[英]Getting a lot of these messages Membership credential verification failed
I am getting a lot of these in my event viewer: 我在事件查看器中得到了很多:
Event code: 4006
Event message: Membership credential verification failed.
Event time: 1/18/2014 11:33:27 AM
Event time (UTC): 1/18/2014 5:33:27 PM
Event ID: dd4b04a795db4e5ab5fafd8243280047
Event sequence: 1224
Event occurrence: 28
Event detail code: 0
Application information:
Application domain: /LM/W3SVC/3/ROOT/SuburbanCustPortal-1-130345141090318852
Trust level: Full
Application Virtual Path: /SuburbanCustPortal
Application Path: C:\inetpub\secure.ssswebportal.com\SuburbanCustPortal\
Machine name: WIN-OB929P97YAR
Process information:
Process ID: 4384
Process name: w3wp.exe
Account name: NT AUTHORITY\NETWORK SERVICE
Request information:
Request URL: http://myurl.com:443/SuburbanCustPortal/Account/Logon2
Request path: /SuburbanCustPortal/Account/Logon2
User host address: xxx.xxx.xxx.xxx
User:
Is authenticated: False
Authentication Type:
Thread account name: NT AUTHORITY\NETWORK SERVICE
Name to authenticate: nancyduve
Custom event details:
It seems to be always happening on the Logon2 url. 它似乎总是在Logon2网址上发生。
Here is my Logon2: 这是我的Logon2:
public ActionResult Logon2(LogOnModel model, string returnUrl, string corpid)
{
var control = Logging.StartLog();
control.Source = SourceEnum.WebPortal;
control.SessionId = Session.SessionID;
try
{
Logging.WriteLog("Starting Logon2");
Logging.WriteLog("returnUrl: " + returnUrl);
Logging.WriteLog("corpid: " + corpid);
Logging.WriteLog("model.UserName: " + model.UserName);
Logging.WriteLog("model.Password: " + model.Password);
Logging.WriteLog(string.Format("ModelState.IsValid: {0}", ModelState.IsValid));
if (ModelState.IsValid)
{
if (Membership.ValidateUser(model.UserName, model.Password))
{
Logging.WriteLog("Validated User");
Logging.WriteLog(string.Format("model.UserName: {0}", model.UserName));
FormsAuthentication.SetAuthCookie(model.UserName, true);
if (Url.IsLocalUrl(returnUrl) && returnUrl.Length > 1
&& returnUrl.StartsWith("/")
&& !returnUrl.StartsWith("//")
&& !returnUrl.StartsWith("/\\"))
{
Logging.WriteLog("Redirect(returnUrl)");
return Redirect(returnUrl);
}
Logging.WriteLog("Start _client.RequestCustomersForAccount(model.UserName)");
var customer = _client.RequestCustomerForAccount(model.UserName);
// ********** NO ACCOUNTS FOUND ************
// No customers assigned to this login
// take them to the add account screen
if (customer == null)
{
// no accounts tied to this logon
Logging.WriteLog("No accounts found for this login.");
Logging.WriteLog("RedirectToAction(AddCustomer, Customer)");
// we need to make sure the branch account number is blank from any prior visits
Session[SessionEnums.CurrentAccountGuid.ToString()] = string.Empty;
Session[SessionEnums.CurrentBranchNumber.ToString()] = string.Empty;
Session[SessionEnums.CurrentAccountNumber.ToString()] = string.Empty;
return RedirectToAction("AddCustomer", "Customer");
}
// the account's tokenid that was used when the account was created
// takes presidence over the one being passed in since the account
// login is specific to the original company that they signed up with
Guid acctguid;
if (Guid.TryParse(customer.AccountId, out acctguid))
{
var tokenid = _client.GetAccountTokenId(acctguid);
if (tokenid != Guid.Empty)
{
GetCookieInfo.TokenId = tokenid.ToString();
Session[SessionEnums.TokenId.ToString()] = tokenid.ToString();
}
}
Logging.WriteLog("RedirectToAction(AccountScreen, Customer)");
model.AccountId = customer.AccountId;
// save this account info in the cookie and session
Session[SessionEnums.CurrentAccountGuid.ToString()] = customer.AccountId;
Session[SessionEnums.CurrentBranchNumber.ToString()] = customer.Branch;
Session[SessionEnums.CurrentAccountNumber.ToString()] = customer.AccountNumber;
Logging.WriteLog(string.Format("customer.AccountId: {0}", customer.AccountId));
Logging.WriteLog(string.Format("customer.Branch: {0}", customer.Branch));
Logging.WriteLog(string.Format("customer.AccountNumber: {0}", customer.AccountNumber));
// only 1 account tied to this logon
return RedirectToAction("AccountScreen", "Customer");
}
else
{
var user = Membership.GetUser(model.UserName);
if (user != null && user.IsLockedOut)
{
const string lockedmsg =
"This account has been locked due to too many login attempts. Please reset your password to unlock this account.";
Logging.WriteLog(lockedmsg);
ModelState.AddModelError(string.Empty, lockedmsg);
}
if (user != null && !user.IsApproved)
{
const string lockedmsg =
"This account has been registered but the email that was sent was never authenticated. Please check your email account for this email.";
Logging.WriteLog(lockedmsg);
ModelState.AddModelError(string.Empty, lockedmsg);
}
else
{
const string msg = "Invalid username or password.";
Logging.WriteLog(msg);
ModelState.AddModelError(string.Empty, msg);
}
}
}
// If we got this far, something failed, redisplay form
return View("Logon");
}
catch (Exception ex)
{
Logging.WriteLog(string.Format("exception: {0}", ex.Message));
Logging.WriteException(ex);
return View("Logon");
}
finally
{
Logging.WriteLog(control, "End Logon2");
}
}
Am I missing something in my code or is this a normal log? 我在代码中丢失了某些内容还是正常的日志?
Have you checked that your ApplicationName
in your Web.Config
has been set up correctly? 您是否检查过
Web.Config
中的ApplicationName
设置正确? That's when I've seen this error the most. 那是我最常看到此错误的时间。
Alternatively it's possible you have a user (nancy) who is locked out and she keeps trying to log in, have you enabled locking users out and could you check to see if she meets this criteria? 或者,您可能有一个被锁定的用户(nancy),而她一直在尝试登录,是否启用了将用户锁定的功能,是否可以检查她是否满足此条件?
声明:本站的技术帖子网页,遵循CC BY-SA 4.0协议,如果您需要转载,请注明本站网址或者原文地址。任何问题请咨询:yoyou2525@163.com.