Ask a Question related to ASP.NET Security, Design and Development.
-
WJ #1
AD and Asp.Net ?
My IIS-6 box is not a member of the Windows 2003 Forest (a stand alone
active directory). I use Form authentication. I need to verify logon users
against the AD. What do I need in order to do this ? From my understanding,
I would need an AD account/pw with read access to the SAM account (user
object) on the AD box in order to verify my users ?
My IIS box will never be a member of any AD and the web site is configured
to run under "Network Service" account (anonymous). Here is the work flow:
1. User logon to my website
2. Asp.Net page check his/her credential against my MS/SQL user Profile
table. If not match, exit the web.
3. Then send the user's Logon ID/PW to AD for query. If not found, exit the
web. Otherwise, allow user to access the web.
Thanks
John
WJ Guest
-
Daniel Fisher\(lennybacon\) #2 Re: AD and Asp.Net ?
You can use FormsAuth and authenticate against the AD by LDAP (try to login
with the given credentials) so you won't need a user account for your app.
This is NOT the Account ASP.NET runs under !!! ASP.NET by default uses> My IIS box will never be a member of any AD and the web site is configured
> to run under "Network Service" account (anonymous). Here is the work flow:
"ASPNET"
--
Daniel Fisher(lennybacon)
MCP ASP.NET C#
Blog: [url]http://www.lennybacon.com/[/url]
"WJ" <JohnWebbs@HotMail.Com> wrote in message
news:eZbJ%23omCFHA.2620@tk2msftngp13.phx.gbl...> My IIS-6 box is not a member of the Windows 2003 Forest (a stand alone
> active directory). I use Form authentication. I need to verify logon users
> against the AD. What do I need in order to do this ? From my
> understanding, I would need an AD account/pw with read access to the SAM
> account (user object) on the AD box in order to verify my users ?
>
>
> 1. User logon to my website
> 2. Asp.Net page check his/her credential against my MS/SQL user Profile
> table. If not match, exit the web.
> 3. Then send the user's Logon ID/PW to AD for query. If not found, exit
> the web. Otherwise, allow user to access the web.
>
> Thanks
>
> John
>
>
Daniel Fisher\(lennybacon\) Guest
-
WJ #3 Re: AD and Asp.Net ?
"Daniel Fisher(lennybacon)" <info@(removethis)lennybacon.com> wrote in
message news:ObrBYpuCFHA.2296@TK2MSFTNGP15.phx.gbl...Thanks for your reply. I got it working OK now. Yes, I still do need an> You can use FormsAuth and authenticate against the AD by LDAP (try to
> login with the given credentials) so you won't need a user account for
> your app.
>
account from the Domain Forest as a "domain user" and a password. I do not
need to do anything with my current website. All I need is logon to the AD
using the given account, query a given user and log off the AD.
John
WJ Guest
Reply With Quote
Posting Permissions
- You may not post new threads
- You may post replies
- You may not post attachments
- You may not edit your posts
