Re: Seriously: Allowing anonymous and authenticated and anonymous access (somehow related to ASP.NET)

From: Christian Weyer (cw@_nospam-xmlwebservices.cc)
Date: 07/30/02 

Date: Tue, 30 Jul 2002 14:08:56 +0200
From: Christian Weyer <cw@_nospam-xmlwebservices.cc>

Thanks for all suggestions,

the overall requirements were 'loosened' a bit and so I have solved it
with a mixture of IIS settings and extending the OnAuthenticate event in
global.asax.

Thanks again,
Christian 

---
http://www.xmlwebservices/
Christian Weyer wrote:
> Hi experts,
> 
> first of all excuse the cross post, but I hope and feel to get help from 
> all these groups.
> 
> I have been thinking about this problem for quite a long time now ... 
> but I seem to go around in circles.
> The following scenario is given:
> my application (portal-like) allows access to all (anonymous) users by 
> default. But then there are some pages that require explicit 
> authentication.
> It must be possible to use Windows Integrated Authentication in IIS to 
> enable Intranet users a seamless workflow (without having to login to 
> the Web app through a seperate page). When the user is not an Intranet 
> user then I have to 'redirect' him to a login page (ASP.NET forms 
> based-like). Everything on a single code base, no seperate Web or things 
> like that.
> 
> How do I do this?
> I have been trying out about 3469 settings in IIS and ASP.NET web.config 
> ... and must say that I am _not_ an absolute beginner ;-) But I cannot 
> figure out the right way to go.
> One problem I see is that when both Anonymous and Windows Integrated are 
> enabled in IIS, then _always_ Anonymous i used!? Ah, of course I am 
> using 'Windows' in web.config's authentication section :-)
> I also played around with the 'send a 401 back'. This works, then I get 
> NTLM authentication forced. But I then need a step to determine that it 
> is _not_ a Windows user and redirect him to the login page (therefore 
> anonymous -> authenticated -> anonymous).
> 
> I hope my problem gets clear.
> 
> Thanks a lot and cheers,
> Christian
> ---
> http://www.xmlwebservices/
>

Relevant Pages

  • Re: Can login domain be set to a default?
    ... need for specifying a login domain. ... accounts of the IIS box (and the login process needs a way to ... cannot specify a default domain for Windows integrated authentication ... > The internal domain for the three servers is different than the web site ...
    (microsoft.public.windows.server.security)
  • Re: HELP PLEASE The request failed with HTTP status 401: Access Denied.
    ... Web Security: Part 2: Introducing the Web Application Manager, Client ... Authentication Options, and Process Isolation ... It introduces the Web Application Manager in IIS that ... logon session, which is dangerous. ...
    (microsoft.public.dotnet.framework.aspnet.security)
  • Re: Basic Authentication fails with Error 401.2 where Integrated s
    ... The password dialog is supposed to appear for Basic authentication ... Thinking more esoterically now -- what are the login rights assigned ... IIS uses a specific login type, ... account created has full permissions for the folder and the file that's in it. ...
    (microsoft.public.inetserver.iis.security)
  • RE: Can no longer access ActiveSync
    ... OMA and Exchange/Exchange-OMA virtual directory. ... Please verify Authentication settings by the following steps. ... Open IIS Manager ... issue may be caused by the Exchange attribute of original user account. ...
    (microsoft.public.exchange.admin)
  • Re: disabling IIS login prompts
    ... if you using IIS authentication, by design, in local ... intranet zone, IE auto login for user, hence no prompt. ... >> In IIS on your internal web site disable all other authentication methods ...
    (microsoft.public.inetserver.iis.security)