|
security
newsgroups
|
|||||||||||||||||||||||
|
|||||||||||||||||||||||
Single sign on in asp.netHi,
I am facing some problem using ADS Single On to program from ASP .Net pages. The scenario is: User has logged onto Windows using AD profile. My asp .net application, while launched, needs to know the profile already logged in and use the credential for rest part of my application. But I cannot find out how to get that credential programmatically from asp .net page. Please help me on this. Help with sample code will be mostly appreciated. Thanks and Regards, Hello Suman,
you mean you want to know who your client is?? enabled integrated auth in IIS. Use Page.User or Context.User to retrieve the client identity in ASP.NET --------------------------------------- Dominick Baier - DevelopMentor http://www.leastprivilege.com Show quoteHide quote > Hi, > > I am facing some problem using ADS Single On to program from ASP .Net > pages. > > The scenario is: User has logged onto Windows using AD profile. My asp > .net application, while launched, needs to know the profile already > logged in and use the credential for rest part of my application. But > I cannot find out how to get that credential programmatically from asp > .net page. > > Please help me on this. Help with sample code will be mostly > appreciated. > > Thanks and Regards, > Thank you for your post....I forgot to mention this fact that I CAN NOT
disable the annonymous access in IIS...bcos that is the requirement... Show quoteHide quote "Dominick Baier [DevelopMentor]" wrote: > Hello Suman, > > you mean you want to know who your client is?? > > enabled integrated auth in IIS. Use Page.User or Context.User to retrieve > the client identity in ASP.NET > > --------------------------------------- > Dominick Baier - DevelopMentor > http://www.leastprivilege.com > > > Hi, > > > > I am facing some problem using ADS Single On to program from ASP .Net > > pages. > > > > The scenario is: User has logged onto Windows using AD profile. My asp > > .net application, while launched, needs to know the profile already > > logged in and use the credential for rest part of my application. But > > I cannot find out how to get that credential programmatically from asp > > .net page. > > > > Please help me on this. Help with sample code will be mostly > > appreciated. > > > > Thanks and Regards, > > > > > > Hello Suman,
ok - then you have to set ACLs on the .aspx files to force IIS to do authentication. --------------------------------------- Dominick Baier - DevelopMentor http://www.leastprivilege.com Show quoteHide quote > Thank you for your post....I forgot to mention this fact that I CAN > NOT disable the annonymous access in IIS...bcos that is the > requirement... > > "Dominick Baier [DevelopMentor]" wrote: > >> Hello Suman, >> >> you mean you want to know who your client is?? >> >> enabled integrated auth in IIS. Use Page.User or Context.User to >> retrieve the client identity in ASP.NET >> >> --------------------------------------- >> Dominick Baier - DevelopMentor >> http://www.leastprivilege.com >>> Hi, >>> >>> I am facing some problem using ADS Single On to program from ASP >>> .Net pages. >>> >>> The scenario is: User has logged onto Windows using AD profile. My >>> asp .net application, while launched, needs to know the profile >>> already logged in and use the credential for rest part of my >>> application. But I cannot find out how to get that credential >>> programmatically from asp .net page. >>> >>> Please help me on this. Help with sample code will be mostly >>> appreciated. >>> >>> Thanks and Regards, >>> Thank you Dominick.
