hello,
I have created a test .ASP web page using FileSystemObject to access a
remote file share and query AD for some basic user account info (again on a
remote DC). so there are actually 4 computers involved in the transaction
CL1 (client vista), srv1 (the web server, 2008), dc1 (the dc with LDAP,
2008), fs1 (file server with a share, 2008).
I have CONSTRAINED delegation enabled for the correct user/computer
accounts. the delegation to the DC (LDAP) works fine from the script. But
the FileSystemObject, although the delegation is correctly enabled for CIFS
protocol to FS1 (as well as the DC1) never tries to obtain the ticket and
does only anonymous access.
Why? Is that any bug in the FileSystemObject COM?
thank you very much.
ondrej sevecek
MVP, MCM: Directory
|
Similar Threads
Linear Mode
