Try our conversational search powered by Generative AI!

Can't get ActiveDirectoryMembershipProvider to work


Have some real issues with the ActiveDirectoryMembershipProvider.
I have innstalled a ldap browser on the machine, and my logon information works like a charm,
but when I try to use the provider I  get
The specified domain or server could not be contacted
I have set connectionProtection="None" since the ldap browser only is able to connect without security.

Anyone that have any ideas? I'm starting to run short :)


Sep 22, 2010 12:35

Have debug'ed some more

It works from one machine, but not another.....

strange since the LDAP Browser works on both of them....

Sep 22, 2010 13:55

The only thing I can think of is different versions of the .net framework and/or operating system? Are both machines the same?

Sep 22, 2010 16:46
Sep 23, 2010 9:04

I can confirm that 445 needs to be opend to get ActiveDirectoryMembershipProvider to work

Sep 29, 2010 13:32

I can also confirm 389 and 445 needs to be open for it to work. And here's one more:

Note that security people will be nervous about opening 445...

Nov 06, 2012 12:02

Has anyone found why the ActiveDirectoryMembershipProvider needs 445/SMB open?

Some Googling around port 445 in general led me to this:

"In order to create a trust between two domains, you need to have TCP port 445 (the Microsoft SMB port) open on both sides. Having open ports though (especially for SMB traffic) is an invitation to attacks by worms and other malware, so the few ports you need to keep open the better, right?

What's not often known though is that once the trust has been established between the two domains, port 445 can then be closed since the port only needs to be open during trust creation."

If 445 is used by ActiveDirectoryMembershipProvider just to establish trust then it could be ok to close it after getting initial communication up. I'm guessing it won't work but I have suggested that my client does a test.

Edited, Nov 15, 2012 9:47
* You are NOT allowed to include any hyperlinks in the post because your account hasn't associated to your company. User profile should be updated.