Ask a Question related to ASP.NET Security, Design and Development.
-
Redeye #1
User has to login twice. Why??
Hello,
I am using windows forms authentication in my asp.net web application so
that it uses ADSI to validate users.
The application is in a virtual directory on my local system,
([url]http://Localhost/MyApp[/url]), and it makes the call to a domain server on our
network. Everything works great. When the application is on the deployment
server the user is required to login via the windows login (Pop-up) and then
once again via the login form.
The test environment:
------------------------------------------------------
IIS Authentication Methods: (Local Machine)
Anonymous access (unchecked)
--
Basic authentication(checked)
Digest authentication(grayed out)
Integrated Windows authentication(checked)
------------------------------------------------------
The deployment environment:
The application is in the root directory, ([url]http://MyApp.com[/url]), and it makes
the call to a domain server on the network.
------------------------------------------------------
IIS Authentication Methods: (Deployment Server)
Anonymous access (unchecked)
--
Basic authentication(checked)
Digest authentication(checked) I have also tried it unchecked.
Integrated Windows authentication(checked)
------------------------------------------------------
What security settings need to be changed?
Here is the web.config file settings.
<identity impersonate="true"/>
<authentication mode="Forms">
<forms loginUrl="logon.aspx" name="MyDomain" timeout="10" path="/" >
</forms>
</authentication>
<authorization>
<deny users="?" />
<allow users="*" />
</authorization>
Thanks,
Bryan
Redeye Guest
-
Login User from Novell Login
Hi, At present a user loggin onto our netwok enters their username and password by a Novell Login prompt. When they fire up their browser they... -
user and admin login on same login page
Hello, I have a user login page which also doubles as my administrator login. Currently, my method of logging in doesnt seem to be working... -
Login User User Error 80040e21
I am getting an 80040e21 error using the log in user server behavior. The complete error message is Microsoft OLE DB Provider for SQL Server... -
Domain Login - One User Can/Another User Cannot from same Win XP computer
Okay ... I'm confused. I installed a brand new computer and everything was working fine. I was then advised who would be getting the computer,... -
User changing something on a form makes asp.net take user to login page
Hi, I have an application that displays the database table records on the web page, the user can navigate thru the contents and make changes and... -
Dave #2 User has to login twice. Why??
I would check the permissions on folder where the login
form resides. It should be set to anonymous so all users
can get to it in order to login. Sounds like it's set to
Basic Authentication which is why you are getting the pop-
up
Dave
web application so>-----Original Message-----
>Hello,
>
>I am using windows forms authentication in my asp.netsystem,>that it uses ADSI to validate users.
>
>The application is in a virtual directory on my localdomain server on our>([url]http://Localhost/MyApp[/url]), and it makes the call to aon the deployment>network. Everything works great. When the application islogin (Pop-up) and then>server the user is required to login via the windows([url]http://MyApp.com[/url]), and it makes>once again via the login form.
>
>The test environment:
>------------------------------------------------------
>IIS Authentication Methods: (Local Machine)
>Anonymous access (unchecked)
>--
>Basic authentication(checked)
>Digest authentication(grayed out)
>Integrated Windows authentication(checked)
>------------------------------------------------------
>
>The deployment environment:
>The application is in the root directory,unchecked.>the call to a domain server on the network.
>------------------------------------------------------
>IIS Authentication Methods: (Deployment Server)
>Anonymous access (unchecked)
>--
>Basic authentication(checked)
>Digest authentication(checked) I have also tried ittimeout="10" path="/" >>Integrated Windows authentication(checked)
>------------------------------------------------------
>
>What security settings need to be changed?
>
>Here is the web.config file settings.
> <identity impersonate="true"/>
>
> <authentication mode="Forms">
> <forms loginUrl="logon.aspx" name="MyDomain"> </forms>
> </authentication>
>
> <authorization>
> <deny users="?" />
> <allow users="*" />
> </authorization>
>
>Thanks,
>Bryan
>
>
>.
>Dave Guest
-
Joe Kaplan \(MVP - ADSI\) #3 Re: User has to login twice. Why??
That is the expected result when you use both Windows authentication
(Integrated auth. is checked) and Forms authentication. If you don't want
the Windows authentication, disable IIS/Windows authentication completely by
allowing anonymous and unchecking all Windows auth settings.
Joe K.
"Redeye" <redeye_51@hotmail.com> wrote in message
news:e2MnNTSXDHA.2476@tk2msftngp13.phx.gbl...then> Hello,
>
> I am using windows forms authentication in my asp.net web application so
> that it uses ADSI to validate users.
