Hello all. I have a solution in which I need to hare two different login pages, one for admin and one for users. the site is set up as follows: Main site -- Publicly veiwable | |---- User section -- Must be a registered user | \--- Admin Section -- must be admin...more >>

Membership.ApplicationName and thread safety I have developed an ASP.NET 2.0 application that uses AspNetSqlMembershipProvider. When the user logging in he/she also enters Membership.ApplicationName that i use in the event OnLoggingIn. Protected Sub OnLoggingIn(ByVal sender As Object, ByVa...more >>

Hi, Can anyone tell me how I can do user authentication using IIS and asp.net 2.0 from a host that's not in a domain? Could you provide a working example. Thanks a lot. I'm getting really confused with this....more >>

Hello, I finally got my POC to work. I have some users in ADAM and I can browse and validate using the Membership provider... Cool!!!! Except that if I have a user of userProxy class in ADAM, my provider does not see it. After doing much reseach (googling is the new term) I think I ...more >>

How can reset a users password in Asp.net 2.0 if the user forgot their password and the answer to their security question. ...more >>

I am using forms authentication and the asp.net 2.0 login controls along with the asp.net membership provider. I would like to manually log the user off from within the application. I tried using session.abandon, but that merely ends the sessionbut still does not log the user off. What do I...more >>

Hi I am trying to set a new password using the following code; Dim u As MembershipUser = Membership.GetUser(UserName) Dim OldPassword As String OldPassword = u.GetPassword If u.ChangePassword(OldPassword, Password) Then ChangePassword = True end if The problem is that it gives me t...more >>

Hi I have a web service asmx file in a sub folders of site app root folder. With in the web service I am trying to cerate the user as below; <WebMethod()> _ Public Function CreateUser(ByVal Username As String, ByVal Password As String, ByVal Email As String, ByRef ErrMsg As String) As Boo...more >>

I have a few websites setup on one system on the DMZ Accessing the website and web apps via an alias domain name (free DynDNS.Org) When I try to open default.htm I can view this page in three web apps. When I try to open the login.aspx, which accepts a querystring and will auto-login, o...more >>

Hello, I am trying to find the simplest way to work with ADAM (or any other AD) and I have discovered the MembershipProvider class.... seems like it is doing just about everything I need. So, my project is developed on Windows XP, VS 2005 C# and I am not targeting ASP.... but seems l...more >>

I am trying to access employee information from Active Directory from my ASP ..Net web application. I have tried several different methods and each fail. Protected Sub Page_Load(ByVal sender As Object, ByVal e As System.EventArgs) Handles Me.Load Dim user As MembershipUser = Membership.Ge...more >>

Hi all, a localhost web service is configured anonymous+windows at the root level and at the virtual map level (Win XP). In the web.config I wrote <authentication mode="None" /> and <allow users="*"/>. The a Windows Application calls the service. The application code resides on a ne...more >>

Hi I have looked in help but am not clear how to do the following in vb.net code. 1. Check if a user belongs to a specific role. 2. Change user's password. Is it possible to do it without knowing the old/existing password? Would appreciate if someone could give me some pointers. T...more >>

Hi I am using the membership createuser method but need to find the error when one arise. I am using the below code; Public Function CreateUser(ByVal Username As String, ByVal Password As String, ByVal Email As String, ByRef ErrMsg As String) As Boolean Try Membership.CreateUser(Use...more >>

As anybody here used the AspNetActiveDirectoryMembershipProvider with the SiteMap For example mapping the roles from Active Directory to the siteMapNode for security trimming? What i mean is that for example below i have "roles="members" is it possible to map AD roles to that directly? ...more >>

Hi ! I'm having trouble starting desktop windows forms application with gui. So far i have managed to make it run when I access website on local computer, trying to start application from any other machine fails. I have modified machine.config process model as follows: <processModel autoC...more >>

