473,657 Members | 2,597 Online
Bytes | Software Development & Data Engineering Community
+ Post

Home Posts Topics Members FAQ

Combining Anonymous and Domain logon

In developing a solution I ran into a problem where I have found no
acceptable solution. The problem is combining users with anonymous login
and
users logged in to a domain in the same .aspx application.

Here is some background:
- the application will be accessable from the Internet, extranet and
intranet.
- no logon required but then you get limited information/functionality
- if you'r not logged on you will be provided an option to log on
- users already logged on to the domain should not need to logon in app
- different groups of users get different information/functionality
- the app needs to read from the directory
- Win2k server, ASP.NET 1.1, VB/C#

This must be a fairly common problem but still I have found no acceptable
way to do this. I can solve it by splitting the solution to different
directories with different authority, having an open startpage to do the
analysiz etc.

Kjell K.
PS I have already asked a similar question in the security group


Dec 3 '05 #1
1 2454
I would approach this using the following:

Have a global function that checks the
request.serverV ariables("Auth_ User") to determine if the user is logged
in or not. AUTH_USER will return blank if the user is anonymous. Based
on the return of the function, show or hide content.

If the user is anonymous, give a link to a protected page for login.
The page can be protected in a subdirectory with a web.config that
denies anonymous access. When the user logs in, the protected page just
redirects to where they came from
(request.server variables("http _referer"))

I'm not sure how you handle your roles (database, XML, or Active
Directory), but you could create a genericIdentity and store it in
session when the user is authenticated or when the session starts
(depending on whether they entered anonymously or logged in previously).
Then you could use the IsInRole() to show or hide content. You will be
putting some code in the globabl.asax file to check the user roles if
you go this route.

The multiple directory solution is not a solution and will kill you in
short time.

----
700cb Development, Inc.
http://www.700cb.net
..NET utilities, developer tools,
and enterprise solutions

"Kjell Kristiansson" <kj******@hotma il.com> wrote in
news:eO******** ******@TK2MSFTN GP14.phx.gbl:
In developing a solution I ran into a problem where I have found no
acceptable solution. The problem is combining users with anonymous
login and
users logged in to a domain in the same .aspx application.

Here is some background:
- the application will be accessable from the Internet, extranet and
intranet.
- no logon required but then you get limited information/functionality
- if you'r not logged on you will be provided an option to log on
- users already logged on to the domain should not need to logon in
app - different groups of users get different
information/functionality - the app needs to read from the directory
- Win2k server, ASP.NET 1.1, VB/C#

This must be a fairly common problem but still I have found no
acceptable way to do this. I can solve it by splitting the solution to
different directories with different authority, having an open
startpage to do the analysiz etc.

Kjell K.
PS I have already asked a similar question in the security group

Dec 12 '05 #2

This thread has been closed and replies have been disabled. Please start a new discussion.

