Martin Hinshelwood's Blog

News

Disclaimer

The opinions expressed herein are my own personal opinions and do not represent my employer's view in any way.

Personal

Accreditation

Stats

My Stats

Posts - 254
Comments - 278
Trackbacks - 67

Twitter

hinshelm Xbox Live to Twitter is getting a bit update happy! about 4 hours ago

hinshelm hinshelm - Offline about 7 hours ago

hinshelm hinshelm - Unknown Status '-' about 7 hours ago

hinshelm hinshelm - Offline about 19 hours ago

hinshelm hinshelm - Unknown Status '-' about 19 hours ago

hinshelm hinshelm - Offline about 1 day ago

hinshelm hinshelm - Unknown Status '-' about 1 day ago

hinshelm hinshelm - Offline about 2 days ago

hinshelm hinshelm - Away about 2 days ago

hinshelm hinshelm - Playing Xbox 360 Dashboard about 2 days ago

Article Categories

Post Categories

Image Galleries

Blogs I read

Blogs of Friends

Paul Slater's Blog

Blogs on VSTS

Multi-Dimentional Free Thinking Bloggers

Personal

Projects

March 2008 Entries

What the 0x80072020?

I have found a small bug (as in, "Not working as expected!") in the new .NET 3.5 PrincipalContext classes. When you are running on an ASP.NET site in impersonation mode you cannot retrieve information from active directory without the following error:

System.Runtime.InteropServices.COMException (0x80072020): An operations error occurred. at System.DirectoryServices.DirectoryEntry.Bind(Boolean throwIfFail) at System.DirectoryServices.DirectoryEntry.Bind() at System.DirectoryServices.DirectoryEntry.get_AdsObject() at System.DirectoryServices.PropertyValueCollection.PopulateList() at System.DirectoryServices.PropertyValueCollection..ctor(DirectoryEntry entry, String propertyName) at System.DirectoryServices.PropertyCollection.get_Item(String propertyName) at System.DirectoryServices.AccountManagement.PrincipalContext.DoLDAPDirectoryInitNoContainer() at System.DirectoryServices.AccountManagement.PrincipalContext.DoDomainInit() at System.DirectoryServices.AccountManagement.PrincipalContext.Initialize() at System.DirectoryServices.AccountManagement.PrincipalContext.get_QueryCtx() at System.DirectoryServices.AccountManagement.Principal.FindByIdentityWithTypeHelper(PrincipalContext context, Type principalType, Nullable`1 identityType, String identityValue, DateTime refDate) at System.DirectoryServices.AccountManagement.Principal.FindByIdentityWithType(PrincipalContext context, Type principalType, IdentityType identityType, String identityValue) at System.DirectoryServices.AccountManagement.UserPrincipal.FindByIdentity(PrincipalContext context, IdentityType identityType, String identityValue) at UI_Controls_SharepointControl.Page_Load(Object sender, EventArgs e)

You need to specify a fixed account to access AD using:

Dim ctx As New PrincipalContext(ContextType.Domain, "[domain]", "[accountName]", "[password]")

This is not so good! What if I wanted to use the current users credentials to update only fields that they are allowed to update in AD? If I use a static account that can access any users fields then this becomes a security risk.

Ahh well, I will live with it for now, but if anyone has another suggestion...

Technorati Tags: ASP.NET, .NET Framework 3.5, .NET 3.5, ASP.NET 3.5, Active Directory

A Scottish dyslexic software developer: .NET architect, developer, evangelist, technology enthusiast and multi-dimensional free thinker

News

Disclaimer

Subscribe

Personal

Accreditation

Stats

My Stats

Twitter

Tag Cloud

Recent Comments

Recent Posts

Article Categories

Archives

Post Categories

Image Galleries

Blogs I read

Blogs of Friends

Blogs on VSTS

Multi-Dimentional Free Thinking Bloggers

Personal

Projects

What the 0x80072020?

posted @ Tuesday, March 04, 2008 10:18 AM | Feedback (5) | Filed Under [ Microsoft .NET Framework Microsoft Windows WCF ]