Hi I am trying to use the asp.net web site configuration tool with my app and I have copied all files from C:\WINNT\Microsoft.NET\Framework\v2.0.50727\ASP.NETWebAdminFiles into the ASP.NETWebAdminFiles sub folder of the root of my app. I am getting several errors. One of the errors is ...more >>

Hi Is there a distributable version of asp.net web site configuration tool available? I need it to distribute with my app to allow end user client to manage their own users. Thanks Regards ...more >>

I created a web application that works fine if I access it from the computer that hosts the application. If I try accessing the web application from another computer in the workgroup it doesn't work. Can anybody help me with the necessary IIS or permission settings so I can get to my web applica...more >>

Hi, I have a ASP.NET 2.0 application running on IIS 6. The application pool associated with the application is running under the "Network Service" account. Within the app, a COM object is instantiated and used. Within this COM object access to a file share on the same server is needed, b...more >>

When creating a new process, the aspnet worker process always runs it under the ASPNET user instead of the user that is being impersonated. After some research, I got around this by invoking the CreateProcessAsUser win api call. That works ok for executables, but trying to run batch files gave ...more >>

I've been reading a bunch on the Roles based set-ups people are using, and am sort of at an impass. Meaning, I need to stop reading and start coding. Brief background, I am starting fresh with an intranet, and was planning on having the whole site use IIS windows authentication. However I ...more >>

I want to pass a string password in System.Diagnostics.Process.Start. The problem is that the defined password parameter is SecureString not string while my password is string. Normal casting evaluates to errors. Please how to cast string to SecureString? ...more >>

Can noyo9ne recommend a web group, usenet group that can answer questions about SSL certificates? What I need to know is if you purchased a cert. for www.yyy.com and you move it from one provider to another, can you take the SSL cert. along or will you need a new one? Also, can you get a ...more >>

Hello; I am trying to create an ASP login page that authenticates against AD. Is there any way to setup a connection string in web.config that does not store a user name and password? If I do this, it works great, but I need to modify the web.config every time the password changes: <...more >>

Hi; We have this web app that handles security great. For everything we do we run as the client so we do not have to store any credentials ourselves and it handles Sql Server access, reading files from the server, everything. But... we have a deamon program where users can schedule these s...more >>

HI All, I've a question about AuthTickets. Microsoft recommends using either SSL for all pages or Envcryption to protect the AuthTicket. Here is the quote from the http://support.microsoft.com/kb/813829/ page: "How to Help Make Forms Authentication Secure • Use SSL for all pages. ...more >>

Hi, I have a .net web application hosted within an asp web site. that is at root web is an ASP site under the root there is a .net web application. -root |_ DotNetApplication We have menus on a ASP page and on one menu item click it open a new browser window and in this new window I inv...more >>

Hi my webserver is running .Net 1.1 and intermittently i get the following error when I look at one of the websites. Does anyone out there have any idea why this happens? And how I can try and start solving the problem. Most of the time the website works okay. Thanks in advance! Server Erro...more >>

Hi, When I use VB.Net 2005 to develop some web service program, this program will connect to other domain server. Therefore, the permission of "ASP.NET Machine Account" cannot access to this server. Can I change the other domain user to instead of "ASP.NET Machine Account" for the IIS ...more >>

I would like to allow users to change their security question and answer in much the same way they are allowed to change their password. I thought the ChangePassword control would allow them to also change their security question and answer but apparently it does not. Is there a way to do ...more >>

I would like to be able to use the stored procedure 'aspnet_Membership_CreateUser' directly through T-SQL code (instead of going through .Net wrappers) because I need to automate the creation of hundreds of users. aspnet_Membership_CreateUser has among others the following parameters: @Pa...more >>

Anyone have a good idea how to make the membership, role and profile providers be remote and be accessed only using http/soap so that I don't have to have LDAP, msldap and SQL traffic from my web server to the middle tier/back end? I looked at using a web service or enterprise services but in ...more >>

