17T20:27:39.574+07:00@Morshed, It's good to know. what powershell c...@Morshed, It's good to know. what powershell command u used?Anonymoushttps://www.blogger.com/profile/15485221969375347012noreply@blogger.comtag:blogger.com,1999:blog-1804865242850018128.post-3715114552888570752011-09-17T15:43:04.881+07:002011-09-17T15:43:04.881+07:00You can convert an existing web application to use...You can convert an existing web application to use Claims Based Authentiation from Powershell and afterwards you can enable FBA on that one. I already tested it. It works!morshed772https://www.blogger.com/profile/09571948309743580553noreply@blogger.comtag:blogger.com,1999:blog-1804865242850018128.post-57605579186327466832011-05-09T05:25:14.477+07:002011-05-09T05:25:14.477+07:00Awesome post - this was very helpful to me in acco...Awesome post - this was very helpful to me in accomplishing this important activity. I found myself referring to this post along with this one:<br /><br />http://www.c-sharpcorner.com/UploadFile/nipuntomar/5105/<br /><br />Your post was more helpful in completing the web.config edits - the other post provided missing pieces in getting the sites running.<br /><br />Thank you for the effort - I'm sure this will save lots of folks time going forward.Anonymousnoreply@blogger.comtag:blogger.com,1999:blog-1804865242850018128.post-80622060504973800542011-05-05T17:12:58.034+07:002011-05-05T17:12:58.034+07:00Nice Article !!
For sharepoint 2007...
http://ka...Nice Article !!<br />For sharepoint 2007... <br /><br />http://kalashnikovtechnoblogs.blogspot.com/2011/04/change-windows-authentication-to-form.htmlAnonymoushttps://www.blogger.com/profile/16714874110355922977noreply@blogger.comtag:blogger.com,1999:blog-1804865242850018128.post-15497910724258394612011-02-27T15:32:48.690+07:002011-02-27T15:32:48.690+07:00Can you please check the log files in '14\logs...Can you please check the log files in '14\logs' for more details errors? The log file may dump more error description that might be helpful.Anonymoushttps://www.blogger.com/profile/15485221969375347012noreply@blogger.comtag:blogger.com,1999:blog-1804865242850018128.post-81131863985147882282011-02-26T03:34:49.315+07:002011-02-26T03:34:49.315+07:00Thanks for the awesome post on how to do this. I ...Thanks for the awesome post on how to do this. I cannot get my forms-based authentication to work. when I try to login, I get 'The security token username and password could not be validated' followed by an ASP.NET error. Could this mean my LDAP settings are incorrect?Unknownhttps://www.blogger.com/profile/01742482152075917755noreply@blogger.comtag:blogger.com,1999:blog-1804865242850018128.post-25179474107449788532011-01-16T20:16:03.083+07:002011-01-16T20:16:03.083+07:00Awesome. i was reading Claims based authentication...Awesome. i was reading Claims based authentication and this post helped me throughSaraf U Talukderhttp://myblog.sarafuddin.comnoreply@blogger.com