Last post May 29, 2012 08:18 PM by gtscdsi
May 18, 2012 01:31 PM|Cwilson2005|LINK
Let me start off by saying I'm fairly new to active directory, and I'm not the one who handles the configurations of the servers (if this is indeed a server related problem). However, if given proper advice I can relay said advice to the correct people.
We're running a large ASP.NET C# .NET 3.5 application.
Here is the scenerio we're encountering:
I created a test page to test our global catalog AD searches.
From Test server 1 here is what happens:
Using GC://TEST.COM:3268 (unsecured) -> Great performance.
Using G:C//TEST.COM:3269 (secured) -> Great Performance
From Test server 2:
Using G:C//TEST.COM:3269 (secured) -> Fails.
The only exception I see is: Exception: "The server is not operational"
I wouldn't think it's a code issue because both test servers are running the same code. We only have an issue when we try to connect to the GC's secure port from Test server 2.
May 18, 2012 03:11 PM|Cwilson2005|LINK
Here is exception information when I try to run it on the server, I have it dumping the exception to a log table:
Directory Services Com Exception (Exception Message) : The server is not operational.
at System.DirectoryServices.DirectoryEntry.Bind(Boolean throwIfFail)
at System.DirectoryServices.DirectoryEntry.Bind() at System.DirectoryServices.DirectoryEntry.get_AdsObject()
at System.DirectoryServices.DirectorySearcher.FindAll(Boolean findMoreThanOne)
at System.DirectoryServices.DirectorySearcher.FindOne()at TestClass.GetUserDomainTest(String UserName) in
Like I said, I don't believe it is a code issue, but I have enclosed the code if it will possilby help:
private string GetUserDomain2(string UserName)
string domainName = String.Empty;
// This is Test page code so we can change the values as we want
DirectoryEntry entry = new DirectoryEntry(txtGCPath.Text)
entry.Username = txtGCUserID.Text;
entry.Password = txtGCPassword.Text;
// Set SSL or leave default
if (cb1.Checked == true)
entry.AuthenticationType = AuthenticationTypes.SecureSocketsLayer;
DirectorySearcher search = new DirectorySearcher();
search.SearchRoot = entry;
search.SearchScope = SearchScope.Subtree;
search.Filter = string.Format(txtGCFilter.Text, UserName);
SearchResult results = search.FindOne(); // CRASHES HERE
// Parsing code removed.
May 29, 2012 08:18 PM|gtscdsi|LINK
Is there any difference with any intermediate network devices like firewalls between you Test Server 1 and the DC and your Test Server 2 and the DC. Typically you will receive this error if you are unable to connect the the server. Since it is working
for test server 1 this is why i'm suspecting some kind of different networking device preventing access to the DC from Test Server 2 via SSL.
On Test Server 2, can you test to see if you can connect properly over SSL to AD server by using LDP.exe?
LDP.exe is included with Windows Server 2003 support tools but can be used on other OS as well.
3rd party Blog Tutorial with how to use LDP.exe and available as seperate download:
Please let us know the results.