RE: Can I pass ASP Basic Auth Credentials to an APS.NET Forms Authentication site?

From: Yan-Hong Huang[MSFT] (yhhuang_at_online.microsoft.com)
Date: 01/26/04

  • Next message: Michael Tissington: "Re: Forms Authentication to specific folders" 
    Date: Mon, 26 Jan 2004 03:46:34 GMT

    Hello Douglas,

    Thanks for posting in the group.

    Based on my understanding, now the question is: You have one asp
    application which uses basic authentication and one asp.net applicaiton
    which uses forms authentication. The user ID and password database is the
    same for these two web applications. Now, - User Logs in to Site A (ASP) by
    using user name and passoword, Site A redirects the User to Site N
    (ASP.NET). Can Site A programitically pass the credentials, UserID and
    Password, to
    Site N so the user does not have to logon a second time? Please correct me
    if I have misunderstood anything.

    Here I thought of a method. Since we are using basic authentication in Site
    A (ASP), so we can get username and password in ASP web application first
    and store it in the cookie. When the Site A redirectes users to Site N
    (ASP.NET), it will redirect to forms authentication auto-login page. In the
    Page_Load of that page, we can fetch the user name and password from cookie
    and authenticate the user programmatically. So the client doesn't need to
    input username and password again.

    Does that answer your question? If there is any unclear, please feel free
    to post here.

    Ps: In ASP programming, if we use basic authentication, we can only use
    username and password in NT domain. What database do you mean in the
    sentence "The ASP site A uses Basic Authentication and has the user enter a
    UserID and Password that are Authenticated against a database."? Do you
    mean authenticate the user name and password in NT domain?

    Best regards,
    Yanhong Huang
    Microsoft Community Support

    Get Secure! ¨C www.microsoft.com/security
    This posting is provided "AS IS" with no warranties, and confers no rights.

  • Next message: Michael Tissington: "Re: Forms Authentication to specific folders"

    Relevant Pages

    • Re: Can IIS 6 authenticate to external Kerberos Realms?
      ... The authentication also works correctly from ASP.NET pages. ... Eric Chamberlain, CISSP ... > Where would I find the setting to specify the IWAM account for ASP ... Basic Authentication will not use the kerberos when you use ...
      (microsoft.public.inetserver.iis.security)
    • Re: ADSI Authentication using ASP - Problem
      ... ASP application over the web. ... "Basic Authentication" enabled. ... Dim oRootDSE As IADs ... strPassword As String, strUserADSPath As String ...
      (microsoft.public.inetserver.iis.security)
    • Re: Cant make a domain user the "anonymous access" user
      ... I have tried both with and without Integrated authentication enabled. ... I get a login prompt if I am using an NTLM-capable ... I can then authenticate using the domain account ... Pool containing this ASP page ...
      (microsoft.public.inetserver.iis.security)
    • Re: Newbie Needs Help!
      ... >> based authentication via SQL Server for a section of our corporate web ... >> I know classic ASP quite well, but the ASP .NET world is very different. ... >> Will IIS 5.0 support ASP .Net's built in methods for the integrated form ... > You can map the aspnet ISAPI dll to these other file extensions in IIS, ...
      (microsoft.public.dotnet.framework.aspnet)
    • Re: ASP using ADSI
      ... I'm using ASP because I know nothing of .net. ... My environment is an NT4 domain that is being migrated to W2K3 AD domain. ... Now the issues revolve around authentication. ... When you say you set up a service account, ...
      (microsoft.public.windows.server.active_directory)