无法再添加AD用户 - 人们选择器无法找到AD用户 [英] Can no longer add AD users - people picker cannot find AD users

问题描述

我在农场工作，最初配置为基于声明的身份验证 - 集成Windows身份验证（NTLM）。 随后，使用ADFS为可信身份提供程序设置了服务器场。 但是，ADFS配置不正确，用户
无法访问。 我后来发现，可信身份提供商未经检查，但发现我无法再向任何现有网站或新网站添加或删除AD用户。 基本上，我无法修改权限，因为人员选择器不会
识别AD用户。 例如，我去更改网站集管理员，我收到以下错误：

I am working on farm where it was initially configured for Claims Based Auth - Integrated Windows Auth (NTLM).  It appeared the farm was later setup for Trusted Identity Provider using ADFS.  However, ADFS was not configured properly and users could not get access.  I later found out that, Trusted Identity Provider was unchecked but noticed that I could no longer add or remove AD users to any existing or new site.  Basically, I couldn't modify permissions as the people picker would not identify the AD users.  For example, I went to change site collection administrators and I get the following error:

未找到完全匹配。点击没有解决更多选项的项目。

我想我应该一起删除可信赖的识别提供商所以我通过运行以下命令来完成此操作：

I figured I should remove the trusted Identify Provider all together so I did so by running the following commands:

Remove-SPClaimProvider< NAME>

Remove-SPClaimProvider <NAME>

Remove-SPTrustedIdentityTokenIssuer< NAME>

Remove-SPTrustedIdentityTokenIssuer <NAME>

这些网站是可访问的，但我无法添加或删除任何网站的用户 - 人们选择器不会'检测任何AD用户。 任何想法将不胜感激。

The sites are accessible but I cannot add or remove users to any site - people picker wouldn't detect any AD users.  Any ideas would be greatly appreciated.

谢谢，

Rumi

推荐答案

Hi Rumi，

Hi Rumi,

您能否确认在中央管理员级别发生同样的情况？

Can you confirm that same is happening at central admin level?

 

这篇关于无法再添加AD用户 - 人们选择器无法找到AD用户的文章就介绍到这了，希望我们推荐的答案对大家有所帮助，也希望大家多多支持IT屋！