Adaxes

Password SelfService - Failed to connect to nearest Adaxes

0 votes

We have not deployed the Password SelfService out yet, but I am making my help desk guys use the password reset tools when they lock themselves out. Today one of them was unable to get past identifying who they were (domain\username). Would get the error "Failed to connect to the nearest Adaxes Services". I was able to replicate the issue on another computer. I was troubleshooting the client connectivity when I found this event in the Adaxes log on the web server. A reboot finally cleared it up, but is there a reason or something I can do differently to resolve it instead of rebooting the server? Thanks

Log Name: Adaxes
Source: Adaxes Web UI
Date: 4/1/2013 6:18:46 PM
Event ID: 0
Task Category: None
Level: Error
Keywords: Classic
User: N/A
Computer: Adaxes001.this.domain.com
Description:
Softerra.Adaxes.Web.ManageDirectory.FeatureNotSupportedException: Failed to connect to the nearest Adaxes service. ---> Softerra.Adaxes.Adsi.DirectoryComException (0x80004005): The operation being requested was not performed because the user has not been authenticated. (Server: this.domain.com) ---> System.DirectoryServices.Protocols.DirectoryOperationException: An operation error occurred.
at System.DirectoryServices.Protocols.LdapConnection.ConstructResponse(Int32 messageId, LdapOperation operation, ResultAll resultType, TimeSpan requestTimeOut, Boolean exceptionOnTimeOut)
at System.DirectoryServices.Protocols.LdapConnection.SendRequest(DirectoryRequest request, TimeSpan requestTimeout)
at Softerra.Adaxes.Ldap.LdapSearchHelper.SearchObjects(String distinguishedName, String filter, SearchScope scope, Int32 sizeLimit, Boolean throwIfNotThere, String[] attributes)
at Softerra.Adaxes.ServiceLocation.ServiceConnectionPointManager.Find(String baseDN, ICollection1 keywords) at Softerra.Adaxes.Adsi.AdmServiceFactory.ConfigurationSetBasedStrategy.FindService(String targetServer) at Softerra.Adaxes.Adsi.AdmNamespace.GetNearestService(String targetServer, String usernameArg, String passwd) at Softerra.Adaxes.Web.Common.AdaxesServiceFactory.AdaxesServiceFactoryImpl.GetNearestService(IHttpContext httpContext, Boolean skipCache) at Softerra.Adaxes.Web.PasswordSelfService.UserControls.SelfPasswordResetFormViewPresenter.GetNearestService() --- End of inner exception stack trace --- Event Xml: <Event xmlns="<http://schemas.microsoft.com/win/2004/08/events/event>"> <System> <Provider Name="Adaxes Web UI" /> <EventID Qualifiers="0">0</EventID> <Level>2</Level> <Task>0</Task> <Keywords>0x80000000000000</Keywords> <TimeCreated SystemTime="2013-04-01T22:18:46.000000000Z" /> <EventRecordID>12861</EventRecordID> <Channel>Adaxes</Channel> <Computer>Adaxes001.this.domain.com</Computer> <Security /> </System> <EventData> <Data>Softerra.Adaxes.Web.ManageDirectory.FeatureNotSupportedException: Failed to connect to the nearest Adaxes service. ---> Softerra.Adaxes.Adsi.DirectoryComException (0x80004005): The operation being requested was not performed because the user has not been authenticated. (Server: int.clarkus.com) ---> System.DirectoryServices.Protocols.DirectoryOperationException: An operation error occurred. at System.DirectoryServices.Protocols.LdapConnection.ConstructResponse(Int32 messageId, LdapOperation operation, ResultAll resultType, TimeSpan requestTimeOut, Boolean exceptionOnTimeOut) at System.DirectoryServices.Protocols.LdapConnection.SendRequest(DirectoryRequest request, TimeSpan requestTimeout) at Softerra.Adaxes.Ldap.LdapSearchHelper.SearchObjects(String distinguishedName, String filter, SearchScope scope, Int32 sizeLimit, Boolean throwIfNotThere, String\[\] attributes) at Softerra.Adaxes.ServiceLocation.ServiceConnectionPointManager.Find(String baseDN, ICollection1 keywords)
at Softerra.Adaxes.Adsi.AdmServiceFactory.ConfigurationSetBasedStrategy.FindService(String targetServer)
at Softerra.Adaxes.Adsi.AdmNamespace.GetNearestService(String targetServer, String usernameArg, String passwd)
at Softerra.Adaxes.Web.Common.AdaxesServiceFactory.AdaxesServiceFactoryImpl.GetNearestService(IHttpContext httpContext, Boolean skipCache)
at Softerra.Adaxes.Web.PasswordSelfService.UserControls.SelfPasswordResetFormViewPresenter.GetNearestService()
--- End of inner exception stack trace ---</Data>
</EventData>
</Event>

