Re: ASP.NET Authenication Question

From: Andrea D'Onofrio [MSFT] (andreado_at_online.microsoft.com)
Date: 12/18/03

• Next message: Andrea D'Onofrio [MSFT]: "Re: Web.HttpContext.Current.User.Identity.Name is blank"
• Previous message: Pete: "Re: Web.HttpContext.Current.User.Identity.Name is blank"
• In reply to: Craig: "ASP.NET Authenication Question"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

Date: Thu, 18 Dec 2003 11:27:15 +0100

I think that the only way to do this is to replicate the domain users as
local users for the web server.
This because:
- If you set the anonymous authentication in you loose the users identity
- If you use "windows integrated" or basic the web server can't contact the
DC for the authentication, then IIS throw a 404 error
- If you use a custom login form you can impersonate in code the credential
provided by the user (LogonAsUser api), but the web server can't contact the
DC, then authentication failed

The last two ways functions properly only if web server has the domain users
as local users, but this is a very expensive solution (ie. password
syncronization problem...). The best (fast, simple, ..) way to do this is to
have the web server in the domain.

HtH,
Andrea

-- 
This posting is provided "AS IS" with no warranties, and confers no rights.
 "Craig" <pearson4@un.org> wrote in message
news:eDGopfOxDHA.2440@TK2MSFTNGP12.phx.gbl...
> Hi
>
> I have an intranet app which resides on a web server that is not in a
> domain; but in a workgroup.  The users of this web app all log into the
> domain.
>
> I want to be able to find out who the 'domain user' is when they browser
to
> my web app on the server, how does one do this?  what are the IIS
settings?
> Currently I have IIS set to intergrate windows authenication -which pops
up
> the message box for the user credentials.  this obvously fails when the
user
> is not a 'named' user on the web server.
>
> Craig
>
>

• Next message: Andrea D'Onofrio [MSFT]: "Re: Web.HttpContext.Current.User.Identity.Name is blank"
• Previous message: Pete: "Re: Web.HttpContext.Current.User.Identity.Name is blank"
• In reply to: Craig: "ASP.NET Authenication Question"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

Relevant Pages Log on locally fro basic authentication ... Web server is IIS4 on NT4 SP6a ... I'm starting with basic authentication (as not all users use Internet ... Domain Users, but find that whatever I do, U2 and U3 domain users cannot get ... (microsoft.public.inetserver.iis.security) Re: Stumped by Authentication Problem ... Administrator group on the Web server and I can't figure out why. ... We have a local group called Users that conains our Domain Users. ... - Integrated Windows Authentication ... (microsoft.public.inetserver.iis.security) Re: Stumped by Authentication Problem ... Administrator group on the Web server and I can't figure out why. ... We have a local group called Users that conains our Domain Users. ... - Integrated Windows Authentication ... (microsoft.public.inetserver.iis.security) Re: Accessing server in DMZ ... Users from the internet - are these domain users accessing remotely? ... If they're domain users, then you're probably best bringing this into the ... Les Connor [SBS MVP] ... >>> The credential prompt is from the Web Server. ... (microsoft.public.windows.server.sbs) Stumped by Authentication Problem ... Administrator group on the Web server and I can't figure out why. ... We have a local group called Users that conains our Domain Users. ... - Integrated Windows Authentication ... (microsoft.public.inetserver.iis.security)

• Security
• UNIX
• Linux
• Coding
• Usenet

• News
• Mailing-Lists
• Newsgroups
• Service
• About
• Privacy
• Search
• Imprint