Seamless Login Page with ASP Dotnet

Joe Rigley · Joe Rigley

Hi,

I'm a little new to ASP Dotnet, but have been coding in classic ASP for over
5 years...

I'd appreciate some suggestions/guidance in writing an Intranet login page
that authenticates domain users to AD on a Win2003 server. Is it possible
to code an .aspx page that will "automatically obtain the login user's
creditentials" (User ID and/or P/W) they provided to AD when the user logged
into their workstation? When I say "automatically obtain the creditentials"
I mean the user does NOT enter any info on the page. The code behind page
some how obtains that info via classes or objects or the Dotnet Framework.
I'd like to use that info to re-verify the account that is still active in
AD via an LDAP lookup. If it is still valid, then allow the user into
various Intranet websites, thus providing an "Automatic or Seamless" login
for the users.

Is something like this possible to do? I thought I read somewhere that it
was possible with ASP Dotnet and not in classic ASP. Please let me know if
that is true and a basic plan on how could make it happen.

Any suggestions would be appreciated. Thanks,
-Joe

Chris Rolon · Chris Rolon

In order to get the credentials of the user you will have to setup IIS for
your site as follows:
1. Disable anonymous access to you site in IIS.
2. Enable Windows Integrated Authentication.

In ASP .Net you will need to add the following to web.config:
<identity impersonate="true" />

In your code you do the following:
WindowsPrincipal wp = new WindowsPrincipal(WindowsIdentity.GetCurrent());

This will create a WindowsPrincipal with the user that is currently logged
into the domain. If you allow anonymous access or do not impersonate, the
WindowsPrincipal will be for the account used by ASP .Net. That will either
be ASPNET or NETWORK SERVICE.

Chris Rolon

"Joe Rigley" <jcrigley@spartanmotors.com> wrote in message
news:Owx6nTUBFHA.2640@TK2MSFTNGP14.phx.gbl...

> Hi,
>
> I'm a little new to ASP Dotnet, but have been coding in classic ASP for

over

> 5 years...
>
> I'd appreciate some suggestions/guidance in writing an Intranet login page
> that authenticates domain users to AD on a Win2003 server. Is it possible
> to code an .aspx page that will "automatically obtain the login user's
> creditentials" (User ID and/or P/W) they provided to AD when the user

logged

> into their workstation? When I say "automatically obtain the

creditentials"

> I mean the user does NOT enter any info on the page. The code behind page
> some how obtains that info via classes or objects or the Dotnet Framework.
> I'd like to use that info to re-verify the account that is still active in
> AD via an LDAP lookup. If it is still valid, then allow the user into
> various Intranet websites, thus providing an "Automatic or Seamless" login
> for the users.
>
> Is something like this possible to do? I thought I read somewhere that it
> was possible with ASP Dotnet and not in classic ASP. Please let me know

if

> that is true and a basic plan on how could make it happen.
>
> Any suggestions would be appreciated. Thanks,
> -Joe
>
>

Joe Rigley · Joe Rigley

Chris,

Excellent info! Just the kind of help I was hoping for! I greatly
appreciate your time helping me with this. I will give it shot next week
and see how it goes.

Much obliged,
-Joe

"Chris Rolon" <chris.rolon@removethis.neudesic.com> wrote in message
news:esmlrxVBFHA.3592@TK2MSFTNGP09.phx.gbl...

> In order to get the credentials of the user you will have to setup IIS for
> your site as follows:
> 1. Disable anonymous access to you site in IIS.
> 2. Enable Windows Integrated Authentication.
>
> In ASP .Net you will need to add the following to web.config:
> <identity impersonate="true" />
>
> In your code you do the following:
> WindowsPrincipal wp = new WindowsPrincipal(WindowsIdentity.GetCurrent());
>
> This will create a WindowsPrincipal with the user that is currently logged
> into the domain. If you allow anonymous access or do not impersonate, the
> WindowsPrincipal will be for the account used by ASP .Net. That will

either

> be ASPNET or NETWORK SERVICE.
>
> Chris Rolon
>
>
> "Joe Rigley" <jcrigley@spartanmotors.com> wrote in message
> news:Owx6nTUBFHA.2640@TK2MSFTNGP14.phx.gbl...

> > Hi,
> >
> > I'm a little new to ASP Dotnet, but have been coding in classic ASP for

> over

> > 5 years...
> >
> > I'd appreciate some suggestions/guidance in writing an Intranet login

page

> > that authenticates domain users to AD on a Win2003 server. Is it

possible

> > to code an .aspx page that will "automatically obtain the login user's
> > creditentials" (User ID and/or P/W) they provided to AD when the user

> logged

> > into their workstation? When I say "automatically obtain the

> creditentials"

> > I mean the user does NOT enter any info on the page. The code behind

page

> > some how obtains that info via classes or objects or the Dotnet

Framework.

> > I'd like to use that info to re-verify the account that is still active

in

> > AD via an LDAP lookup. If it is still valid, then allow the user into
> > various Intranet websites, thus providing an "Automatic or Seamless"

login

> > for the users.
> >
> > Is something like this possible to do? I thought I read somewhere that

it

> > was possible with ASP Dotnet and not in classic ASP. Please let me know

> if

> > that is true and a basic plan on how could make it happen.
> >
> > Any suggestions would be appreciated. Thanks,
> > -Joe
> >
> >

>
>

Seamless Login Page with ASP Dotnet

Thread Tools

Display

Seamless Login Page with ASP Dotnet

Similar Questions and Discussions

Pass credentials from one web site to another for seamless login

Strange problem with Forms authentication: After successfull login, login page is still displayed

user and admin login on same login page

Creating News page the dotnet way

Seamless table across frames?

Re: Seamless Login Page with ASP Dotnet

Re: Seamless Login Page with ASP Dotnet

Posting Permissions