I am using (trying to anyway) an ActiveDirectory plugin for ScrewTurn wiki called UserAuth (by "ElectricImages"). Whenever a user logs into the Wiki's login page with correct network credentials (provides domain\user and password), they get a login error and the ScrewTurn log shows the message Authentication of ...... failed: A referral was returned from the server.
If the user gives the wrong password, then the log says Authentication of ...... failed: Logon failure: unknown user name or bad password, so it seems that ActiveDirectory is in fact getting the authentication info.
What could be going wrong?
OK, I fixed it... There were 2 problems:
I needed to use the fully qualified name, e.g. Source=ServerFault.com (as suggested by squillman)
I needed to change the "Anonymous Access" user in IIS to be a network user that has access to Active Directory (previously, it was a local machine user)
Thanks all who helped!
Directory referral messages often indicate that you're either binding to the directory in the wrong place or that you're doing some kind of cross-domain query against a server that might be in the same forest but isn't responsible for the domain in question. What are you using for the Source configuration tag? Do you have a domain controller at the site where your server is that is authoritative for that domain?
I have seen this when when the Base DN was set to legit-looking, but non-existant DN.