>
> The application is in a virtual directory on my local system,
> ([url]http://Localhost/MyApp[/url]), and it makes the call to a domain server on our
> network. Everything works great. When the application is on the deployment
> server the user is required to login via the windows login (Pop-up) and> once again via the login form.
>
> The test environment:
> ------------------------------------------------------
> IIS Authentication Methods: (Local Machine)
> Anonymous access (unchecked)
> --
> Basic authentication(checked)
> Digest authentication(grayed out)
> Integrated Windows authentication(checked)
> ------------------------------------------------------
>
> The deployment environment:
> The application is in the root directory, ([url]http://MyApp.com[/url]), and it makes
> the call to a domain server on the network.
> ------------------------------------------------------
> IIS Authentication Methods: (Deployment Server)
> Anonymous access (unchecked)
> --
> Basic authentication(checked)
> Digest authentication(checked) I have also tried it unchecked.
> Integrated Windows authentication(checked)
> ------------------------------------------------------
>
> What security settings need to be changed?
>
> Here is the web.config file settings.
> <identity impersonate="true"/>
>
> <authentication mode="Forms">
> <forms loginUrl="logon.aspx" name="MyDomain" timeout="10" path="/" >
> </forms>
> </authentication>
>
> <authorization>
> <deny users="?" />
> <allow users="*" />
> </authorization>
>
> Thanks,
> Bryan
>
>
Joe Kaplan \(MVP - ADSI\) Guest
-
Redeye #4 Re: User has to login twice. Why??
I have tried that and the system hangs. I have tried all combinations of
security settings. The only solution I have found is set the authentication
type in the web.config file to Windows and do away with the login form. The
powers that be do not like this solution which is why I am hoping to find
some enlightenment out here.
Thanks
"Joe Kaplan (MVP - ADSI)" <joseph.e.kaplan@removethis.accenture.com> wrote
in message news:%23$fiSg2XDHA.2572@TK2MSFTNGP09.phx.gbl...by> That is the expected result when you use both Windows authentication
> (Integrated auth. is checked) and Forms authentication. If you don't want
> the Windows authentication, disable IIS/Windows authentication completelyour> allowing anonymous and unchecking all Windows auth settings.
>
> Joe K.
>
> "Redeye" <redeye_51@hotmail.com> wrote in message
> news:e2MnNTSXDHA.2476@tk2msftngp13.phx.gbl...> > Hello,
> >
> > I am using windows forms authentication in my asp.net web application so
> > that it uses ADSI to validate users.
> >
> > The application is in a virtual directory on my local system,
> > ([url]http://Localhost/MyApp[/url]), and it makes the call to a domain server ondeployment> > network. Everything works great. When the application is on themakes> then> > server the user is required to login via the windows login (Pop-up) and> > once again via the login form.
> >
> > The test environment:
> > ------------------------------------------------------
> > IIS Authentication Methods: (Local Machine)
> > Anonymous access (unchecked)
> > --
> > Basic authentication(checked)
> > Digest authentication(grayed out)
> > Integrated Windows authentication(checked)
> > ------------------------------------------------------
> >
> > The deployment environment:
> > The application is in the root directory, ([url]http://MyApp.com[/url]), and it>> > the call to a domain server on the network.
> > ------------------------------------------------------
> > IIS Authentication Methods: (Deployment Server)
> > Anonymous access (unchecked)
> > --
> > Basic authentication(checked)
> > Digest authentication(checked) I have also tried it unchecked.
> > Integrated Windows authentication(checked)
> > ------------------------------------------------------
> >
> > What security settings need to be changed?
> >
> > Here is the web.config file settings.
> > <identity impersonate="true"/>
> >
> > <authentication mode="Forms">
> > <forms loginUrl="logon.aspx" name="MyDomain" timeout="10" path="/" >
> > </forms>
> > </authentication>
> >
> > <authorization>
> > <deny users="?" />
> > <allow users="*" />
> > </authorization>
> >
> > Thanks,
> > Bryan
> >
> >
>
Redeye Guest
-
Unregistered #5 Re: User has to login twice. Why??
Not sure if this is still an issue, but I wanted to do AD authentication using forms and found the solution here http://support.microsoft.com/kb/326340.
Unregistered Guest
Reply With QuoteSimilar Questions and Discussions
Posting Permissions
- You may not post new threads
- You may post replies
- You may not post attachments
- You may not edit your posts