I am using the Altiris system management web service on IIS6.0. The Directory Security is fairly straightforward: all the virtual directories have Windows Integrated authentication, and some of them allow Anonymous. I need to change the authentication method to be Digest, so it can work acros...more >>

I am successful in authenicating and retrieving roles of an AD domain user account. However when I create a new ADAM user account, I am authenicated with success but receive the following error. The parameter is incorrect. (Exception from HRESULT: 0x80070057 (E_INVALIDARG)) I went to the e...more >>

Hi there Our web site requires Integrated Security switched on and anonomous disabled so each users credentials are valid when accessing a database on the server. This is all working fine but now I want to allow remote users, eg at an airport or internet cafe, remote access. Currently th...more >>

Hello, I am trying to figure out how can I run a process under the authenticated user's credentials without having to prompt for a username and password? Is there anyway to allow for pass thru authentication? I am tying to use the ProcessStartInfo class and I obviously can get the current user...more >>

I am observing (via fiddler) a problem where "webresource.axd" files are being deployed over http (port 80) hot https (443) even when the request is https://xxx.xx. IE6 doesn't seem to mind this and reports the page as secure (padlock closed) but Firefox 1.5 on the other hand reports the pa...more >>

Dear Friends Recently our business partner asked our company to send financial informations in XML format to their defined URL address, its a kind of EDI. They also told us that transfer protocol should be HTTPS and it needs certificates. Now i want to develope an application to exctract data f...more >>

I am having problems trying to impersonate as a user in asp.net. I get an access denied error on the LogonUser method of the following code; /// <summary> /// Summary description for CustomWindowsIdentity. /// </summary> public class CustomWindowsIdentity : WindowsIdentity { [DllIm...more >>

Has anyone found any kind of solution of how to protect user passwords from snuffiers without having to use , the server CPU ressource killer SSL? Many thanks Thanks JJ WebMaster www.meelovia.com Powered by ASP.Net 2.0 ...more >>

If you do not cache role provider to Cookies with the cacheRolesInCookie="True" in your role provider configuration, will it default to cache to Session. We may have over 200 roles for some users and I am concerned about the size of the cookie but would like the role cached if posible. W...more >>

Can anyone tell me where to find detailed documentation on exactly how Forms Authentication works? The docs and tutorials I've found don't tell you much, just how to use it in a common scenario but there's no description of what's going on - it's just a black box. I'm doing something unu...more >>

I've got a web site with URLs like the following: http://www.mysite.com/nnnn/webpage.aspx where nnnn is a number which represents an ID, e.g. http://www.mysite.com/1234/webpage.aspx. I can easily decode the URL and retrieve the ID (which represents a specific customer) and then rewrite ...more >>

Hi All, I have created a simple windows control that had one button and opens up FolderBrowserdialog box. When I a try to uses this control in my asp.net app, it generates the following error: "System.Security.SecurityException: Request for the permission of type 'System.Security.Permissions...more >>

We are changing from using SQL accounts in our connection string to use NT domain accounts. I have found some coe which I am using successfully on my local machine, because the installed account ie; MachineName\ASPNET is what I use in my VS2005 environment and this works great connecting local...more >>

Hi, I have an asp.net app and in one aspx I need to read and write in a shared direcotry in a cluster. My code is the following: log.Debug("I am...." + System.Security.Principal.WindowsIdentity.GetCurrent().Name); DirectoryInfo raiz = new DirectoryInfo(ruta_Excel); FileInfo[] archivos = rai...more >>

Hi, We are trying to use a P12 certificate to access a secure website using .NET 1.1 We have installed the cert and exported it as an X509. We have also used the winhttpcertcfg utility to add IWAM permissions for it. We have then programmatically added an X509Certificate object to the ...more >>

How to maintain session across applications for authenticating purposes ...more >>

I would appreciate some pointers to the correct place to start learning how to achieve the following: 1. I have a web service (SOAP) that needs to be authenticated prior to use. 2. The authentication is of the form: login and password 3. I want to be able to: a) authenticate the login/passw...more >>