Re: Single Sign-On with Forms Authentication

From: Dominick Baier [DevelopMentor] (dbaier_at_pleasepleasenospamdevelop.com)
Date: 05/26/05

Next message: IkBenHet: "Problem with uploading Image files."
Previous message: Dominick Baier [DevelopMentor]: "Re: AuthenticateRequest in Global.asax and a custom HTTP Module"
In reply to: Gabriel Giraldo: "Single Sign-On with Forms Authentication"
Next in thread: Gabriel Giraldo: "Re: Single Sign-On with Forms Authentication"
Reply: Gabriel Giraldo: "Re: Single Sign-On with Forms Authentication"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

Date: Thu, 26 May 2005 00:15:26 -0700

Hello Gabriel,

yes, this is possible

make sure the following attributes of you forms auth config are the same
for all apps

- machineKey
- cookie name
- cookie path

---------------------------------------
Dominick Baier - DevelopMentor
http://www.leastprivilege.com

> Hello,
>
> I'm trying to integrate the security (authentication) of several web
> applications on my enterprise (we do not have active directory
> implemented yet).
>
> I would like to implement a Passport-like authentication system, but
> based on Forms Authentication: a system where users authenticate once
> and access all of our ASP .NET web applications without needing to
> provide passwords again.
>
> Is there any way to accomplish this with Forms Authentication? As far
> as I have tested, each ASP .NET Application configured with Forms
> Authentication handles its own authentication cookie. Is there any way
> to unify this authentication cookie between applications?
>
> Thanks for your help.
>

Next message: IkBenHet: "Problem with uploading Image files."
Previous message: Dominick Baier [DevelopMentor]: "Re: AuthenticateRequest in Global.asax and a custom HTTP Module"
In reply to: Gabriel Giraldo: "Single Sign-On with Forms Authentication"
Next in thread: Gabriel Giraldo: "Re: Single Sign-On with Forms Authentication"
Reply: Gabriel Giraldo: "Re: Single Sign-On with Forms Authentication"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

Relevant Pages

RE: FormsAuthentication ReturnUrl - need it to be Absolute
... I understand you have multiple ASP.NET applications ... which are using forms authentication to protect the application. ... the forms authentication cookie across multiple applications, ... If the forms authentication cross site support doesn't suit your scenario. ...
(microsoft.public.dotnet.framework.aspnet)
RE: FormsAuthentication ReturnUrl - need it to be Absolute
... which are using forms authentication to protect the application. ... you're trying to make the applications share the same forms authentication ... the forms authentication cookie across multiple applications, ... If the forms authentication cross site support doesn't suit your scenario. ...
(microsoft.public.dotnet.framework.aspnet)
RE: Forms authentication cookie handling question (C#)
... I also replaced all of my ticket authentication code with the ... // Username and or password not found in our database... ... LoginControl's default code logic to generate authentication cookie. ...
(microsoft.public.dotnet.framework.aspnet)
Re: Main form and login form in different folders using Forms Auth
... but I suppose that you could use Forms Authentication ... Having a cookie authenticate to two ... applications is as secure as having two seperate ones though. ... >> Even though the SubFolder is not a vdirectory, ...
(microsoft.public.dotnet.framework.aspnet.security)
RE: Forms Authentication
... The DNS entry for my domain was not set corrretly, ... This should have overcome the cookie ... authentication ticketis not correctly set to the domain your ... Microsoft MSDN Online Support Lead ...
(microsoft.public.dotnet.framework.aspnet)