Re: Authentication from a SAM base / IIS

---

• From: Mika <Mika@xxxxxxxxxxxxxxxxxxxxxxxxx>
• Date: Thu, 4 May 2006 04:38:01 -0700

---

Ok, I'm happy to learn that if I can solve this IIS authentication, all my
problem will be solve.

Here is the last web.config I tested.
<configuration>
<system.web>
<authentication mode="Windows" />
<machineKey validationKey="AutoGenerate"
decryptionKey="AutoGenerate" validation="SHA1"/>
<authorization>
<deny users="?" />
</authorization>
</system.web>
</configuration>

and here is my default.aspx page :
<%@ Page Language="VB" %>
<%@ import Namespace="System.Web.Security " %>
<script runat="server">
Sub Page_Load(Src As Object, E As EventArgs)
lblUser.Text = "<b>Your user name is:</b> " & User.Identity.Name
lblType.Text = "<b>Your Authentication type is:<b> " &
User.Identity.AuthenticationType
End Sub
Sub Logout_Click(Src As Object, E As EventArgs)
FormsAuthentication.SignOut()
Server.Transfer("login.aspx")
End Sub
</script>
<html>
<head>
</head>
<body>
<form runat="server">
<asp:Label id="lblUser" runat="server"></asp:Label>
<br />
<asp:Label id="lblType" runat="server"></asp:Label>
<br />
<asp:button id="Button1" onclick="Logout_Click" runat="server"
text="Logout"></asp:button>
</form>
</body>
</html>


Do you see what is wrong ?


"Dominick Baier [DevelopMentor]" wrote:

hi,

sorry - but integrated auth does *exactly* what you are asking for - authenticate
against local or domain windows accounts. Something substantial must be wrong.

---------------------------------------
Dominick Baier - DevelopMentor
http://www.leastprivilege.com

I've tried to use the "Windows" authentication and I denied access to
unidentified users but it didn't work.
I try lot of combinations, with forcing ipersonation or not, with
consulting
the page after put it on the server or from the local machine with the
built-in interpretorof Web-Matrix. No-one works.
I hope solving this problem with ISS will solve everything but I'm
afraid that I have to look for a way to query the SAM base.

Thank you for your reaction and suggestions about all of it.

MIKA

"Dominick Baier [DevelopMentor]" wrote:

then the users will get the normal IIS login dialog where they can
authenticate with their credentials for that server

---------------------------------------
Dominick Baier - DevelopMentor
http://www.leastprivilege.com

Thank you for your answer.
The point is that the users will not use the same login/password
than
they
entered to Windows. I'm in a big University and there is the main
domain on
wich everybody log-in.
But I work on another serveur with his own user/login for just the
ComputerScience students on wich they upload their files and other
things.
So I think I cannot use the IIS.
I hope you will have a solution for this complex structure. MIKA

"Joe Kaplan (MVP - ADSI)" wrote:

Just use Windows authentication is IIS. It will authenticate local
users. Basic or IWA will work fine.

Why try to write code for this?

If you absolutely have to write code, calling the LogonUser API is
the best way to go. Using ADSI or WMI is likely to be flakey,
although you can try using the DirectoryEntry with the WinNT
provider to do it.

Joe K.

"Mika" <Mika@xxxxxxxxxxxxxxxxxxxxxxxxx> wrote in message
news:8DEF9D78-0AB1-4571-8817-8943898C6441@xxxxxxxxxxxxxxxx

Hello,
I'm actually looking for a way to authentificate users from the
authentification base SAM of a WindowsServer2003.
I have to do it from a web-page wrote in ASP.NET(VB).
During my searchs I've found some technology wich could be
helpful.
It's
the
Windows WMI and ADSI. But I'm still a student who have learn
Computer
Science
just for 2years and this is a bit complex for me.
I'm looking for someone who have done something similar and if YOU
didn't,
I
would be glad if you could give me some ideas or leads.
Thank you for your help!
MIKA

.

---

• Follow-Ups:
  • Re: Authentication from a SAM base / IIS
    • From: Dominick Baier [DevelopMentor]

• References:
  • Authentication from a SAM base / ISS
    • From: Mika
  • Re: Authentication from a SAM base / ISS
    • From: Dominick Baier [DevelopMentor]

• Prev by Date: Re: Authentication from a SAM base / ISS
• Next by Date: Re: Authentication from a SAM base / IIS
• Previous by thread: Re: Authentication from a SAM base / ISS
• Next by thread: Re: Authentication from a SAM base / IIS
• Index(es):
  • Date
  • Thread

---

Relevant Pages Authentication from a SAM base / ISS ... I've tried to use the "Windows" authentication and I denied access to ... ComputerScience students on wich they upload their files and other ... Windows WMI and ADSI. ... (microsoft.public.dotnet.framework.aspnet.security) Re: WS-Security vs. IIS Authentication ... IIS Authentication works at the HTTP transport level ... > you can't use WS-Security as an alternative mechanism. ... it's nice to leverage Windows Integrated Security for Single ... (microsoft.public.dotnet.framework.webservices.enhancements) Re: IISSecurity ... Basic authentication with an SSL / HTTPS certificate from ... > You can use the build in IIS authentication. ... > scholarships. ... (microsoft.public.inetserver.iis.security) Re: Authentication pb with IIS7, II7.7 ... In IIS authentication I get: ... Anonymous authentication: disabled ... Windows: Enabled HTTP 401 challenge ... (microsoft.public.inetserver.asp.general) RE: Authenticating to Native SQL 2005 Web Services ... Integrated Windows Authentication works only in ... IIS Authentication and Security for Internet Developers ... Authenticating to Native SQL 2005 Web Services ... (microsoft.public.sqlserver.security)

---

• Security
• UNIX
• Linux
• Coding
• Usenet

• News
• Mailing-Lists
• Newsgroups
• Service
• About
• Privacy
• Search
• Imprint

www.derkeiler.com  > Newsgroups  > microsoft.public.dotnet.framework.aspnet.security  > 2006-05