NoMatchingPrincipalException: An error occurred while enumerating the groups. The group could not b
NoMatchingPrincipalException: An error occurred while enumerating the groups. The group could not b
Certain users are getting this error.. can't figure out what the difference is between working accounts and non-working accounts.
[NoMatchingPrincipalException: An error occurred while enumerating the groups. The group could not be found.]
System.DirectoryServices.AccountManagement.AuthZSet.get_CurrentAsPrincipal() +252194
System.DirectoryServices.AccountManagement.FindResultEnumerator`1.get_Current() +69
System.DirectoryServices.AccountManagement.FindResultEnumerator`1.System.Collections.IEnumerator.get_Current() +10
System.Linq.<CastIterator>d__94`1.MoveNext() +156
System.Collections.Generic.List`1..ctor(IEnumerable`1 collection) +524
Devolutions.RemoteDesktopManager.Business.DirectoryServicesGetUserDetailsResult.AssignFromPrincipalSearchResult(Principal principal, PrincipalSearchResult`1 directoryGroups) in c:\Dev\devolutions\RemoteDesktopManager\Business\Results\DirectoryServicesGetUserDetailsResult.cs:63
Devolutions.RemoteDesktopManager.Managers.DirectoryServicesManager.GetUserDetails(String fullName, DirectoryServicesQueryParameter directoryServicesQueryParameter, Boolean isMultiDomain, Boolean isNested, RoleInfoEntity[] roleNames) in c:\Dev\devolutions\RemoteDesktopManager\Business\Managers\DirectoryServicesManager.cs:367
Devolutions.Server.Providers.RDMSMembershipProvider.CheckPasswordActiveDirectoryMultiDomain(String username, String password, MembershipLoginData membershipLoginData) in c:\Dev\devolutions\Websites\Server\Providers\RDMSMembershipProvider.cs:849
Devolutions.Server.Providers.RDMSMembershipProvider.DoValidateUserAgainstDomain(UserInfoEntity userInfoEntity, String password, MembershipLoginData membershipLoginData, Boolean addLoginData) in c:\Dev\devolutions\Websites\Server\Providers\RDMSMembershipProvider.cs:1078
Devolutions.Server.Providers.RDMSMembershipProvider.DoValidateUser(String username, String password, MembershipLoginData loginData, UserData userData, Boolean addLoginData) in c:\Dev\devolutions\Websites\Server\Providers\RDMSMembershipProvider.cs:1043
Devolutions.Server.Providers.RDMSMembershipProvider.DoValidateUser(String username, String password, MembershipLoginData loginData) in c:\Dev\devolutions\Websites\Server\Providers\RDMSMembershipProvider.cs:998
Devolutions.Server.Providers.RDMSMembershipProvider.AuthenticateUser(MembershipLoginData loginData, String userName, String password) in c:\Dev\devolutions\Websites\Server\Providers\RDMSMembershipProvider.cs:754
Devolutions.Server.Providers.RDMSMembershipProvider.DoValidateUserFull(String userName, String password, MembershipLoginData loginData) in c:\Dev\devolutions\Websites\Server\Providers\RDMSMembershipProvider.cs:1183
Devolutions.Server.Controllers.LoginController.Index(LoginModel model) in c:\Dev\devolutions\Websites\Server\Website\Controllers\LoginController.cs:73
lambda_method(Closure , ControllerBase , Object[] ) +139
System.Web.Mvc.ReflectedActionDescriptor.Execute(ControllerContext controllerContext, IDictionary`2 parameters) +229
System.Web.Mvc.ControllerActionInvoker.InvokeActionMethod(ControllerContext controllerContext, ActionDescriptor actionDescriptor, IDictionary`2 parameters) +35
System.Web.Mvc.Async.AsyncControllerActionInvoker.<BeginInvokeSynchronousActionMethod>b__39(IAsyncResult asyncResult, ActionInvocation innerInvokeState) +39
System.Web.Mvc.Async.WrappedAsyncResult`2.CallEndDelegate(IAsyncResult asyncResult) +67
System.Web.Mvc.Async.AsyncControllerActionInvoker.EndInvokeActionMethod(IAsyncResult asyncResult) +42
System.Web.Mvc.Async.AsyncInvocationWithFilters.<InvokeActionMethodFilterAsynchronouslyRecursive>b__3d() +72
System.Web.Mvc.Async.<>c__DisplayClass46.<InvokeActionMethodFilterAsynchronouslyRecursive>b__3f() +386
System.Web.Mvc.Async.AsyncControllerActionInvoker.EndInvokeActionMethodWithFilters(IAsyncResult asyncResult) +42
