Re: Problem establishing SSL connection in code-behind
- From: "Joe Kaplan" <joseph.e.kaplan@xxxxxxxxxxxxxxxxxxxxxxxx>
- Date: Sat, 5 Jan 2008 22:24:29 -0600
If you just want to use the AD membership provider for authentication, your
service account only needs read access to AD. The highly privileged account
is needed if you want to use any of the provisioning features of the
provider for creating users and such. It is possible to allow the process
account to make the connection (assuming you have a domain member web server
and are running the app pool under a domain account or network service).
I'd seriously look at that.
It is also possible to authenticate users against AD directly without using
the membership provider and without using a service account at all. You can
just call the LogonUser API for instance. Doing something like this would
be much cleaner than what you are trying to do.
Joe K.
--
Joe Kaplan-MS MVP Directory Services Programming
Co-author of "The .NET Developer's Guide to Directory Services Programming"
http://www.directoryprogramming.net
--
Thank you for the clarification. I actually did want to directly try
Active Directory(AD) authentication. But from the documentation I
read, it looks like that we need to put into web.config the username/
password of an administrator of the target domain.
Although such credential info can be encrypted in web.config, I balk
at asking for such info from our client. That's why we would like to
go the roundabout way.
I will copy-paste the details of the logon audit on Monday.
.
- Follow-Ups:
- Re: Problem establishing SSL connection in code-behind
- From: gnewsgroup
- Re: Problem establishing SSL connection in code-behind
- References:
- Problem establishing SSL connection in code-behind
- From: gnewsgroup
- Re: Problem establishing SSL connection in code-behind
- From: Joe Kaplan
- Re: Problem establishing SSL connection in code-behind
- From: gnewsgroup
- Re: Problem establishing SSL connection in code-behind
- From: Joe Kaplan
- Re: Problem establishing SSL connection in code-behind
- From: gnewsgroup
- Re: Problem establishing SSL connection in code-behind
- From: Joe Kaplan
- Re: Problem establishing SSL connection in code-behind
- From: gnewsgroup
- Re: Problem establishing SSL connection in code-behind
- From: Joe Kaplan
- Re: Problem establishing SSL connection in code-behind
- From: gnewsgroup
- Re: Problem establishing SSL connection in code-behind
- From: Joe Kaplan
- Re: Problem establishing SSL connection in code-behind
- From: gnewsgroup
- Re: Problem establishing SSL connection in code-behind
- From: Joe Kaplan
- Re: Problem establishing SSL connection in code-behind
- From: gnewsgroup
- Re: Problem establishing SSL connection in code-behind
- From: gnewsgroup
- Re: Problem establishing SSL connection in code-behind
- From: Joe Kaplan
- Re: Problem establishing SSL connection in code-behind
- From: gnewsgroup
- Problem establishing SSL connection in code-behind
- Prev by Date: Re: Problem establishing SSL connection in code-behind
- Next by Date: Re: Problem establishing SSL connection in code-behind
- Previous by thread: Re: Problem establishing SSL connection in code-behind
- Next by thread: Re: Problem establishing SSL connection in code-behind
- Index(es):
Relevant Pages
|
