can some one point me what i'm doing wrong? I have spent half a day figuring
out and totally stuck now.
Here's what I'm trying to accomplish: I am writing a web appl - an intranet
portal site (based on the portal starter kit) and I want to apply role based
security to the site. - When the users type in the intranet URL, a windows
logon window would pop up and then users login with their NT credentials.
Based upon theie level of security they see the tabs on the portal.
Here's what I have accomplished so far:
1. Created new groups on the domain.
2. Turned on the authentication to "windows" in the web.config file of the
portal site.
3. Added
<authorization>
<allow roles = "doaminname\role1,doaminname\role4" />
<deny users="*">
</authorization>
in the web.config.
4. Added the LogOnID to the users table and the exact domain roles to the
Roles table.
However the wuthentication is not working correctly, the windows logon
prompt keeps poping.. and the app redirects to the AccessDenied page.
Your kind help is greatly appreciated.
"Cowboy (Gregory A. Beamer)" <No************@comcast.netNoSpamM> wrote in
message news:uO**************@TK2MSFTNGP09.phx.gbl...
I am not sure what would be consider good and simple in your vernacular, but there are plenty of free (thats right folks, free) books at
http://msdn.microsoft.com/architecture. Look for the patterns and practices section. Great information on security, infrastructure and architecture for developers. Does not completely relate directly to .NET windows
authentication, but you will find the topics in there.
Now, as far as windows authentication goes, what you are you trying to
accomplish. A web app or a windows app, or are you just looking for the
basics of NTFS permissions and how they relate to user's logons? Or, do you want to get into Active Directory?
The answers to these questions will help myself and others lead you in the
right direction, as there is a lot of information out there, both in books
and online.
--
Gregory A. Beamer
MVP; MCP: +I, SE, SD, DBA
************************************************** ********************
Think Outside the Box!
************************************************** ********************
<.net user> wrote in message news:OE**************@TK2MSFTNGP12.phx.gbl...I have been using .net for a while. I want to have my windows
authenticationconcepts cleared - . particularly how it works on Intranet sites. Is
therea good, simple to understand reference book/sites that can help me with?
Appreciate any help.