Similar topics
0
1631
Login failed for user 'NT AUTHORITY\ANONYMOUS LOGON' msg
by: Pierre Semaan | last post by:
Hey Guys, I have inherited an evil app that I am trying to fix. It is a VB6 desktop app, that I am trying to port to the web using VB6/com+/ASP with a sql server 2000 db. Well, up until now, everything has been good. That is, until I tried to port the "add invoice" piece over to the web. That is when I get the "Login failed for user 'NT AUTHORITY\ANONYMOUS LOGON'" error. The database has Mixed Mode authentication set up, and the...
ASP / Active Server Pages
14
3381
NT AUTHORITY\ANONYMOUS LOGON --- SQL server
by: John J. Hughes II | last post by:
I have "Computer A" which is running Win2K3 and MS SQL server. And "Computer B" which is running a service that I have created. If I change the service on "Computer B" to run as a user my program is able to connect to the SQL server on "Computer A" correctly. But if I set the service on "Computer B" to run as a local system then I get an error connecting to the SQL on "Computer A" --- "NT AUTHORITY\ANONYMOUS LOGON". I understand why I...
C# / C Sharp
5
2749
Track Domain User Logons and Logoffs
by: Bruno Mendonça | last post by:
My boss asked me to build a program to create a report with logon/logoff events for all users within our windows domain. I'm using .Net to do so and decided to have a program running on the Domain Controler to listen to all new events and send them to a database. This last part I haven't worked on yet, cause I can't tell which events are relevant to write to the db and which are not. I have managed to listen to all the security log...
ASP.NET
10
4501
Preventing login as 'NT AUTHORITY\ANONYMOUS LOGON'
by: et | last post by:
I have an asp.net program that uses a connection string, using integrated security to connect to a sql database. It runs fine on one server, but the other server gives me the error that "Login failed for user "NT AUTHORITY/ANONYMOUS LOGON". Why would this be? There is no reason it should even be trying to login to using NT Authority/Anonymous login. The IIS Server is set to turn off anonymous logins, and use integrated security, and my...
ASP.NET
4
3485
Login failed for user 'NT AUTHORITY\ANONYMOUS LOGON
by: Buggyman | last post by:
Hi, I'm having problems with good old error... Login failed for user 'NT Authority\Anonymous logon'. The default web page comes up fine, but when the user attempts to log in (which checks stored usernames in the database etc) then the error occurs. a) The Web server is on a seperate box to SQL Server. b) I'm using forms authentication. c) I've enabled anonymous access, setting it to the correct domain account,
ASP.NET
1
2464
LDAP anonymous lookup - no username password
by: Grant Merwitz | last post by:
Is it possible to do an anonymous lookup in active directory through a web page? I am running a site with Domain Authentication activated. I am looking up a users email address in Active Directory. This is how i'm accessing AD new DirectoryEntry(LDAP://DomainController, Domain\Username, password) Now for this method I am specifying a Domain\Username and password, there is an overload that only requires a path, but this returns the...
ASP.NET
2
9070
Login failed for NT Authority\Anonymous Logon
by: Adnan Al-Ghourabi | last post by:
Hi, We have an application running on IIS 6.0, on a windows 2003 box. The back-end database, a SQL Server 2000, runs on anohter server, windows 2000. We have enabled integrated authentication, and provided the windows account the appropriate permissions in SQL Server. If running the application locally on the server, the user authenticates fine. When accessing the application remotely, a SQL exception, "Login failed
.NET Framework
3
6269
Login failed for user 'NT AUTHORITY\ANONYMOUS LOGON'.
by: gderosa | last post by:
I have been getting that dreaded error in my application: Login failed for user 'NT AUTHORITY\ANONYMOUS LOGON'. I have had my application in the test environment, impersonating it using a superuser domain account and setting proper permissions in both IIS and setting up the user in SQL Server. Now I moved my application to the production enviroment with the same exact settings as my test environment, and I am getting the "Login failed for...
ASP / Active Server Pages
0
1308
'nt Authority\anonymous Logon'
by: Nomad50 | last post by:
I have SQL 2005 running on a server 2003 computer (Docro-Svr2) and a server 2000 computer (Docro-Svr1) running our Intranet site using IIS ver 5. I am using a DSN-less connection from an ASP script to connect to and access the database files. As long as I run the ASP script from a browser on the Intranet server the script works fine. If I go to any other computer on the domain, the script fails with the following message: Microsoft OLE...
Microsoft SQL Server
1
8503
The easy way to turn off automatic updates for Windows 10/11
