Re: ActiveDirectoryMembershipProvider - IsInRole problem
- From: "Joe Kaplan \(MVP - ADSI\)" <joseph.e.kaplan@xxxxxxxxxxxxxxxxxxxxxxxx>
- Date: Wed, 22 Mar 2006 15:12:10 -0600
Yeah, if I had time right now, I'd put one together for you. In the
meantime, you can check out Ryan's blog (www.dunnry.com) and see his
tokenGroups group membership expansion sample. It works quite well. You
could probably roll that into a role provider if you wanted to try.
Ryan and I are together at a conference next week, so maybe we can try to do
something like this? Who knows. :)
Joe K.
"Dominick Baier [DevelopMentor]" <dbaier@xxxxxxxxxxxxxxxxxxxxxxxxxxxxx>
wrote in message news:4580be63198aac8c81c0e1b08144f@xxxxxxxxxxxxxxxxxxxxx
right - and i think it is a pretty heavy limitation that there is no AD
role provider...
it is on my todo list - but i haven't found time so far...
You have to fetch them manually - joe knows at least 3 ways to do that :)
---------------------------------------
Dominick Baier - DevelopMentor
http://www.leastprivilege.com
ps - the use case for this authentication method is all users are in
AD, but some use firefox or opera as their browser.
"Dominick Baier [DevelopMentor]" wrote:
is the problem on the other thread resolved??
There is no ActiveDirectoryRolesProvider - the roles are not
populated from AD...thats why IsInRole fails.
---------------------------------------
Dominick Baier - DevelopMentor
http://www.leastprivilege.com
Hi;
For forms/ActiveDirectoryMembershipProvider authentication, I get an
authenticated user but IsInRole fails. I am getting a FormsIdentity
where authentication-"Forms" and name="dave". I do have to enter my
domain password for it to login.
web.config:
<roleManager enabled="true"/>
<authentication mode="Forms">
<forms name=".ADAuthCookie" loginUrl="login.aspx">
</forms>
</authentication>
<authorization>
<deny users="?"/>
</authorization>
<membership defaultProvider="MyProvider">
<providers>
<clear/>
<add name="MyProvider"
type="System.Web.Security.ActiveDirectoryMembershipProvider,
System.Web, Version=2.0.0.0, Culture=neutral,
PublicKeyToken=b03f5f7f11d50a3a"
connectionStringName="ADService"
attributeMapUsername="SAMAccountName"
/>
</providers>
</membership>
.
- Follow-Ups:
- Re: ActiveDirectoryMembershipProvider - IsInRole problem
- From: David Thielen
- Re: ActiveDirectoryMembershipProvider - IsInRole problem
- References:
- Re: ActiveDirectoryMembershipProvider - IsInRole problem
- From: Dominick Baier [DevelopMentor]
- Re: ActiveDirectoryMembershipProvider - IsInRole problem
- Prev by Date: Re: Impersonation in ASP.NET 2.0 (works from XP, not 2003)
- Next by Date: Re: accessing users' email from Active Directory
- Previous by thread: Re: ActiveDirectoryMembershipProvider - IsInRole problem
- Next by thread: Re: ActiveDirectoryMembershipProvider - IsInRole problem
- Index(es):
Relevant Pages
|
|
