| Groups | Blog | Home |
asp.net security : Using Login Control to Authenticate???
complete solution to my problem(s). And let me preface this by stating this is my first crack at asp.net development so please excuse the ineptness. My environment is W2003 server, IIS 6.0. This server is in our DMZ and the web admins want me to use Windows Authentication.(I tried to deploy Forms Authentication but was shot down by corporate admin's on this). I am trying to incorporate the login control to authenticate the users vs. the AD windows login screen(the consensus was that we wanted to provide a login screen that was "our own"). So, here's what I want to be able to do. Display the login page with the login control. Allow the users to login, and then authenticate them to AD through code. If anyone can point me to an article, sample code, book, or whatever, I would greatly appreciate this. I just haven't been able to find anything that truly states how this all needs to happen. 1). What all needs to be in web.config. 2). What methods to call from\within the login control 3). How to properly set up IIS Unfortunately, I'm the lone ranger on this, as nobody in our company has done web development before. -- Mike Voissem Lead Software Engineer
On May 4, 3:49 pm, Mike Voissem
[quoted text, click to view] <MikeVois...@discussions.microsoft.com> wrote: > I've been searching for 2 days now, and haven't really been able to get a > complete solution to my problem(s). And let me preface this by stating this > is my first crack at asp.net development so please excuse the ineptness. > > My environment is W2003 server, IIS 6.0. This server is in our DMZ and the > web admins want me to use Windows Authentication.(I tried to deploy Forms > Authentication but was shot down by corporate admin's on this). I am trying > to incorporate the login control to authenticate the users vs. the AD windows > login screen(the consensus was that we wanted to provide a login screen that > was "our own"). > > So, here's what I want to be able to do. Display the login page with the > login control. Allow the users to login, and then authenticate them to AD > through code. If anyone can point me to an article, sample code, book, or > whatever, I would greatly appreciate this. I just haven't been able to find > anything that truly states how this all needs to happen. > 1). What all needs to be in web.config. > 2). What methods to call from\within the login control > 3). How to properly set up IIS > > Unfortunately, I'm the lone ranger on this, as nobody in our company has > done web development before. > > -- > Mike Voissem > Lead Software Engineer > Donnelley Marketing Mike, do you mean that you would have a separate Active Directory within the DMZ? Take a look at this manual http://msdn2.microsoft.com/en-us/library/aa302386.aspx
Yes, the admins are going to create an Active Directory on the IIS server in
the DMZ, and manage the users for that AD. The requirement then is for the web app to allow the outside users to get to the "landing page" without the AD pop-up, and on the "landing page" I would have the login control , and then I would use their credentials to authenticate to AD. -- Mike Voissem Lead Software Engineer Donnelley Marketing [quoted text, click to view] "Alexey Smirnov" wrote:
> On May 4, 3:49 pm, Mike Voissem > <MikeVois...@discussions.microsoft.com> wrote: > > I've been searching for 2 days now, and haven't really been able to get a > > complete solution to my problem(s). And let me preface this by stating this > > is my first crack at asp.net development so please excuse the ineptness. > > > > My environment is W2003 server, IIS 6.0. This server is in our DMZ and the > > web admins want me to use Windows Authentication.(I tried to deploy Forms > > Authentication but was shot down by corporate admin's on this). I am trying > > to incorporate the login control to authenticate the users vs. the AD windows > > login screen(the consensus was that we wanted to provide a login screen that > > was "our own"). > > > > So, here's what I want to be able to do. Display the login page with the > > login control. Allow the users to login, and then authenticate them to AD > > through code. If anyone can point me to an article, sample code, book, or > > whatever, I would greatly appreciate this. I just haven't been able to find > > anything that truly states how this all needs to happen. > > 1). What all needs to be in web.config. > > 2). What methods to call from\within the login control > > 3). How to properly set up IIS > > > > Unfortunately, I'm the lone ranger on this, as nobody in our company has > > done web development before. > > > > -- > > Mike Voissem > > Lead Software Engineer > > Donnelley Marketing > > Mike, do you mean that you would have a separate Active Directory > within the DMZ? > > Take a look at this manual > http://msdn2.microsoft.com/en-us/library/aa302386.aspx >
