Skip to Navigation or
Skip to Content

The Specified Directory Service Attribute Or Value Does Not Exist

Feeds

RSS Feed

<< February | March | April >>

Tuesday, 16th March 2010

"The specified directory service attribute or value does not exist"

If you've come across this problem while trying to use Active Directory, you may well be dancing the double-hop.

This issue can occur when you switch on "Integrated Windows Authentication" in IIS and then try to get some information from Active Directory for the logged-in user.

The reason for this error is that the credentials will only perform "one hop", from the user's local machine to the web server. When you try and carry these from the web server to Active Directory, this is a second hop and won't work. The double-hop rule is there to stop your credentials from being passed around all over the place.

To see if you are suffering from the double-hop issue, change your IIS settings to "Basic Authentication". This will solve the double-hop problem because this passes both the username and the password to the web server.

 

You Are Here: Home » Blog » The Specified Directory Service Attribute Or Value Does Not Exist

 

I use a cookie on this website. This cookie doesn't contain or relate to any personal information and it isn't shared with any other website, it just ensures that I don't count you more than once in my website statistics. The Privacy and Electronic Communications Regulations require me to ask your permission to use this cookie, so please indicate below that you are happy for me to do this - I will remember your selection with a cookie, so if you accept I won't ask again...