On Jun 11, 10:48 am, oriol.arde...@gmail.com wrote:
> Hi,
>
> I have an asp.net 2.0 application with forms authentication. I am
> authenticating the users to an Active Directory Server with
> ActiveDirectoryMembershipProvider which works as expected and users
> get authenticated.
>
> What I am trying to do is to get also the role information from the
> Active Directory Server with the groups where the users belong to.
>
> Is there any way to achieve it ? Can it be done by enabling some
> provider in the role manager section of the web.config file ?
>
> any help will be appreciated, thx in advance,
> ori

On Jun 11, 1:06 pm, oriol.arde...@gmail.com wrote:
> I had already tried those solutions.
>
> WindowsTokenAuthenticationProvider does'nt works for Forms
> Authentication as Dominick pointed, and I couldn't managed to get
> AuthorizationStoreProvider to work (ended up getting some weird
> COMException error which I already posted in this group last week)
>
> Finally, I developed my own role provider which accesed the active
> directory and got the role information.
>
> Thanks for everything,
> ori

> They are all not very helpful in your situation.
>
> The WindowsTokenRoleProvider only works with windows auth - not forms.
>
> Ryan an me have written an ActiveDirectoryRoleProvider - which seems to
> work for most people...
>
> i can send you the code if you are interested...
>
>
> -----
> Dominick Baier (http://www.leastprivilege.com)
>
> Developing More Secure Microsoft ASP.NET 2.0 Applications
> (http://www.microsoft.com/mspress/books/9989.asp)
>
>> On Jun 11, 10:48 am, oriol.arde...@gmail.com wrote:
>>
>>> Hi,
>>>
>>> I have an asp.net 2.0 application with forms authentication. I am
>>> authenticating the users to an Active Directory Server with
>>> ActiveDirectoryMembershipProvider which works as expected and users
>>> get authenticated.
>>>
>>> What I am trying to do is to get also the role information from the
>>> Active Directory Server with the groups where the users belong to.
>>>
>>> Is there any way to achieve it ? Can it be done by enabling some
>>> provider in the role manager section of the web.config file ?
>>>
>>> any help will be appreciated, thx in advance,
>>> ori
>> You would need a role provider.
>>
>> WindowsTokenRoleProvider for using Active Directory groups as roles
>> AuthorizationStoreProvider - for Windows 2003 and ADAM SqlRoleProvider
>> for storing roles in SQL Server
>>
>> More about WindowsTokenRoleProvider
>> http://msdn2.microsoft.com/en-us/library/system.web.security.windowsto
>> kenroleprovider.aspx
>
>

> On Jun 11, 10:48 am, oriol.arde...@gmail.com wrote:
>
>> Hi,
>>
>> I have an asp.net 2.0 application with forms authentication. I am
>> authenticating the users to an Active Directory Server with
>> ActiveDirectoryMembershipProvider which works as expected and users
>> get authenticated.
>>
>> What I am trying to do is to get also the role information from the
>> Active Directory Server with the groups where the users belong to.
>>
>> Is there any way to achieve it ? Can it be done by enabling some
>> provider in the role manager section of the web.config file ?
>>
>> any help will be appreciated, thx in advance,
>> ori
> You would need a role provider.
>
> WindowsTokenRoleProvider for using Active Directory groups as roles
> AuthorizationStoreProvider - for Windows 2003 and ADAM SqlRoleProvider
> for storing roles in SQL Server
>
> More about WindowsTokenRoleProvider
> http://msdn2.microsoft.com/en-us/library/system.web.security.windowsto
> kenroleprovider.aspx