by (1.2k points)

1 Answer

0 votes
by (40 points)

We had the same "Failed to connect to the nearest Adaxes Service" error recently on our password self-service page and it turned out to be ASP.NET Impersonation causing the issue. This needed to be disabled.
Only thing is we do run a seperate IIS web interface site just for self-service password resets so I'm not 100% sure if ASP.NET Impersonation is needed on the regular Adaxes IIS sites if you don't do the same.

Hopefully this might give you something to look at though. :)

Chris.

0

Hello,

The posisble reason for such behavior may be that, for some reason, the default settings that are used for the application pool of your Adaxes Web Interface sites are not working.

To correct the issue:

  1. On the computer, where Adaxes Web Interface is installed, launch Internet Information Services (IIS) Manager from Control Panel -> Administrative Tools.
  2. In the Console Tree, expand the server that hosts Adaxes Web Interface, and then expand Sites.
  3. Expand the web site for Adaxes Web Interface.
  4. Select the virtual directory for the Web Interface type you are experiencing issues with.
  5. In the right view pane click Basic Settings...
  6. Note the application pool that is used for the Web Interface site. It is displayed in the Application pool field.
  7. Click Cancel and select Application Pools in the Console Tree.
  8. Select the application pool that is used for the Web Interface type.
  9. Click Advanced Settings... in the right view pane.
  10. In the dialog box that appears, select the Identity field and press the Select button.
  11. In the dialog box that appears, select the NetworkService built-in account.
  12. Click OK two times and restart IIS.
by (216k points)

Related questions

0 votes
1 answer
Periodic 'Unable to connect to nearest Adaxes Service' error

Hi, We've recently started seeing users get 'Unable to connect to nearest Adaxes service' errors when accessing the Adaxes web portal. It's far too vague\random to have an idea ... last night to see if that fixed it, but we have had the issue again today.

asked Dec 13, 2013 by firegoblin (1.6k points)
0 votes
1 answer
I'm using IIS to reverse proxy to the adaxes selfservice web interface.

I'm trying to provide the capability for ID admin users to perform AD tasks using the web interface. I am not able to edit attributes for an existing user when ... any attribute it gives me an error "An unexpected response was received from the server".

asked Apr 8, 2021 by atnorman (120 points)
0 votes
1 answer
failed with the following error message: The user "adaxes" isn't assigned to any management roles.

Our adaxes service account is able to create the mailbox when running our create user business rule, but cannot change any settings like disable OWA. What level of security will it need?

asked Apr 6, 2021 by bstone (50 points)
0 votes
1 answer
Automatically connect to adaxes service after start Adaxes Admin Console

Hello Is there any way to configure Adaxes Administration Console to automatically connect to the adaxes service after startup? That would be pretty handy. So the console can be ... which sometimes takes some time. I use version 2021.1 update 5 regards pudong

asked Mar 12, 2022 by pudong (670 points)
0 votes
1 answer
Can I manage the user that is user by Adaxes to connect to Active Directory with Privilege Access Management (PAM)?

Can I manage the user that is user by Adaxes to connect to Active Directory with Privilege Access Management (PAM)? Since this user can change user's password, ... would like to manage this user so that PAM can change/rotate the password periodically

asked Nov 18, 2021 by fachmi (170 points)
3,354 questions
3,054 answers
7,798 comments
545,150 users