Could you pls explain your point.....I didn't get it really... Another thing is that, I can not ask the user for username and password with the traditional uid/pwd window, which pops up when annonymous access is off.... Show quoteHide quote "Dominick Baier [DevelopMentor]" wrote: > Hello Suman, > > ok - then you have to set ACLs on the .aspx files to force IIS to do authentication. > > --------------------------------------- > Dominick Baier - DevelopMentor > http://www.leastprivilege.com > > > Thank you for your post....I forgot to mention this fact that I CAN > > NOT disable the annonymous access in IIS...bcos that is the > > requirement... > > > > "Dominick Baier [DevelopMentor]" wrote: > > > >> Hello Suman, > >> > >> you mean you want to know who your client is?? > >> > >> enabled integrated auth in IIS. Use Page.User or Context.User to > >> retrieve the client identity in ASP.NET > >> > >> --------------------------------------- > >> Dominick Baier - DevelopMentor > >> http://www.leastprivilege.com > >>> Hi, > >>> > >>> I am facing some problem using ADS Single On to program from ASP > >>> .Net pages. > >>> > >>> The scenario is: User has logged onto Windows using AD profile. My > >>> asp .net application, while launched, needs to know the profile > >>> already logged in and use the credential for rest part of my > >>> application. But I cannot find out how to get that credential > >>> programmatically from asp .net page. > >>> > >>> Please help me on this. Help with sample code will be mostly > >>> appreciated. > >>> > >>> Thanks and Regards, > >>> > > > > Hello Suman,
well - as soon as you hit a page where the anon user has no read ACLs - IIS is forced to authenticate. IE will send the credentials automatically if the site is intranet or put in the list of intranet sites. makes sense? --------------------------------------- Dominick Baier - DevelopMentor http://www.leastprivilege.com Show quoteHide quote > Thank you Dominick. > > Could you pls explain your point.....I didn't get it really... > > Another thing is that, I can not ask the user for username and > password with the traditional uid/pwd window, which pops up when > annonymous access is off.... > > "Dominick Baier [DevelopMentor]" wrote: > >> Hello Suman, >> >> ok - then you have to set ACLs on the .aspx files to force IIS to do >> authentication. >> >> --------------------------------------- >> Dominick Baier - DevelopMentor >> http://www.leastprivilege.com >>> Thank you for your post....I forgot to mention this fact that I CAN >>> NOT disable the annonymous access in IIS...bcos that is the >>> requirement... >>> >>> "Dominick Baier [DevelopMentor]" wrote: >>> >>>> Hello Suman, >>>> >>>> you mean you want to know who your client is?? >>>> >>>> enabled integrated auth in IIS. Use Page.User or Context.User to >>>> retrieve the client identity in ASP.NET >>>> >>>> --------------------------------------- >>>> Dominick Baier - DevelopMentor >>>> http://www.leastprivilege.com >>>>> Hi, >>>>> >>>>> I am facing some problem using ADS Single On to program from ASP >>>>> .Net pages. >>>>> >>>>> The scenario is: User has logged onto Windows using AD profile. My >>>>> asp .net application, while launched, needs to know the profile >>>>> already logged in and use the credential for rest part of my >>>>> application. But I cannot find out how to get that credential >>>>> programmatically from asp .net page. >>>>> >>>>> Please help me on this. Help with sample code will be mostly >>>>> appreciated. >>>>> >>>>> Thanks and Regards, >>>>> Hi Dominick,
Sorry for the late reply and Thank you for your response. If you have denied the read access, then it will always ask for uid/pwd. I tried this. Please excuse my ignorance. Could you pls give me some sample code for this. Show quoteHide quote "Dominick Baier [DevelopMentor]" wrote: > Hello Suman, > > well - as soon as you hit a page where the anon user has no read ACLs - IIS > is forced to authenticate. IE will send the credentials automatically if > the site is intranet or put in the list of intranet sites. makes sense? > > --------------------------------------- > Dominick Baier - DevelopMentor > http://www.leastprivilege.com > > > Thank you Dominick. > > > > Could you pls explain your point.....I didn't get it really... > > > > Another thing is that, I can not ask the user for username and > > password with the traditional uid/pwd window, which pops up when > > annonymous access is off.... > > > > "Dominick Baier [DevelopMentor]" wrote: > > > >> Hello Suman, > >> > >> ok - then you have to set ACLs on the .aspx files to force IIS to do > >> authentication. > >> > >> --------------------------------------- > >> Dominick Baier - DevelopMentor > >> http://www.leastprivilege.com > >>> Thank you for your post....I forgot to mention this fact that I CAN > >>> NOT disable the annonymous access in IIS...bcos that is the > >>> requirement... > >>> > >>> "Dominick Baier [DevelopMentor]" wrote: > >>> > >>>> Hello Suman, > >>>> > >>>> you mean you want to know who your client is?? > >>>> > >>>> enabled integrated auth in IIS. Use Page.User or Context.User to > >>>> retrieve the client identity in ASP.NET > >>>> > >>>> --------------------------------------- > >>>> Dominick Baier - DevelopMentor > >>>> http://www.leastprivilege.com > >>>>> Hi, > >>>>> > >>>>> I am facing some problem using ADS Single On to program from ASP > >>>>> .Net pages. > >>>>> > >>>>> The scenario is: User has logged onto Windows using AD profile. My > >>>>> asp .net application, while launched, needs to know the profile > >>>>> already logged in and use the credential for rest part of my > >>>>> application. But I cannot find out how to get that credential > >>>>> programmatically from asp .net page. > >>>>> > >>>>> Please help me on this. Help with sample code will be mostly > >>>>> appreciated. > >>>>> > >>>>> Thanks and Regards, > >>>>> > > > > Hello Suman,
thats only configuration - IE will only send the credentials automatically if he thinks its an intranet site. Only servernames without dots are considered intranet. If you are accessing the server using a FQDN - add the site to the intranet zone and see if the behaviour changes. --------------------------------------- Dominick Baier - DevelopMentor http://www.leastprivilege.com Show quoteHide quote > Hi Dominick, > > Sorry for the late reply and Thank you for your response. > > If you have denied the read access, then it will always ask for > uid/pwd. I tried this. Please excuse my ignorance. > > Could you pls give me some sample code for this. > > "Dominick Baier [DevelopMentor]" wrote: > >> Hello Suman, >> >> well - as soon as you hit a page where the anon user has no read ACLs >> - IIS is forced to authenticate. IE will send the credentials >> automatically if the site is intranet or put in the list of intranet >> sites. makes sense? >> >> --------------------------------------- >> Dominick Baier - DevelopMentor >> http://www.leastprivilege.com >>> Thank you Dominick. >>> >>> Could you pls explain your point.....I didn't get it really... >>> >>> Another thing is that, I can not ask the user for username and >>> password with the traditional uid/pwd window, which pops up when >>> annonymous access is off.... >>> >>> "Dominick Baier [DevelopMentor]" wrote: >>> >>>> Hello Suman, >>>> >>>> ok - then you have to set ACLs on the .aspx files to force IIS to >>>> do authentication. >>>> >>>> --------------------------------------- >>>> Dominick Baier - DevelopMentor >>>> http://www.leastprivilege.com >>>>> Thank you for your post....I forgot to mention this fact that I >>>>> CAN NOT disable the annonymous access in IIS...bcos that is the >>>>> requirement... >>>>> >>>>> "Dominick Baier [DevelopMentor]" wrote: >>>>> >>>>>> Hello Suman, >>>>>> >>>>>> you mean you want to know who your client is?? >>>>>> >>>>>> enabled integrated auth in IIS. Use Page.User or Context.User to >>>>>> retrieve the client identity in ASP.NET >>>>>> >>>>>> --------------------------------------- >>>>>> Dominick Baier - DevelopMentor >>>>>> http://www.leastprivilege.com >>>>>>> Hi, >>>>>>> >>>>>>> I am facing some problem using ADS Single On to program from ASP >>>>>>> .Net pages. >>>>>>> >>>>>>> The scenario is: User has logged onto Windows using AD profile. >>>>>>> My asp .net application, while launched, needs to know the >>>>>>> profile already logged in and use the credential for rest part >>>>>>> of my application. But I cannot find out how to get that >>>>>>> credential programmatically from asp .net page. >>>>>>> >>>>>>> Please help me on this. Help with sample code will be mostly >>>>>>> appreciated. >>>>>>> >>>>>>> Thanks and Regards, >>>>>>> Hi Dominick,
