This content has been marked as final. Show 4 replies
1 person found this helpful
if this method returns an Context, then the user is valid.Not so. That's only an InitialContext. No contact has been made yet with the LDAP server. You have to lookup something that is in LDAP for this technique to have any validity.
so if, after i get the InitialContext , i do a search for the same user is enough get any validity?
i think the problem is that the context its already valid, and all the operations that we do return valid values.
Another info that i get from some tests i do, if we change password 3 times in a row, only with the last 2 passwords i can get a valid context object. Is there any option/parameter that is active to save the last connection or something like that?
i found what is the problem AD saves the oldPasswordValue during a time, the default time is 60 min according to http://support.microsoft.com/?id=906305.
if i do the same java code after the 60 min(AD default time), all goes OK.
thanks for the help, other vision of the problem.
Interesting conclusion. Thanks for posting back and the link.