On May 4, 9:56 pm, Mike Voissem
[quoted text, click to view] <MikeVois...@discussions.microsoft.com> wrote: > Yes, the admins are going to create an Active Directory on the IIS server in > the DMZ, and manage the users for that AD. The requirement then is for the > web app to allow the outside users to get to the "landing page" without the > AD pop-up, and on the "landing page" I would have the login control , and > then I would use their credentials to authenticate to AD. > -- > Mike Voissem > Lead Software Engineer > Donnelley Marketing > > > > "Alexey Smirnov" wrote: > > On May 4, 3:49 pm, Mike Voissem > > <MikeVois...@discussions.microsoft.com> wrote: > > > I've been searching for 2 days now, and haven't really been able to get a > > > complete solution to my problem(s). And let me preface this by stating this > > > is my first crack at asp.net development so please excuse the ineptness. > > > > My environment is W2003 server, IIS 6.0. This server is in our DMZ and the > > > web admins want me to use Windows Authentication.(I tried to deploy Forms > > > Authentication but was shot down by corporate admin's on this). I am trying > > > to incorporate the login control to authenticate the users vs. the AD windows > > > login screen(the consensus was that we wanted to provide a login screen that > > > was "our own"). > > > > So, here's what I want to be able to do. Display the login page with the > > > login control. Allow the users to login, and then authenticate them to AD > > > through code. If anyone can point me to an article, sample code, book, or > > > whatever, I would greatly appreciate this. I just haven't been able to find > > > anything that truly states how this all needs to happen. > > > 1). What all needs to be in web.config. > > > 2). What methods to call from\within the login control > > > 3). How to properly set up IIS > > > > Unfortunately, I'm the lone ranger on this, as nobody in our company has > > > done web development before. > > > > -- > > > Mike Voissem > > > Lead Software Engineer > > > Donnelley Marketing > > > Mike, do you mean that you would have a separate Active Directory > > within the DMZ? > > > Take a look at this manual > >http://msdn2.microsoft.com/en-us/library/aa302386.aspx- Hide quoted text - > > - Show quoted text - Well, then you should consider the form authentication against AD You can do it using the built-in ActiveDirectoryMembershipProvider: http://msdn2.microsoft.com/en-us/library/ms998360.aspx
Actually, I had Forms Authentication installed and working, then the admins
"realized" what I meant by Forms Authentication and said NO WAY. So, I had to change everything over. I lost that battle so I HAVE to get this to happen, and of course, it's needed yesterday. Had I been able to user Forms Authentication, this project would be done already.... -- Mike Voissem Lead Software Engineer Donnelley Marketing [quoted text, click to view] "Alexey Smirnov" wrote:
> On May 4, 9:56 pm, Mike Voissem > <MikeVois...@discussions.microsoft.com> wrote: > > Yes, the admins are going to create an Active Directory on the IIS server in > > the DMZ, and manage the users for that AD. The requirement then is for the > > web app to allow the outside users to get to the "landing page" without the > > AD pop-up, and on the "landing page" I would have the login control , and > > then I would use their credentials to authenticate to AD. > > -- > > Mike Voissem > > Lead Software Engineer > > Donnelley Marketing > > > > > > > > "Alexey Smirnov" wrote: > > > On May 4, 3:49 pm, Mike Voissem > > > <MikeVois...