RE: log on to one, log on to all - web apps

Hi!
Before answerign, I would like to ask couple of questions.
1. Are all user part of same domain and network is kind of extranet?
2. Are all user log on to server using internet?
3. Do you have any auditing requirement for each user on SQL, SPS servers?
Is yes, then you will have to use impersonation and delegation? To use
imeprsonation and delegation, you have to use windows authentication. But as
you said you are using form authentication, you can use role based mapping
with SPS and CMS. So you will have to do mapping between your user and roles
created.
Here you will have less auditing feature and you will have to flow your
identiity from IIS server to CMS,SPS and SQL server.
The following set up should help you out for analysis,
1. Create user group called CMS and SPS.
2. Authenticated users using form with active directory.
3. Check user belongs to particular group (CMS, SPS). if you want all user
to log on to each server then make universal group and then use trusted
predefined identity which uses windows authentication to access CMS and SPS.
Also ASP.NET user can be used with this set up. so you need not create any
user.


So you will have form authentication between browser and IIS server and
between IIS server to other server, use windows authentication.


regards,
narendra.
regards,
narendra.


"Alex Lakeland" wrote:

> I have the following scenario:
>
> 2 win2k3 servers with MCMS2002, load balanced
> 3 win2k3 SPS2003 servers in medium server farm configuration
> 1 SQL2k/2k5 environment (probably a cluster)
> All users are external and log on with credentials in active directory on
> the same domain as the servers above.
>
> There will be a website that sits as an umbrella over the top of the two
> websites (CMS and SPS). This website will have a forms-based login - all
> users are external and will log in here.
>
> What I'm trying to achieve: once the user completes login on the umbrealle
> site they will be logged in on both SPS and CMS.
>
>
> How can I achieve this? Sicne the sites will be on the same root domain name
> I can share a cookie betweent he sites (I think) but I can't see how I pass
> the windows token between the environment. Is there another way? And how do
> I stop the session from timing out on e.g. SPS if the user is on CMS for an
> hour?
>
> Any suggestions, however theoretical, would be gratefully received.
>
> Alex Lakeland
>
>
>
.

Relevant Pages

  • Re: log on to one, log on to all - web apps
    ... Do you have any auditing requirement for each user on SQL, SPS servers? ... you have to use windows authentication. ... > with SPS and CMS. ... > identiity from IIS server to CMS,SPS and SQL server. ...
    (microsoft.public.dotnet.security)
  • CMS integration.-404 Error
    ... CMS and SPS are on different servers. ... WSS is not installed on CMS server. ... Only CMS connector is installed on SPS ... Requested Url: /<sample ...
    (microsoft.public.sharepoint.portalserver)
  • Re: Host WSS separate from SPS?
    ... we have a small intranet built on SPS and CMS that is hosted on one web ... I know SPS is built on top of WSS, but currently we don't use WSS to ... That will increase the load on the web server, ...
    (microsoft.public.sharepoint.portalserver)
  • Re: Host WSS separate from SPS?
    ... > server. ... I know SPS is built on top of WSS, but currently we don't use WSS ... > but that will also force us to buy additional CMS and SPS licenses. ...
    (microsoft.public.sharepoint.portalserver)
  • Re: Getting complete URL after a redirect
    ... They want to keep the server locked down as tight as humanly ... eCommerce site because the main site proxies requests for CMS content ... sales guy who really "got" computers. ...
    (comp.lang.php)