I have solved the problem. Actually if you turn off the anon access in IIS and request the page from same domain, it will not ask you for your uid/pwd, provided you have logged into the domain. Then you can get the requesting user id from ServerVariable("LOGON_USER"). Thank you again for your response. Show quoteHide quote "Dominick Baier [DevelopMentor]" wrote: > Hello Suman, > > thats only configuration - IE will only send the credentials automatically > if he thinks its an intranet site. Only servernames without dots are considered > intranet. If you are accessing the server using a FQDN - add the site to > the intranet zone and see if the behaviour changes. > > --------------------------------------- > Dominick Baier - DevelopMentor > http://www.leastprivilege.com > > > Hi Dominick, > > > > Sorry for the late reply and Thank you for your response. > > > > If you have denied the read access, then it will always ask for > > uid/pwd. I tried this. Please excuse my ignorance. > > > > Could you pls give me some sample code for this. > > > > "Dominick Baier [DevelopMentor]" wrote: > > > >> Hello Suman, > >> > >> well - as soon as you hit a page where the anon user has no read ACLs > >> - IIS is forced to authenticate. IE will send the credentials > >> automatically if the site is intranet or put in the list of intranet > >> sites. makes sense? > >> > >> --------------------------------------- > >> Dominick Baier - DevelopMentor > >> http://www.leastprivilege.com > >>> Thank you Dominick. > >>> > >>> Could you pls explain your point.....I didn't get it really... > >>> > >>> Another thing is that, I can not ask the user for username and > >>> password with the traditional uid/pwd window, which pops up when > >>> annonymous access is off.... > >>> > >>> "Dominick Baier [DevelopMentor]" wrote: > >>> > >>>> Hello Suman, > >>>> > >>>> ok - then you have to set ACLs on the .aspx files to force IIS to > >>>> do authentication. > >>>> > >>>> --------------------------------------- > >>>> Dominick Baier - DevelopMentor > >>>> http://www.leastprivilege.com > >>>>> Thank you for your post....I forgot to mention this fact that I > >>>>> CAN NOT disable the annonymous access in IIS...bcos that is the > >>>>> requirement... > >>>>> > >>>>> "Dominick Baier [DevelopMentor]" wrote: > >>>>> > >>>>>> Hello Suman, > >>>>>> > >>>>>> you mean you want to know who your client is?? > >>>>>> > >>>>>> enabled integrated auth in IIS. Use Page.User or Context.User to > >>>>>> retrieve the client identity in ASP.NET > >>>>>> > >>>>>> --------------------------------------- > >>>>>> Dominick Baier - DevelopMentor > >>>>>> http://www.leastprivilege.com > >>>>>>> Hi, > >>>>>>> > >>>>>>> I am facing some problem using ADS Single On to program from ASP > >>>>>>> .Net pages. > >>>>>>> > >>>>>>> The scenario is: User has logged onto Windows using AD profile. > >>>>>>> My asp .net application, while launched, needs to know the > >>>>>>> profile already logged in and use the credential for rest part > >>>>>>> of my application. But I cannot find out how to get that > >>>>>>> credential programmatically from asp .net page. > >>>>>>> > >>>>>>> Please help me on this. Help with sample code will be mostly > >>>>>>> appreciated. > >>>>>>> > >>>>>>> Thanks and Regards, > >>>>>>> > > > > Hello Suman,
don't use a server variable. Context.User.Identity.Name has all you need. --------------------------------------- Dominick Baier - DevelopMentor http://www.leastprivilege.com Show quoteHide quote > Hi Dominick, > > I have solved the problem. Actually if you turn off the anon access in > IIS and request the page from same domain, it will not ask you for > your uid/pwd, provided you have logged into the domain. Then you can > get the requesting user id from ServerVariable("LOGON_USER"). > > Thank you again for your response. > > "Dominick Baier [DevelopMentor]" wrote: > >> Hello Suman, >> >> thats only configuration - IE will only send the credentials >> automatically if he thinks its an intranet site. Only servernames >> without dots are considered intranet. If you are accessing the server >> using a FQDN - add the site to the intranet zone and see if the >> behaviour changes. >> >> --------------------------------------- >> Dominick Baier - DevelopMentor >> http://www.leastprivilege.com >>> Hi Dominick, >>> >>> Sorry for the late reply and Thank you for your response. >>> >>> If you have denied the read access, then it will always ask for >>> uid/pwd. I tried this. Please excuse my ignorance. >>> >>> Could you pls give me some sample code for this. >>> >>> "Dominick Baier [DevelopMentor]" wrote: >>> >>>> Hello Suman, >>>> >>>> well - as soon as you hit a page where the anon user has no read >>>> ACLs - IIS is forced to authenticate. IE will send the credentials >>>> automatically if the site is intranet or put in the list of >>>> intranet sites. makes sense? >>>> >>>> --------------------------------------- >>>> Dominick Baier - DevelopMentor >>>> http://www.leastprivilege.com >>>>> Thank you Dominick. >>>>> >>>>> Could you pls explain your point.....I didn't get it really... >>>>> >>>>> Another thing is that, I can not ask the user for username and >>>>> password with the traditional uid/pwd window, which pops up when >>>>> annonymous access is off.... >>>>> >>>>> "Dominick Baier [DevelopMentor]" wrote: >>>>> >>>>>> Hello Suman, >>>>>> >>>>>> ok - then you have to set ACLs on the .aspx files to force IIS to >>>>>> do authentication. >>>>>> >>>>>> --------------------------------------- >>>>>> Dominick Baier - DevelopMentor >>>>>> http://www.leastprivilege.com >>>>>>> Thank you for your post....I forgot to mention this fact that I >>>>>>> CAN NOT disable the annonymous access in IIS...bcos that is the >>>>>>> requirement... >>>>>>> >>>>>>> "Dominick Baier [DevelopMentor]" wrote: >>>>>>> >>>>>>>> Hello Suman, >>>>>>>> >>>>>>>> you mean you want to know who your client is?? >>>>>>>> >>>>>>>> enabled integrated auth in IIS. Use Page.User or Context.User >>>>>>>> to retrieve the client identity in ASP.NET >>>>>>>> >>>>>>>> --------------------------------------- >>>>>>>> Dominick Baier - DevelopMentor >>>>>>>> http://www.leastprivilege.com >>>>>>>>> Hi, >>>>>>>>> >>>>>>>>> I am facing some problem using ADS Single On to program from >>>>>>>>> ASP .Net pages. >>>>>>>>> >>>>>>>>> The scenario is: User has logged onto Windows using AD >>>>>>>>> profile. My asp .net application, while launched, needs to >>>>>>>>> know the profile already logged in and use the credential for >>>>>>>>> rest part of my application. But I cannot find out how to get >>>>>>>>> that credential programmatically from asp .net page. >>>>>>>>> >>>>>>>>> Please help me on this. Help with sample code will be mostly >>>>>>>>> appreciated. >>>>>>>>> >>>>>>>>> Thanks and Regards, >>>>>>>>> You are right Dominick.
Firstly I did the same. But the problem is that, it is giving blank when I am using it on windows 2003 server. Then I switched to Server variable. HttpContext is giving proper result in Win XP. Can you suggest me why it is not giving the username at Server? Show quoteHide quote "Dominick Baier [DevelopMentor]" wrote: > Hello Suman, > > don't use a server variable. > > Context.User.Identity.Name has all you need. > > --------------------------------------- > Dominick Baier - DevelopMentor > http://www.leastprivilege.com > > > Hi Dominick, > > > > I have solved the problem. Actually if you turn off the anon access in > > IIS and request the page from same domain, it will not ask you for > > your uid/pwd, provided you have logged into the domain. Then you can > > get the requesting user id from ServerVariable("LOGON_USER"). > > > > Thank you again for your response. > > > > "Dominick Baier [DevelopMentor]" wrote: > > > >> Hello Suman, > >> > >> thats only configuration - IE will only send the credentials > >> automatically if he thinks its an intranet site. Only servernames > >> without dots are considered intranet. If you are accessing the server > >> using a FQDN - add the site to the intranet zone and see if the > >> behaviour changes. > >> > >> --------------------------------------- > >> Dominick Baier - DevelopMentor > >> http://www.leastprivilege.com > >>> Hi Dominick, > >>> > >>> Sorry for the late reply and Thank you for your response. > >>> > >>> If you have denied the read access, then it will always ask for > >>> uid/pwd. I tried this. Please excuse my ignorance. > >>> > >>> Could you pls give me some sample code for this. > >>> > >>> "Dominick Baier [DevelopMentor]" wrote: > >>> > >>>> Hello Suman, > >>>> > >>>> well - as soon as you hit a page where the anon user has no read > >>>> ACLs - IIS is forced to authenticate. IE will send the credentials > >>>> automatically if the site is intranet or put in the list of > >>>> intranet sites. makes sense? > >>>> > >>>> --------------------------------------- > >>>> Dominick Baier - DevelopMentor > >>>> http://www.leastprivilege.com > >>>>> Thank you Dominick. > >>>>> > >>>>> Could you pls explain your point.....I didn't get it really... > >>>>> > >>>>> Another thing is that, I can not ask the user for username and > >>>>> password with the traditional uid/pwd window, which pops up when > >>>>> annonymous access is off.... > >>>>> > >>>>> "Dominick Baier [DevelopMentor]" wrote: > >>>>> > >>>>>> Hello Suman, > >>>>>> > >>>>>> ok - then you have to set ACLs on the .aspx files to force IIS to > >>>>>> do authentication. > >>>>>> > >>>>>> --------------------------------------- > >>>>>> Dominick Baier - DevelopMentor > >>>>>> http://www.leastprivilege.com > >>>>>>> Thank you for your post....I forgot to mention this fact that I > >>>>>>> CAN NOT disable the annonymous access in IIS...bcos that is the > >>>>>>> requirement... > >>>>>>> > >>>>>>> "Dominick Baier [DevelopMentor]" wrote: > >>>>>>> > >>>>>>>> Hello Suman, > >>>>>>>> > >>>>>>>> you mean you want to know who your client is?? > >>>>>>>> > >>>>>>>> enabled integrated auth in IIS. Use Page.User or Context.User > >>>>>>>> to retrieve the client identity in ASP.NET > >>>>>>>> > >>>>>>>> --------------------------------------- > >>>>>>>> Dominick Baier - DevelopMentor > >>>>>>>> http://www.leastprivilege.com > >>>>>>>>> Hi, > >>>>>>>>> > >>>>>>>>> I am facing some problem using ADS Single On to program from > >>>>>>>>> ASP .Net pages. > >>>>>>>>> > >>>>>>>>> The scenario is: User has logged onto Windows using AD > >>>>>>>>> profile. My asp .net application, while launched, needs to > >>>>>>>>> know the profile already logged in and use the credential for > >>>>>>>>> rest part of my application. But I cannot find out how to get > >>>>>>>>> that credential programmatically from asp .net page. > >>>>>>>>> > >>>>>>>>> Please help me on this. Help with sample code will be mostly > >>>>>>>>> appreciated. > >>>>>>>>> > >>>>>>>>> Thanks and Regards, > >>>>>>>>> > > > > Hello Suman,
when it is blank, it means that IIS has not authenticated. I don't see a difference between XP and W2K3. --------------------------------------- Dominick Baier - DevelopMentor http://www.leastprivilege.com Show quoteHide quote > You are right Dominick. > Firstly I did the same. But the problem is that, it is giving blank > when I > am using it on windows 2003 server. Then I switched to Server > variable. > HttpContext is giving proper result in Win XP. Can you suggest me why > it is > not giving the username at Server? > "Dominick Baier [DevelopMentor]" wrote: > >> Hello Suman, >> >> don't use a server variable. >> >> Context.User.Identity.Name has all you need. >> >> --------------------------------------- >> Dominick Baier - DevelopMentor >> http://www.leastprivilege.com >>> Hi Dominick, >>> >>> I have solved the problem. Actually if you turn off the anon access >>> in IIS and request the page from same domain, it will not ask you >>> for your uid/pwd, provided you have logged into the domain. Then you >>> can get the requesting user id from ServerVariable("LOGON_USER"). >>> >>> Thank you again for your response. >>> >>> "Dominick Baier [DevelopMentor]" wrote: >>> >>>> Hello Suman, >>>> >>>> thats only configuration - IE will only send the credentials >>>> automatically if he thinks its an intranet site. Only servernames >>>> without dots are considered intranet. If you are accessing the >>>> server using a FQDN - add the site to the intranet zone and see if >>>> the behaviour changes. >>>> >>>> --------------------------------------- >>>> Dominick Baier - DevelopMentor >>>> http://www.leastprivilege.com >>>>> Hi Dominick, >>>>> >>>>> Sorry for the late reply and Thank you for your response. >>>>> >>>>> If you have denied the read access, then it will always ask for >>>>> uid/pwd. I tried this. Please excuse my ignorance. >>>>> >>>>> Could you pls give me some sample code for this. >>>>> >>>>> "Dominick Baier [DevelopMentor]" wrote: >>>>> >>>>>> Hello Suman, >>>>>> >>>>>> well - as soon as you hit a page where the anon user has no read >>>>>> ACLs - IIS is forced to authenticate. IE will send the >>>>>> credentials automatically if the site is intranet or put in the >>>>>> list of intranet sites. makes sense? >>>>>> >>>>>> --------------------------------------- >>>>>> Dominick Baier - DevelopMentor >>>>>> http://www.leastprivilege.com >>>>>>> Thank you Dominick. >>>>>>> >>>>>>> Could you pls explain your point.....I didn't get it really... >>>>>>> >>>>>>> Another thing is that, I can not ask the user for username and >>>>>>> password with the traditional uid/pwd window, which pops up when >>>>>>> annonymous access is off.... >>>>>>> >>>>>>> "Dominick Baier [DevelopMentor]" wrote: >>>>>>> >>>>>>>> Hello Suman, >>>>>>>> >>>>>>>> ok - then you have to set ACLs on the .aspx files to force IIS >>>>>>>> to do authentication. >>>>>>>> >>>>>>>> --------------------------------------- >>>>>>>> Dominick