Sounds like an LDAP caching issue.
How often does the application re-do the serverless bind? If it doesn't, then that would explain it all right there. Regards, Michael B. Smith MCITP:EM/MCSE/Exchange MVP http://TheEssentialExchange.com From: mck1012 [mailto:[EMAIL PROTECTED] Sent: Sunday, July 06, 2008 10:30 PM To: NT System Admin Issues Subject: Re: IIS AD auth Dont really have to much information on the IIS server. I do not administer the server only the DC's. The web admin is just telling me that the web app is failing on logins when the DC is rebooting. I do not know IIS that well, Just looking for some pointer on what I can look at for troubleshooting on the IIS server. ----- Original Message ---- From: Ken Schaefer <[EMAIL PROTECTED]> To: NT System Admin Issues <[email protected]> Sent: Sunday, July 6, 2008 10:17:43 PM Subject: RE: IIS AD auth Can you clarify exactly how the authn process works? You are not using any built-in HTTP based authentication then, or relying on LSASS? Instead, the web application itself binds to AD via LDAP and submits credentials? Cheers Ken From: mck1012 [mailto:[EMAIL PROTECTED] Sent: Monday, 7 July 2008 12:15 PM To: NT System Admin Issues Subject: Re: IIS AD auth LDAP string is pointing to the domain not a single DC. AD sites are setup properly. Web server is in Hub site and all DC's are GC's. I know the sites are properly setup because we just had an ADRap last month. ----- Original Message ---- From: Michael B. Smith <[EMAIL PROTECTED]> To: NT System Admin Issues <[email protected]> Sent: Sunday, July 6, 2008 8:46:30 PM Subject: RE: IIS AD auth I guess I would be interested to know what the LDAP connection string is that the web app is using. Also whether all AD sites are set up properly (and the GC/DCs in the proper sites). Regards, Michael B. Smith MCITP:EM/MCSE/Exchange MVP http://TheEssentialExchange.com <http://theessentialexchange.com/> From: mck1012 [mailto:[EMAIL PROTECTED] Sent: Sunday, July 06, 2008 8:08 PM To: NT System Admin Issues Subject: IIS AD auth I am having problems with a web app we use and AD integrated authentication. We have 5 DC's in the site where the IIS server is and whenever one DC reboots the IIS server does not seem to attempt to authenticate with order DC's. The DC that is rebooting does not hold any roles and is not a DNS server, It is a GC but so are all the other DC's. When someone tries to login they never authenticate and keep getting prompted for an username and password until the DC comes back online. Thanks ~ Upgrade to Next Generation Antispam/Antivirus with Ninja! ~ ~ <http://www.sunbelt-software.com/SunbeltMessagingNinja.cfm> ~