System.Web.Mvc.Async.<>c__DisplayClass2b.<BeginInvokeAction>b__1c() +38
System.Web.Mvc.Async.<>c__DisplayClass21.<BeginInvokeAction>b__1e(IAsyncResult asyncResult) +186
System.Web.Mvc.Async.AsyncControllerActionInvoker.EndInvokeAction(IAsyncResult asyncResult) +38
System.Web.Mvc.Controller.<BeginExecuteCore>b__1d(IAsyncResult asyncResult, ExecuteCoreState innerState) +29
System.Web.Mvc.Async.WrappedAsyncVoid`1.CallEndDelegate(IAsyncResult asyncResult) +65
System.Web.Mvc.Controller.EndExecuteCore(IAsyncResult asyncResult) +53
System.Web.Mvc.Async.WrappedAsyncVoid`1.CallEndDelegate(IAsyncResult asyncResult) +36
System.Web.Mvc.Controller.EndExecute(IAsyncResult asyncResult) +38
System.Web.Mvc.MvcHandler.<BeginProcessRequest>b__5(IAsyncResult asyncResult, ProcessRequestState innerState) +44
System.Web.Mvc.Async.WrappedAsyncVoid`1.CallEndDelegate(IAsyncResult asyncResult) +65
System.Web.Mvc.MvcHandler.EndProcessRequest(IAsyncResult asyncResult) +38
System.Web.CallHandlerExecutionStep.System.Web.HttpApplication.IExecutionStep.Execute() +399
System.Web.HttpApplication.ExecuteStep(IExecutionStep step, Boolean& completedSynchronously)
All Comments (15)
Hello,
What version of RDM are you using?
What version of Devolutions Server are you using?
Best regards,
Érica Poirier
sorry, 12.0.2 and 4.0.1
Hello,
Does this error always append for these non-working users? Are they able to connect on the DVLS data source?
Could you please send me your web.config file in a private message? You can find this file in the web application folder on the server where DVLS is hosted. Please remove any sensible information in it.
Best regards,
Érica Poirier
Sent you web.config
The problem we were experiencing was logging into RDM.. "DVLS Server Not Available" error after authenticating (before 2FA)
So I then had the user try logging into the web interface and got that stack trace.
I'm also getting the following error E-Mailed to me from DVLS - started at around the same time (Friday).
We rebuilt the DVLS app server to try to repair this as well.
Error:
HttpException - Cannot redirect after HTTP headers have been sent. at System.Web.HttpResponse.Redirect(String url, Boolean endResponse, Boolean permanent) at System.Web.Security.FormsAuthenticationModule.OnLeave(Object source, EventArgs eventArgs) at System.Web.HttpApplication.SyncEventExecutionStep.System.Web.HttpApplication.IExecutionStep.Execute() at System.Web.HttpApplication.ExecuteStep(IExecutionStep step, Boolean& completedSynchronously) --- Default
Any updates on this? We have a lot of users unable to access critical account data for our customers systems.
Hello,
Have you configure an administrator account in the Domain tab of the Server Settings?
Best regards,
Érica Poirier
Yes I have.
I disabled nested AD group and one user is able to log back in.. I'm confirming with others.
Hello,
We have an internal build version of DVLS with a potential fix that could help you with this issue.
Is it possible for you to test this version? I can help you with this upgrade through a remote session.
Best regards,
Érica Poirier
I'm not actually sure what nested groups are used for. I thought we had it checked previously and when I re-built that app server I had re-checked it.
Hello,
Nested AD groups are AD Group that is a member of another AD Group. You can consult this link for further information about it https://msdn.microsoft.com/en-us/library/cc246068.aspx.
Best regards,
Érica Poirier
I see.. I think we do have that in use then.. but only at the user level and the groups we reference in DVLS are not top-level groups.
Is it possible to get the fix for nested groups? We are using it in RDM so some users aren't seeing all passwords..
Hello,
Could you please send an email at support@devolutions.net and we will send you the zip file through WeTransfer.
Best regards,
Érica Poirier
No luck with 4.2.0. Still get the error with nested groups.