3.3.4.4.8.8 Remote Authentication Error

  • Article

If the server receiving the request needs to contact another server to service the request, but the client does not allow the server to delegate its credentials for execution of the request on the remote server using the client’s security context (as specified in section 3.1.4.3), the server MUST return a SOAP fault with a GetADPrincipalGroupMembershipFault fault subcode. The fault detail SHOULD be as specified in the following table.

Field

Value

[Code]

soapenv:Receiver

[Subcode]

GetADPrincipalGroupMembershipFault

[Action]

http://schemas.microsoft.com/2008/1/ActiveDirectory/Data/fault

[Reason]

Active Directory returned an error processing the operation.

[Detail]

 
 <soapenv:Detail>
     <GetADPrincipalGroupMembershipFault
       xmlns="http://schemas.microsoft.com/2008/1/ActiveDirectory/CustomActions"
       xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance">
       <ArgumentError xsi:nil="true"></ArgumentError>
       <DirectoryError>
         <ErrorCode>...</ErrorCode>
         <ExtendedErrorMessage   i:nil="true"></ExtendedErrorMessage>
         <MatchedDN i:nil="true"></MatchedDN>
         <Message>...</Message>
         <Referral i:nil="true"   xmlns:sera="http://schemas.microsoft.com/2003/10/Serialization/Arrays"></Referral>
         <ShortMessage>...</ShortMessage>
         <Win32ErrorCode>...</Win32ErrorCode>
       </DirectoryError>
       <Error xsi:nil="true"></Error>
       <ShortError xsi:nil="true"></ShortError>
     </GetADPrincipalGroupMembershipFault>
 </soapenv:Detail>