Re: Accessing ActiveDirectory through LDAP with .NET
From: Tim Mavers (webview_at_hotmail.com)
Date: 12/27/04
- Next message: Paul Clement: "Re: Accessing ActiveDirectory through LDAP with .NET"
- Previous message: Joey Lee: "Accessing Outlook Interop"
- In reply to: Paul Clement: "Re: Accessing ActiveDirectory through LDAP with .NET"
- Next in thread: Paul Clement: "Re: Accessing ActiveDirectory through LDAP with .NET"
- Reply: Paul Clement: "Re: Accessing ActiveDirectory through LDAP with .NET"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Date: Mon, 27 Dec 2004 12:36:30 -0600
Thanks for the link. My application is an ASP.NET app (C#). Will this work
across the Internet (I didn't seen any mention of security/firewall
configurations, etc.). In other words, my app is runing at a data-center
and the AD is at some other company. What would need to happen to access
the AD (via LDAP) from my app at the datacenter? Our current approach (not
using LDAP) is to access it through the AD API which needs domain access
(something the company will not allow across the Internet--for obvious
reasons). Here's a quick example to help illustrate my problem:
1. User browses to my login page runing at the datacenter
2. User enters name and password in my app.
3. My app then has to (somehow) authenticate the name/pw with the company's
AD server running at some other datacenter on some part of the planet).
Thanks,
Tim
"Paul Clement" <UseAdddressAtEndofMessage@swspectrum.com> wrote in message
news:abvis0t9i6ote1nt5g0ak2rdngkil06dn5@4ax.com...
> On Tue, 21 Dec 2004 17:16:52 -0600, "Tim Mavers" <webview@hotmail.com>
> wrote:
>
> ¤ I am trying to determine the best way I can authenticate against an
> ¤ ActiveDirectory using LDAP with .NET. I need to use LDAP because I
> need to
> ¤ authenticate across the Internet.
> ¤
> ¤ Right now I have code that authenticates (e.g. I pass username/password
> to
> ¤ it) via NTLM but the problem is I am accessing this via a domain user
> ¤ account that has access to the domain controller (e.g. it's the account
> that
> ¤ IIS is running under).
> ¤
> ¤ Obviously this doesn't work over the Internet and the only temporary
> ¤ solution is for my client to set up a VPN and have a trust relationship,
> ¤ which is really not something they want to do.
> ¤
> ¤ I read somewhere (brief blurb) that I could access this information via
> ¤ LDAP.
> ¤
> ¤ Essentially I am building sort of a single-sign on application where the
> ¤ user enters their name/password in my app and it is authenticated
> against an
> ¤ ActiveDirectory instance.
> ¤
> ¤ Any ideas on how I can do this in a secure manner over the Internet
> without
> ¤ the need for a VPN?
>
> It isn't clear to me what type of application this is but you may want to
> take a look at the
> following:
>
> HOW TO: Authenticate against the Active Directory by Using Forms
> Authentication and Visual Basic
> .NET
> http://support.microsoft.com/default.aspx?scid=kb;en-us;326340
>
>
> Paul ~~~ pclement@ameritech.net
> Microsoft MVP (Visual Basic)
- Next message: Paul Clement: "Re: Accessing ActiveDirectory through LDAP with .NET"
- Previous message: Joey Lee: "Accessing Outlook Interop"
- In reply to: Paul Clement: "Re: Accessing ActiveDirectory through LDAP with .NET"
- Next in thread: Paul Clement: "Re: Accessing ActiveDirectory through LDAP with .NET"
- Reply: Paul Clement: "Re: Accessing ActiveDirectory through LDAP with .NET"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Relevant Pages
|
|
