Professional Web Applications Themes

Similar issue with .NET Security - ASP.NET Security

Hello; having similar ASP.NET security issues. Upgrading a number of ASP classic apps to .NET and haveeverything done but cant figure out how to get the security towork correctly. Under the ASP Classic implementations security was NT Groupsbased. Various Groups were created for different access rights,and the apps just checked the logged in user against ADSI todetermine if they were in the correct group(s) for whateveraccess. This was accomplished quite easily by dim-ing out an object forthe Domain and flipping thru the Groups to find the one ofinterests and then checking to see if the user logged on to theapp ...

  1. #1

    Default Similar issue with .NET Security

    Hello; having similar ASP.NET security issues.

    Upgrading a number of ASP classic apps to .NET and haveeverything done but cant figure out how to get the security towork correctly.

    Under the ASP Classic implementations security was NT Groupsbased. Various Groups were created for different access rights,and the apps just checked the logged in user against ADSI todetermine if they were in the correct group(s) for whateveraccess.

    This was accomplished quite easily by dim-ing out an object forthe Domain and flipping thru the Groups to find the one ofinterests and then checking to see if the user logged on to theapp was in that group, and setting a session variable to thateffect.

    This had many advantages, including the fact that Networksadministered the user accounts, adding & removing people fromgroups, and so on without Development needing to get involved.It was also easy, and allowed users to log into the system fromany machine they happened to be at as themselves.

    Under ASP.NET however, Windows authentication picks up the personlogged in on the computer itself defeating part of the desiredfunctionality.

    So I tried Forms based authentication and though various bookslist ADSI as being a valid source of comparison for loginverification I cant find one line of code on how to do that; allthe examples use a custom independently managed Database, XMLfiles, or hardcoding the user info directly in the web config(!), the last to of which strike me as generally bad ideas. Idont have any problem doing the Database option if necessary,but as all of the user security is already set up and better yetadministered by Networks I would much rather find a way to usethe existing infrastructure to manage this.

    Any ideas how to force .NET to accept a forms basedauthentication and then verify it against ADSI?

    Thanx!

    --------------------------------
    From: Ed Hastings

    -----------------------
    Posted by a user from .NET 247 ([url]http://www.dotnet247.com/[/url])

    <Id>NU9di4RXnUy12Bd0qmE80w==</Id>
    Ed Hastings via .NET 247 Guest

  2. #2

    Default RE: Similar issue with .NET Security

    check if this link helps you.

    [url]http://support.microsoft.com/default.aspx?scid=kb;en-us;326340&Product=aspnet[/url]
    Avnrao Guest

Similar Threads

  1. Odd security issue
    By Vanadael in forum Macromedia Contribute Connection Administrtion
    Replies: 0
    Last Post: April 30th, 05:51 PM
  2. Is this a security issue
    By Ignoramus20689 in forum MySQL
    Replies: 9
    Last Post: August 23rd, 07:20 AM
  3. Security - player 8 issue
    By andros in forum Macromedia Flash Flashcom
    Replies: 1
    Last Post: October 11th, 11:41 PM
  4. ASPState Bug/Security issue
    By Brian Gambs in forum ASP.NET Security
    Replies: 5
    Last Post: August 4th, 07:08 PM
  5. New security issue
    By Dale McMurtrey in forum Windows Setup, Administration & Security
    Replies: 1
    Last Post: July 22nd, 03:45 AM

Bookmarks

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •  

1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 19 20 21 22 23 24 25 26 27 28 29 30 31 32 33 34 35 36 37 38 39 40 41 42 43 44 45 46 47 48 49 50 51 52 53 54 55 56 57 58 59 60 61 62 63 64 65 66 67 68 69 70 71 72 73 74 75 76 77 78 79 80 81 82 83 84 85 86 87 88 89 90 91 92 93 94 95 96 97 98 99 100 101 102 103 104 105 106 107 108 109 110 111 112 113 114 115 116 117 118 119 120 121 122 123 124 125 126 127 128 129 130 131 132 133 134 135 136 137 138 139