RE: Authenitcation, Authorization, and Personalization
From: [MSFT] (lukezhan_at_online.microsoft.com)
Date: 03/31/04
- Next message: Ken Schaefer: "Re: What key to add in CurrentControlSet\Services\Eventlog???"
- Previous message: Mike: "Security Issues Retrieving Authentication Ticket From Current Httpcontext Rather Than From Authentication Cookie"
- In reply to: Joe Reazor: "Authenitcation, Authorization, and Personalization"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Date: Wed, 31 Mar 2004 02:42:20 GMT
Hi Joe,
ASP.NET use very different authentication architecture from ASP. The
closest to Personalization and Membership of Site Server 3.0 is Form
Authentication in ASP.NET. For more inforamtion, I suggest you may first
read following articles:
Building Secure ASP.NET Applications: Authentication, Authorization, and
Secure Communication
http://msdn.microsoft.com/library/default.asp?url=/library/en-us/dnnetsec/ht
ml/secnetlpMSDN.asp
Authentication in ASP.NET: .NET Security Guidance
http://msdn.microsoft.com/library/default.asp?url=/library/en-us/dnnetsec/ht
ml/secnetlpMSDN.asp
I have a premature thought for the issue: you may keep the P&M with your
ASP application and use Form authentication with ASP.NET application. In
Form authentication, you can access Site server, retireve user account
information for authentication. I haven't done this before, but, from my
view, I think it is a possible solution.
Hope this help,
Luke
Microsoft Online Support
Get Secure! www.microsoft.com/security
(This posting is provided "AS IS", with no warranties, and confers no
rights.)
- Next message: Ken Schaefer: "Re: What key to add in CurrentControlSet\Services\Eventlog???"
- Previous message: Mike: "Security Issues Retrieving Authentication Ticket From Current Httpcontext Rather Than From Authentication Cookie"
- In reply to: Joe Reazor: "Authenitcation, Authorization, and Personalization"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Relevant Pages
|
|