@discussions.microsoft.com> wrote: > > > > I've been searching for 2 days now, and haven't really been able to get a > > > > complete solution to my problem(s). And let me preface this by stating this > > > > is my first crack at asp.net development so please excuse the ineptness. > > > > > > My environment is W2003 server, IIS 6.0. This server is in our DMZ and the > > > > web admins want me to use Windows Authentication.(I tried to deploy Forms > > > > Authentication but was shot down by corporate admin's on this). I am trying > > > > to incorporate the login control to authenticate the users vs. the AD windows > > > > login screen(the consensus was that we wanted to provide a login screen that > > > > was "our own"). > > > > > > So, here's what I want to be able to do. Display the login page with the > > > > login control. Allow the users to login, and then authenticate them to AD > > > > through code. If anyone can point me to an article, sample code, book, or > > > > whatever, I would greatly appreciate this. I just haven't been able to find > > > > anything that truly states how this all needs to happen. > > > > 1). What all needs to be in web.config. > > > > 2). What methods to call from\within the login control > > > > 3). How to properly set up IIS > > > > > > Unfortunately, I'm the lone ranger on this, as nobody in our company has > > > > done web development before. > > > > > > -- > > > > Mike Voissem > > > > Lead Software Engineer > > > > Donnelley Marketing > > > > > Mike, do you mean that you would have a separate Active Directory > > > within the DMZ? > > > > > Take a look at this manual > > >http://msdn2.microsoft.com/en-us/library/aa302386.aspx- Hide quoted text - > > > > - Show quoted text - > > Well, then you should consider the form authentication against AD > > You can do it using the built-in ActiveDirectoryMembershipProvider: > > http://msdn2.microsoft.com/en-us/library/ms998360.aspx >
On May 4, 11:38 pm, Mike Voissem
[quoted text, click to view] <MikeVois...@discussions.microsoft.com> wrote: > Actually, I had Forms Authentication installed and working, then the admins > "realized" what I meant by Forms Authentication and said NO WAY. So, I had Actually, I don't get it. What is the problem there? I've suggested you a Form Authentication with *Active Directory*
Alexey,
After re-reading this, I now understand what you were suggesting. I have requested access to the LDAP information and will go from there. Thanx for your input, this looks like the answer, providing they are okay with giving me(my application) rights to read the LDAP information. Regards, Mike -- Mike Voissem Lead Software Engineer Donnelley Marketing [quoted text, click to view] "Alexey Smirnov" wrote:
> On May 4, 11:38 pm, Mike Voissem > <MikeVois...@discussions.microsoft.com> wrote: > > Actually, I had Forms Authentication installed and working, then the admins > > "realized" what I meant by Forms Authentication and said NO WAY. So, I had > > Actually, I don't get it. What is the problem there? > > I've suggested you a Form Authentication with *Active Directory* >
On May 7, 2:32 pm, Mike Voissem
[quoted text, click to view] <MikeVois...@discussions.microsoft.com> wrote: > Alexey, > After re-reading this, I now understand what you were suggesting. I have > requested access to the LDAP information and will go from there. Thanx for > your input, this looks like the answer, providing they are okay with giving > me(my application) rights to read the LDAP information. > Regards, > Mike > -- > Mike Voissem > Lead Software Engineer > Donnelley Marketing > Great! I do hope your admin will be happy with it :-)
Don't see what you're looking for? Try a search.
|
July 2003
August 2003
September 2003
October 2003
November 2003
December 2003
January 2004
February 2004
March 2004
April 2004
May 2004
June 2004
July 2004
August 2004
September 2004
October 2004
November 2004
December 2004
January 2005
February 2005
March 2005
April 2005
May 2005
June 2005
July 2005
August 2005
September 2005
October 2005
November 2005
December 2005
January 2006
February 2006
March 2006
April 2006
May 2006
June 2006
July 2006
August 2006
September 2006
October 2006
November 2006
December 2006
January 2007
February 2007
March 2007
April 2007
May 2007
June 2007
July 2007
August 2007
September 2007
October 2007
November 2007
December 2007
January 2008
February 2008
March 2008
April 2008
May 2008
June 2008
| home · blog · groups | Questions? Comments? Contact the dn |