Baier - DevelopMentor >>>>>>>> http://www.leastprivilege.com >>>>>>>>> Thank you for your post....I forgot to mention this fact that >>>>>>>>> I CAN NOT disable the annonymous access in IIS...bcos that is >>>>>>>>> the requirement... >>>>>>>>> >>>>>>>>> "Dominick Baier [DevelopMentor]" wrote: >>>>>>>>> >>>>>>>>>> Hello Suman, >>>>>>>>>> >>>>>>>>>> you mean you want to know who your client is?? >>>>>>>>>> >>>>>>>>>> enabled integrated auth in IIS. Use Page.User or Context.User >>>>>>>>>> to retrieve the client identity in ASP.NET >>>>>>>>>> >>>>>>>>>> --------------------------------------- >>>>>>>>>> Dominick Baier - DevelopMentor >>>>>>>>>> http://www.leastprivilege.com >>>>>>>>>>> Hi, >>>>>>>>>>> >>>>>>>>>>> I am facing some problem using ADS Single On to program from >>>>>>>>>>> ASP .Net pages. >>>>>>>>>>> >>>>>>>>>>> The scenario is: User has logged onto Windows using AD >>>>>>>>>>> profile. My asp .net application, while launched, needs to >>>>>>>>>>> know the profile already logged in and use the credential >>>>>>>>>>> for rest part of my application. But I cannot find out how >>>>>>>>>>> to get that credential programmatically from asp .net page. >>>>>>>>>>> >>>>>>>>>>> Please help me on this. Help with sample code will be mostly >>>>>>>>>>> appreciated. >>>>>>>>>>> >>>>>>>>>>> Thanks and Regards, >>>>>>>>>>> Hi
I have the same problem. From your discussion, I would like to know the steps to allow login once into the domain and then access all the applications you have access to: 1) Do I uncheck(disable) Anonymous and Integrated login on the application? 2) What else do i need to do so that user does not get the UI for login once he is already in the domain. 3) If i have 2 separate domains a)My web server is in domain 1(say) and Active directory and users are sitting in domain 2(say). Is there a way to allow single logins in this scenario, where user is logged onto his machine in domain 2 and he is access web application from domain 1 with otu ever having to type his username and password again. Both the domain are for the same company *** Sent via Developersdex http://www.developersdex.com *** Hello Mahesh,
yes - you first have to force IIS to do auth by unchecking anonymous. read more here: http://msdn.microsoft.com/msdnmag/issues/05/09/SecurityBriefs/default.aspx --------------------------------------- Dominick Baier - DevelopMentor http://www.leastprivilege.com Show quoteHide quote > Hi > > I have the same problem. From your discussion, I would like to know > the steps to allow login once into the domain and then access all the > applications you have access to: > > 1) Do I uncheck(disable) Anonymous and Integrated login on the > application? > 2) What else do i need to do so that user does not get the UI for > login > once he is already in the domain. > 3) If i have 2 separate domains a)My web server is in domain 1(say) > and Active directory and users are sitting in domain 2(say). Is there > a way to allow single logins in this scenario, where user is logged > onto his machine in domain 2 and he is access web application from > domain 1 with otu ever having to type his username and password again. > Both the domain are for the same company > > *** Sent via Developersdex http://www.developersdex.com *** > Thanks Dominic
Yes it works. The way it works is to add the site name in the Local intranet zone settings of the security options available under tools, internet options. If I just set the security option as shown in the article(the link provided by you), it still prompt for the login. Thanks cheers *** Sent via Developersdex http://www.developersdex.com *** Thanks Dominic
Yes it works. The way it works is to add the site name in the Local intranet zone settings of the security options available under tools, internet options. If I just set the security option as shown in the article(the link provided by you), it still prompt for the login. Thanks cheers *** Sent via Developersdex http://www.developersdex.com *** 
Other interesting topics
Questions and observations about CAS and the StrongNameIdentityPermssionAttribute.
Security for a pluggable application Signed XML Private Key X509 Certificate WSE 2.0 Issue\Errors C#.NET app to run on Win 2003 from another Win2003 on the local net? SetOwner problem? Certificate Valid Date Range Get the user email Providing persistent storage in a locked down environment Securing .NET Assemblies Sign with Smartcard |
|||||||||||||||||||||||
