具有LDAP的FBA用户无法登录到扩展Web应用程序和访问站点 [英] FBA Users with LDAP can not Login to Extended Web Application and access site
问题描述
我必须将我的Web应用程序公开给Extranet。所以我使用"LDAP"扩展了Web应用程序和基于配置表单的身份验证。并创建了自定义登录页面。它工作正常。
I have to expose my web application to Extranet. So I extended the Web application and Configured Form Based Authentication using "LDAP" and created Custom Login Page as well. It is working fine.
我是新手这个FBA的东西,现在在"用户政策"中添加用户在中央管理员中,我为用户(FBA用户和Windows用户)获得两个帐户,如下所示。
Well I am new to this FBA stuff, now while adding users in "User Policy" in central admin I am getting two accounts for a user ( FBA User and Windows users) as shown below.
但问题是我们是否必须分别为FBA和AD用户维护权限?
But the question is do we have to maintain permission separately for both FBA and AD Users?
此外,在给予许可的同时,我没有获得FBA用户。请参见下面的截图:
Moreover, while giving permission I am not getting FBA Users. See screenshot below :
我们不能为FBA用户创建安全组,以便每次我们不必手动授予权限吗?
Can't we create a Security group for FBA users so that each time we don't have to give permission manually ?
尝试时登录,成功验证后抛出"抱歉,我们遇到了问题"错误。
While trying to login , after successful authentication it throws "Sorry We Encountered a Problem" Error.
以下是ULS详细信息:
Below is ULS details :
我之前使用请求访问选项授予用户访问权限,但仍然是抛出错误。
I have given access to the user earlier using request access option, but still its throwing error.
谢谢
Shubham
推荐答案
嗨Shubham,
Hi Shubham,
从错误消息中,主要错误消息"访问被拒绝",FBA用户没有该站点的权限。在人员选择器中,您找不到FBA用户。
From the error the message, the main error message "Access is denied", the FBA user does not have the permission on the site. And in the people picker, you cannot find the FBA user.
要解决问题,请查看以下内容:
To troubleshoot the issue, check things below:
1。检查是否已激活"基于表单的身份验证管理"网站集功能。
1. Check if the "Form based Authentication Management" site collection feature is activated.
转到"网站设置" - >网站集管理 - >网站集功能 - >基于表单的身份验证管理。
Go to Site Settings -> Site Collection Administration -> Site Collection Features -> Form based Authentication Management.
2。为每个Web应用程序创建新的提供程序。然后配置人员选择器以使用新的提供者。
2. Create the new providers for each web application. And then configure the people picker to use the new providers.
3。根据以下文章检查您是否使用LDAP配置FBA。
3. Check if you have configure FBA with LDAP according to the article below.
使用LDAP成员资格提供程序配置基于表单的身份验证的SharePoint 2013 Web应用程序。
Configure a SharePoint 2013 Web Application with Forms Based Authentication with a LDAP membership provider.
更多参考:
在SharePoint 2013中配置基于表单的身份验证 - 第1部分 - 创建成员资格数据库。
Configuring Forms Based Authentication in SharePoint 2013 – Part 1 – Creating the Membership Database.
在SharePoint 2013中配置基于表单的身份验证 - 第2部分 - 将用户添加到成员资格数据库。
Configuring Forms Based Authentication in SharePoint 2013 – Part 2 – Adding users to the Membership Database.
最好的问候,
Sara Fan
这篇关于具有LDAP的FBA用户无法登录到扩展Web应用程序和访问站点的文章就介绍到这了,希望我们推荐的答案对大家有所帮助,也希望大家多多支持IT屋!
