ValidateCredentials returns true for unknown user?

by

Some amount of googling later (not that I’ve been in and out of google all day trying to find this anyway), I’ve found the answer.

Put simply, if the Guest account is enabled in the domain, ValidateCredentials will return TRUE for an unknown user. I’ve just checked the status of the guest user in development.company.com, and sure enough the account is enabled. If I have the guest account disabled, ValidateCredentials correctly returns false.

This is a fairly fundamental gotcha, not sure I’m keen on this behaviour… pity it’s not explicitly mentioned on MSDN.

More Related Contents:

  1. Validate a username and password against Active Directory?
  2. How to flatten tree via LINQ?
  3. What ‘additional configuration’ is necessary to reference a .NET 2.0 mixed mode assembly in a .NET 4.0 project?
  4. How can I send a file document to the printer and have it print?
  5. How to abort a Task like aborting a Thread (Thread.Abort method)?
  6. Covariance and IList
  7. System.Lazy with different thread-safety mode
  8. C# use System.Type as Generic parameter
  9. Using multiple versions of the same DLL
  10. Can I get more than 1000 records from a DirectorySearcher?
  11. How do I restart a WPF application? [duplicate]
  12. How to easily initialize a list of Tuples?
  13. What is point of SSL if fiddler 2 can decrypt all calls over HTTPS?
  14. Unblock File from within .net 4 c#
  15. ComboBox- SelectionChanged event has old value, not new value
  16. How to clear MemoryCache?
  17. What does MaxDegreeOfParallelism do?
  18. Adding and removing users from Active Directory groups in .NET
  19. How to get all the AD groups for a particular user?
  20. Read Big TXT File, Out of Memory Exception
  21. Comboboxes are linked for some reason
  22. Parallel.For(): Update variable outside of loop
  23. Error 0x80005000 and DirectoryServices
  24. Inserting Certificate (with privatekey) in Root, LocalMachine certificate store fails in .NET 4
  25. “A referral was returned from the server” exception when accessing AD from C#
  26. c# Active Directory Services findAll() returns only 1000 entries [duplicate]
  27. Get Values from Process StandardOutput
  28. Is there a way to check whether unicode text is in a certain language?
  29. What is wrong with ToLowerInvariant()?
  30. How do I validate Active Directory creds over LDAP + SSL?

Leave a Comment