REREdiSanto
New Member
I have an ASP.NET application developed in Visual Studio 2010 using ver 4 of the .NET Framework that uses the native Authentication controls. I have wired up the site using the Active Directory membership provider. My connection string looks like this:\[code\]connectionString="LDAP://MYDC-004/DC=company,DC=corp,DC=pvt"\[/code\]This works well, as the login page works properly, and any user that exists in AD can log in with their credentials.However, I only want to allow users that are in one specific Security Group to be able to log in. I know where the security group (called "GR-DwgDep-Admins") is located in AD Organizational Units, so I came up with this modified connection string:\[code\]connectionString="LDAP://MYDC-004/CN=GR-DwgDep-Admins,OU=Groups,OU=Division,DC=company,DC=corp,DC=pvt" />\[/code\]When I attempt to log in (and I am definitely in this group), the error I get is "User objects cannot be created in the specified container."Is my syntax incorrect? Or am I doing this the wrong way conceptually? I would really prefer to do this via the connection string setting, since that way the existing .NET login control will work with it as-is.I would greatly appreciate any suggestions anyone has. Thank you!