by: Hystou | last post by:
Overview: Windows 11 and 10 have less user interface control over operating system update behaviour than previous versions of Windows. In Windows 11 and 10, there is no way to turn off the Windows Update option using the Control Panel or Settings app; it automatically checks for updates and installs any it finds, whether you like it or not. For most users, this new feature is actually very convenient. If you want to control the update process,...
Windows Server
0
8605
tracyyun
Discussion: How does Zigbee compare with other wireless protocols in smart home applications?
by: tracyyun | last post by:
Dear forum friends, With the development of smart home technology, a variety of wireless communication protocols have appeared on the market, such as Zigbee, Z-Wave, Wi-Fi, Bluetooth, etc. Each protocol has its own unique characteristics and advantages, but as a user who is planning to build a smart home system, I am a bit confused by the choice of these technologies. I'm particularly interested in Zigbee because I've heard it does some...
General
0
7321
agi2029
AI Job Threat for Devs
by: agi2029 | last post by:
Let's talk about the concept of autonomous AI software engineers and no-code agents. These AIs are designed to manage the entire lifecycle of a software development project—planning, coding, testing, and deployment—without human intervention. Imagine an AI that can take a project description, break it down, write the code, debug it, and then launch it, all on its own.... Now, this would greatly impact the work of software developers. The idea...
Career Advice
1
6163
isladogs
Access Europe - Using VBA to create a class based on a table - Wed 1 May
by: isladogs | last post by:
The next Access Europe User Group meeting will be on Wednesday 1 May 2024 starting at 18:00 UK time (6PM UTC+1) and finishing by 19:30 (7.30PM). In this session, we are pleased to welcome a new presenter, Adolph Dupré who will be discussing some powerful techniques for using class modules. He will explain when you may want to use classes instead of User Defined Types (UDT). For example, to manage the data in unbound forms. Adolph will...
Microsoft Access / VBA
0
5632
Couldn’t get equations in html when convert word .docx file to html file in C#.
by: conductexam | last post by:
I have .net C# application in which I am extracting data from word file and save it in database particularly. To store word all data as it is I am converting the whole word file firstly in HTML and then checking html paragraph one by one. At the time of converting from word file to html my equations which are in the word document file was convert into image. Globals.ThisAddIn.Application.ActiveDocument.Select();...
C# / C Sharp
0
4151
Trying to create a lan-to-lan vpn between two differents networks
by: TSSRALBI | last post by:
Hello I'm a network technician in training and I need your help. I am currently learning how to create and manage the different types of VPNs and I have a question about LAN-to-LAN VPNs. The last exercise I practiced was to create a LAN-to-LAN VPN between two Pfsense firewalls, by using IPSEC protocols. I succeeded, with both firewalls in the same network. But I'm wondering if it's possible to do the same thing, with 2 Pfsense firewalls...
Networking - Hardware / Configuration
0
4301
Windows Forms - .Net 8.0
by: adsilva | last post by:
A Windows Forms form does not have the event Unload, like VB6. What one acts like?
Visual Basic .NET
1
2726
transfer the data from one system to another through ip address
by: 6302768590 | last post by:
Hai team i want code for transfer the data from one system to another through IP address by using C# our system has to for every 5mins then we have to update the data what the data is updated we have to send another system
C# / C Sharp
2
1607
bsmnconsultancy
Comprehensive Guide to Website Development in Toronto: Expert Insights from BSMN Consultancy
by: bsmnconsultancy | last post by:
In today's digital era, a well-designed website is crucial for businesses looking to succeed. Whether you're a small business owner or a large corporation in Toronto, having a strong online presence can significantly impact your brand's success. BSMN Consultancy, a leader in Website Development in Toronto offers valuable insights into creating effective websites that not only look great but also perform exceptionally well. In this comprehensive...
General

By using Bytes.com and it's services, you agree to our Privacy Policy and Terms of Use.

To disable or enable advertisements and analytics tracking please visit the manage ads & tracking page.

BYTES.COM © 2024
About Bytes
Terms Of Use
Privacy Policy
Sitemap
Advertise on Bytes
How to Post and Respond on Bytes
How to Promote and Link on Bytes
How to increase your Ranking on Bytes
Become a Recognized Expert on Bytes
Feedback Welcomed! Contact Us