Re: ActiveDirectory authentication - more issues

ah - reading helps - good to know that some things stay true ;)

---------------------------------------
Dominick Baier - DevelopMentor
http://www.leastprivilege.com

The book arrived today (Amazon) - that's how I got the rest of it
working.

"Dominick Baier [DevelopMentor]" wrote:

hi,

ok...

1) this can be mapped in web.config - both formats are supported. See
in visual studio help for all varations

e.g, attributeMapUsername="SAMAccountName"

uses only the username without domain

2) no -you are doing forms authentication. NTLM would be IIS
authentication and <authentication mode="Windows" /> would be set.
Then you cannot use the membership providers

3) no - see 2

4) see 2. You could maybe use Protocol Transition (only for domain
accounts, only on w2k3, only in w2k3 domains) to get a token or use
the Win32 LogonUser API (needs to store the password on the server -
not recommended).

5) still no idea

have you ordered the book already?

---------------------------------------
Dominick Baier - DevelopMentor
http://www.leastprivilege.com
Hi;

Ok, I have ActiveDirectory authentication working but have a couple
of
issues:
1) My username must be dave@xxxxxxxxxxxxxx - it does not take
windward\dave
- why?
2) The authentication type is shown as forms - shouldn't it be NTLM?
3) Since I'm running from a computer on the domain and using IE,
shouldn't
it handle this automatically?
4) I do not get a WindowsIdentity but instead a FormsIdentity. I
need
a
WindowsIdentity so I can do impersonation. How do I get that?
5) Context.User.IsInRole() returns false for groups I am a member of
such as
"windward\\Domain Users" - why?


.

Relevant Pages

  • Re: XML Webservice authentication
    ... so you have a web application which already does authentication using forms and on some pages you call a webservice..? ... Dominick Baier - DevelopMentor ... technology, the only solution I can see is to use cookies, but I am ...
    (microsoft.public.dotnet.framework.aspnet.security)
  • Re: Get role for any given user name
    ... have a look at the ctor of WindowsIdentity that takes a string. ... Dominick Baier - DevelopMentor ...
    (microsoft.public.dotnet.security)
  • Re: Mixed Mode (Forms & Windows) Authentication
    ... Dominick Baier, DevelopMentor ... page will convert the Windows credentials to a FormsAuth ... Windows authentication with the existing Forms authentication so ...
    (microsoft.public.dotnet.framework.aspnet.security)
  • Re: Custom RoleProvider question -- saving roles
    ... Dominick Baier - DevelopMentor ... I set the authentication to use cookies in web.config as follows ...
    (microsoft.public.dotnet.framework.aspnet.security)
  • Re: Roles Forms Authentication
    ... Dominick Baier - DevelopMentor ... dev computer but when I deploy the application and I sign it continues ... The Forms Authentication I am using is not ...
    (microsoft.public.dotnet.framework.aspnet.security)