MonitorWare Knowledge Base

I run a DCOM object on a Windows 2000 Server; without Active Directory Installed. There are two Active Directory Servers on the domain that this server is on.

I use the following code within the DCOM object to authenticate the user

Public Function LogonActiveDirectory(TheServer As String, Domain As String, ADMUser As String, ADMPassword As String)

Dim LDAPString As String
Dim ReturnString As String
Dim dso As IADsOpenDSObject, ActiveDirectory As IADs

On Error GoTo CannotLogon
10: LDAPString = "LDAP://" + TheServer + "/" + Mid(GetDCString(Domain), 2)
11: Set dso = GetObject("LDAP:")
12: Set ActiveDirectory = dso.OpenDSObject(LDAPString, ADMUser, ADMPassword, ADS_SECURE_AUTHENTICATION)
13: Set ActiveDirectory = Nothing
14: Set dso = Nothing
GoTo AtEnd

CannotLogon:
ReturnString = "Error ModuleSecurity.LogonActiveDirectory->" + Err.Description + " @ " + CStr(Erl) + "(" + LDAPString + ")"
Resume AtEnd

AtEnd:
On Error GoTo 0
LogonActiveDirectory = ReturnString

End Function

When I execute a program locally on the server that the DCOM object is installed on, it works fine.

When I call it from a client, the DCOM object starts properly; but, when I call this function within the DCOM, I get the error:
"The authentication mechanism is unknown"

Anyone have any ideas?

The two critical pieces appear to be:

1) Use Secure Authentication (which you are already using)

2) Specify the username fully qualified with the domain name:

ie: domain\username

See if that resolves the error.