Anonymous_User Absent Member.
Absent Member.
525 views

LDAP, SSL, IIS, Permitions

I have integrated SSL with LDAP libraries for C# in an asp.net
application running under IIS. It works fine when IIS runs under the
administrator user. But when I change the user (to a user with less
access) I have problems with Bind ("… handshake failed…"). I have also
given the new user read/execute-access to the folder where the certificate
is installed (.../.mono/certs/Trust/) but it doesn’t solve the problem.

Any solutions?

Martha
Labels (1)
0 Likes
3 Replies
Anonymous_User Absent Member.
Absent Member.

Re: LDAP, SSL, IIS, Permitions

To help narrow down where the issue is try using LDAPSearch utility and
access the directory.

These "tools" can be found in the cldap download at:
http://developer.novell.com/wiki/index.php/LDAP_Libraries_for_C

Docs are at:
http://developer.novell.com/documentation/cldap/index.html?page=/documentation/cldap/ltoolenu/data/ahufc6o.html
-jim

martha@itslearning.com wrote:
> I have integrated SSL with LDAP libraries for C# in an asp.net
> application running under IIS. It works fine when IIS runs under the
> administrator user. But when I change the user (to a user with less
> access) I have problems with Bind ("… handshake failed…"). I have also
> given the new user read/execute-access to the folder where the certificate
> is installed (.../.mono/certs/Trust/) but it doesn’t solve the problem.
>
> Any solutions?
>
> Martha

0 Likes
Anonymous_User Absent Member.
Absent Member.

Re: LDAP, SSL, IIS, Permitions

> To help narrow down where the issue is try using LDAPSearch utility and
> access the directory.
>
> These "tools" can be found in the cldap download at:
> http://developer.novell.com/wiki/index.php/LDAP_Libraries_for_C
>
> Docs are at:
> http://developer.novell.com/documentation/cldap/index.html?

page=/documentation/cldap/ltoolenu/data/ahufc6o.html
> -jim
>
> martha@itslearning.com wrote:
> > I have integrated SSL with LDAP libraries for C# in an asp.net
> > application running under IIS. It works fine when IIS runs under the
> > administrator user. But when I change the user (to a user with less
> > access) I have problems with Bind ("… handshake failed…"). I have

also
> > given the new user read/execute-access to the folder where the

certificate
> > is installed (.../.mono/certs/Trust/) but it doesn’t solve the

problem.
> >
> > Any solutions?
> >
> > Martha


0 Likes
Anonymous_User Absent Member.
Absent Member.

Re: LDAP, SSL, IIS, Permitions

I still have the same problem..

I have downloaded the source code and recompiled Novell.Directory.Ldap.dll
(version 2.1.7) with the patch descriebed in :
http://forge.novell.com/pipermail/ldapcsharp-bugs/2006-May/000030.html. I
have downloaded the Mono.Security.dll (version 1.2.3), and installed the
certificate with mono certmgr.exe (certmgr –add –c –m Trust xxx.cer). My
user ('testuser') has been given read and execute rights to the mono trust
store (...\document and settings\all users\program data\.mono\... ).

I have written a small windows test application using SSL with LDAP
libraries for C# and it works fine, also when I run the application
as 'testuser'.

But when I run my asp.net web application as ‘testuser’ I get the
error: "... ---> System.IO.IOException: The authentication or decryption
has failed. ---> Mono.Security.Protocol.Tls.TlsException: Invalid
certificate received form server. ..."

It seems like the asp.net application is unable to read the certificate
from the certificate store ?!?!

I really need to solve this problem soon !!!

Martha



> > To help narrow down where the issue is try using LDAPSearch utility

and
> > access the directory.
> >
> > These "tools" can be found in the cldap download at:
> > http://developer.novell.com/wiki/index.php/LDAP_Libraries_for_C
> >
> > Docs are at:
> > http://developer.novell.com/documentation/cldap/index.html?

> page=/documentation/cldap/ltoolenu/data/ahufc6o.html
> > -jim
> >
> > martha@itslearning.com wrote:
> > > I have integrated SSL with LDAP libraries for C# in an asp.net
> > > application running under IIS. It works fine when IIS runs under

the
> > > administrator user. But when I change the user (to a user with less
> > > access) I have problems with Bind ("… handshake failed…"). I have

> also
> > > given the new user read/execute-access to the folder where the

> certificate
> > > is installed (.../.mono/certs/Trust/) but it doesn’t solve the

> problem.
> > >
> > > Any solutions?
> > >
> > > Martha

>


0 Likes
The opinions expressed above are the personal opinions of the authors, not of Micro Focus. By using this site, you accept the Terms of Use and Rules of Participation. Certain versions of content ("Material") accessible here may contain branding from Hewlett-Packard Company (now HP Inc.) and Hewlett Packard Enterprise Company. As of September 1, 2017, the Material is now offered by Micro Focus, a separately owned and operated company. Any reference to the HP and Hewlett Packard Enterprise/HPE marks is historical in nature, and the HP and Hewlett Packard Enterprise/HPE marks are the property of their respective owners.