Re: Single Sign On - from anywhere
- From: Dominick Baier [DevelopMentor] <dbaier@xxxxxxxxxxxxxxxxxxxxxxxxxxxxx>
- Date: Thu, 26 Jan 2006 16:34:50 +0000 (UTC)
Hi,
yes - thats the only sensible way to do it....
- but - if the browser authenticates with NTLM (and thats what non-IE browsers do) with the web app - you won't be able to do delegation of credentials. A feature called Protocol Transition can help here - with the prereqs i described earlier.
http://www.microsoft.com/technet/prodtechnol/windowsserver2003/technologies/featured/kerberos/default.mspx
--------------------------------------- Dominick Baier - DevelopMentor http://www.leastprivilege.com
Hi;
Ok, between your postas and the url you gave me I think I've got it for IE. But for other browsers - what is the best way to do this? Should I prompt them for their username/password at the start of each session (that way I don't have to store it)?
"Dominick Baier [DevelopMentor]" wrote:
...
At least one plugin i saw for FireFox allowed to store the credentials for the website on the client. (url / credentail pair). I would not recommend "simulating" your own Windows-Login, as you say this would involve storing the password somehow - and since "normal" auth is done in IIS and ASP.NET runs much later - you would also have to enable anonymous access for this approach to work.
or in other words - if the browser does not support it - you can't support it either.
--------------------------------------- Dominick Baier - DevelopMentor http://www.leastprivilege.com
.
- Prev by Date: Re: Single Sign On - from anywhere
- Next by Date: ASP.NET 2.0 forms auth: default user
- Previous by thread: Re: Single Sign On - from anywhere
- Next by thread: Re: AccessMembershipProvider
- Index(es):
Relevant Pages
|
|
