Re: Forms Authentication Ticket Functionality With Windows Authentication

From: Dominick Baier [DevelopMentor] (dbaier_at_pleasepleasenospamdevelop.com)
Date: 09/16/05 

Date: Fri, 16 Sep 2005 10:18:48 -0700

Hello jfer,

is this 1.1?

You could handle the Authenticate_Request and check via LDAP. If the user
is in a particular OU let him through, otherwise reject.

---------------------------------------
Dominick Baier - DevelopMentor
http://www.leastprivilege.com

> I am creating a web application for a company intranet and I am using
> Windows Authentication for a somewhat "transparent" login process.
> What I would like to do is allow all users into the application that
> exist in our LDAP under a particular user (their is a heirarchy
> associated with the LDAP tree). I was able to do this with Forms
> Authentication as I included the code to do this in the Page_Load
> event
> of the page associated with the <forms> tag in the web.config. My
> question is where would I include this functionality when using
> Integrated Windows Authentication? And any idea what would be the
> best
> way to sort of keep track of the user like the forms authentication
> ticket does. Thanks in advance.

Relevant Pages

  • Re: Directory Services, LDAP or similar
    ... In other projects, we managed the user authentication by creating tables that define all users and its allowed capacities, then the application queryies that data to verify if a user has access to some feature or not. ... The above ID and password are sent to the service at login time. ... They are using Novell eDirectory at the enterprise level; yes it's LDAP. ... We already do that for three different DB servers; ...
    (borland.public.delphi.non-technical)
  • Re: noob on slapd with sasl errors
    ... If I may share advice based on my own trials & tribulations with LDAP ... people who need network authentication and the current state of ... context of network authentication, LDAP really is just a protocol used ... I have no idea how sasl works and why it is needed here, or even more, ...
    (Ubuntu)
  • Re: Directory Services, LDAP or similar
    ... we managed the user authentication by creating tables ... The above ID and password are sent to the service at login ... Novell eDirectory at the enterprise level; yes it's LDAP. ... servers; ...
    (borland.public.delphi.non-technical)
  • Re: Recommended strategy for providing access to web apps via Inte
    ... LDAP is an ugly solution on the public internet, ... These federated authentication protocols are designed to address these ... Co-author of "The .NET Developer's Guide to Directory Services Programming" ...
    (microsoft.public.windows.server.active_directory)
  • Re: check a user password
    ... ADAM user you'll have perform an LDAP Bind operation, ... However, as I said in another thread, LDAP is not an *authentication* protocol nor is "LDAP server" an authentication service. ... The LDAP bind operation is meant to "validate" the LDAP clients credentials in order, for the server, to be able to perform directory "authorization" checks. ... between a SQL client and a SQL server, or an authenticated session between a "Windows" client and a "File server" service. ...
    (microsoft.public.dotnet.languages.csharp)