How could I get an LDAP User by UserPicker in User Profile Configuration of Shared Services
Hey guys, I want to add LDAP users into the User Profile Configuration of Shared Services, but I could only get the LDAP User:administrator in user picker, see following:
While I could get other LDAP Users in other web site:
-------------------------------------------------
Also see the web.config
SharedServices:
<connectionStrings>
<add name="SpiritCustomService" connectionString="LDAP://orientech.com" />
</connectionStrings>
<membership defaultProvider="AspNetActiveDirectoryMembershipProvider">
<providers>
<add name="AspNetActiveDirectoryMembershipProvider" type="System.Web.Security.ActiveDirectoryMembershipProvider,System.Web,Version=2.0.0.0,Culture=neutral,PublicKeyToken=b03f5f7f11d50a3a" connectionStringName="SpiritCustomService"
connectionProtection="Secure" applicationName="/_layouts/login.aspx" connectionUsername="Orientech\Administrator" connectionPassword="123" attributeMapUsername="sAMAccountName" />
</providers>
</membership>
<roleManager enabled="true" defaultProvider="AspNetSqlRoleProvider">
<providers>
<remove name="AspNetSqlRoleProvider" />
<add connectionStringName="AspNetSqlProvider" name="AspNetSqlRoleProvider" type="System.Web.Security.SqlRoleProvider, System.Web,Version=2.0.0.0, Culture=neutral, PublicKeyToken=b03f5f7f11d50a3a" applicationName="/"
/>
<add name="LdapRoleProvider" type="Microsoft.Office.Server.Security.LDAPRoleProvider, Microsoft.Office.Server, Version=12.0.0.0, Culture=neutral, PublicKeyToken=71E9BCE111E9429C" server="http://orientech.com"
port="389" useSSL="false" groupContainer="DC=orientech,DC=com" groupNameAttribute="cn" groupMemberAttribute="member" userNameAttribute="sAMAccountName" dnAttribute="distinguishedName" groupFilter="(ObjectClass=group)" scope="Subtree" />
</providers>
The other web site:
<!--Membership Provider-->
<membership defaultProvider="AspNetActiveDirectoryMembershipProvider">
<providers>
<add name="AspNetActiveDirectoryMembershipProvider" type="System.Web.Security.ActiveDirectoryMembershipProvider,System.Web,Version=2.0.0.0,Culture=neutral,PublicKeyToken=b03f5f7f11d50a3a" connectionStringName="SpiritCustomService"
connectionProtection="Secure" applicationName="/_layouts/login.aspx" connectionUsername="Orientech\Administrator" connectionPassword="123" attributeMapUsername="sAMAccountName" />
</providers>
</membership>
<!-- role provider -->
<roleManager enabled="true" defaultProvider="AspNetSqlRoleProvider">
<providers>
<remove name="AspNetSqlRoleProvider" />
<add connectionStringName="AspNetSqlProvider" name="AspNetSqlRoleProvider" type="System.Web.Security.SqlRoleProvider, System.Web,Version=2.0.0.0, Culture=neutral, PublicKeyToken=b03f5f7f11d50a3a" applicationName="/"
/>
</providers>
</roleManager>
----------------------------------------------
Is there any other parts in the web.config could affect the user picker results?
And also see the "LDAP Typed" Link I added in SharedServices:
Moderator Note: None of the images included worked so I deleted them. In any case NEVER add Images to your posts - add the URL pointing to the image only so that people on slow lines can decide whether to open them or not. Make sure the URL points to a publically
accessible site.
June 10th, 2011 4:37am
I found this article, hopefully it helps:
http://www.codedigest.com/Articles/Sharepoint/94_Active_Directory_for_FBA_in_SharePoint_using_LDAP.aspx
Free Windows Admin Tool Kit Click here and download it now
June 10th, 2011 12:45pm
Thank you very much. This is a quite detailed guide which is really useful.
And,also, fortunately, I had found a solution. There are some key points as following:
1. In the web.config in SharedServices, we should ensure the <PeoplePickerWildcards> node contains the MembershipProviders
such as:
<PeoplePickerWildcards>
<clear />
<add key="AspNetSqlMembershipProvider" value="%" />
<add key="ADMembership" value="%" />
</PeoplePickerWildcards>
2. In the User filter box, type the following LDAP search filter:
(&(objectCategory=person)(objectClass=user)( !(userAccountControl:1.2.840.113556.1.4.803:=2)))
Sorry, I have not figure out which point is necessarily required and which is over demanded, but these two had helped me got the
"AspNetActiveDirectoryMembershipProvider: <Users>" when finished Importing User Profile Configurations in SharedService.
June 12th, 2011 11:17pm