473,378 Members | 1,078 Online
Bytes | Software Development & Data Engineering Community
Post Job

Home Posts Topics Members FAQ

home > topics > asp.net > questions > ssl and forms authentification

Join Bytes to post your question to a community of 473,378 software developers and data experts.

SSL and Forms authentification

I have an application where I added the attribute requireSSL="false" in the
authentification elemnt in the dev environment and the apllication compile
with no problem. What I want to do is, In production, is to use forms
authentification, so when somebody clicks to view a protected page, he should
be redirected to https://myserver/login.aspx instead of
http://myserver/login.aspx

I moved this application (Copy/paste) into a Virtual directory on our
production environment. When launching the application
http://66.22.33.99/myVD I get the following error :
-------------------------------------
Configuration Error
Description: An error occurred during the processing of a configuration file
required to service this request. Please review the specific error details
below
and modify your configuration file appropriately.
Parser Error Message: Unrecognized attribute 'requireSSL'.
Source Error:
Line 33: <forms name="CommerceAuth" requireSSL="false"
loginUrl="login.aspx" protection="All" path="/" />
------------------------------------------------------------

When I take off the requireSSL it works fine.
******************************
I read in MSDN Library the following :
This element can be declared only at the machine, site, or application
level. Any attempt to declare it in a configuration file at the subdirectory
or page level will result in a parser error message.

******************************
Does a VD is considered as an application or not, otherwise what am I
missing ?
Thanks in advance

Nov 18 '05 #1
6 1473
Hi Eliassal,

Thanks for your posting. As for the problem you mentioned, I think it is
likely that the Virutal Dir on your product server is not configured as an
application. By default an normal IIS virutal dir is not configured as
application( for ASP or ASP.NET). When we creating an asp.net via VS.NET,
the IDE will automatically mark the virutal dir as application for us. To
manually do this, we can open the virtual dir's properties panel in IIS
console , and there is a line named

"Application Name" and on its left there is a "Create" Button which can
help to create the virutal dir as an application. You can have a check to
see whether the virutal dir on your product server has this configured.'
Thanks.

Regards,

Steven Cheng
Microsoft Online Support

Get Secure! www.microsoft.com/security
(This posting is provided "AS IS", with no warranties, and confers no
rights.)

Nov 18 '05 #2
Hiand thanks for your response. Yes, my Virtual directory has a name in the
application text box near the label 'application name'
Thanks for your help
Salam

"Steven Cheng[MSFT]" wrote:
Hi Eliassal,

Thanks for your posting. As for the problem you mentioned, I think it is
likely that the Virutal Dir on your product server is not configured as an
application. By default an normal IIS virutal dir is not configured as
application( for ASP or ASP.NET). When we creating an asp.net via VS.NET,
the IDE will automatically mark the virutal dir as application for us. To
manually do this, we can open the virtual dir's properties panel in IIS
console , and there is a line named

"Application Name" and on its left there is a "Create" Button which can
help to create the virutal dir as an application. You can have a check to
see whether the virutal dir on your product server has this configured.'
Thanks.

Regards,

Steven Cheng
Microsoft Online Support

Get Secure! www.microsoft.com/security
(This posting is provided "AS IS", with no warranties, and confers no
rights.)

Nov 18 '05 #3
Thanks for your response, Salam.

Then, are you stilling suffering the problem? From my local test , the
"requireSSL" attribute should work well when we specify it in web.config 's
<forms> element. Not sure what may cause the strange behavior. But I think
you can try create a simple web application which also use
FormsAuthentication and deploy it to that server to see whether it also
suffer this issue. If you have any other findings ,please also feel free
to post here. Thanks.

Regards,

Steven Cheng
Microsoft Online Support

Get Secure! www.microsoft.com/security
(This posting is provided "AS IS", with no warranties, and confers no
rights.)

Nov 18 '05 #4
Thanks again, before doingthe test, what do you mean by 'Create siple
application'?
Do you mean
- using VS
or
-manullay opening MMC IIS, right click the web site which has several VDs,
add a new one, copy the files from the test machine and modify the web.confi?

Just to let you know that I never use VS on my prod environment and there is
no FP extensions on it
"Steven Cheng[MSFT]" wrote:
Thanks for your response, Salam.

Then, are you stilling suffering the problem? From my local test , the
"requireSSL" attribute should work well when we specify it in web.config 's
<forms> element. Not sure what may cause the strange behavior. But I think
you can try create a simple web application which also use
FormsAuthentication and deploy it to that server to see whether it also
suffer this issue. If you have any other findings ,please also feel free
to post here. Thanks.

Regards,

Steven Cheng
Microsoft Online Support

Get Secure! www.microsoft.com/security
(This posting is provided "AS IS", with no warranties, and confers no
rights.)

Nov 18 '05 #5
Thanks for your response Salam,

Since you haven't VS.NET installed on the product server, you may create
the new simple project on another machien and then manually create an VD in
the product server's IIS console and deploy that simple applicaiton into
it.
Please feel free to let me know if you got any progress or meet any new
problems. thanks.

Regards,

Steven Cheng
Microsoft Online Support

Get Secure! www.microsoft.com/security
(This posting is provided "AS IS", with no warranties, and confers no
rights.)

Nov 18 '05 #6
Any further progress Salam? If there is still anything we can help, please
feel free to post here. Thanks.

Regards,

Steven Cheng
Microsoft Online Support

Get Secure! www.microsoft.com/security
(This posting is provided "AS IS", with no warranties, and confers no
rights.)

Nov 18 '05 #7
New Post

This thread has been closed and replies have been disabled. Please start a new discussion.

Similar topics

0
Header and Authentification
by: maxx | last post by:
Hi, I want use the header authentification (HTTP/PHP module), and i've a big problem for to get the varaibles 'PHP_AUTH-*". This is my source code :...
PHP
1
Login using Basic authentification
by: Jonas S. | last post by:
Hi all, I need some simple component (COM+ or just DLL) source to perform Basic Authentification for ASP solution. Short explanation what I mean: In non secure area I've a form with fields Login...
ASP / Active Server Pages
1
Use SET ROLE in Oracle Forms Builder
by: MEG | last post by:
Hi, I am trying to do some authentification in a form and have run into a problem. The user types the usename/password into a couple of fields and presses the login button. The button trigger...
Oracle Database
2
Using Forms Authentication With URLRewrite
by: Summa | last post by:
Hi, In ASP.NET, i've written a class that handles URLRewrite. So that all requests to say "default.aspx?id=2&basic=1" is returned as "basic.1/2.aspx". It works beautifully...But but but....Using...
C# / C Sharp
1
using forms or windows authentication for Login in MSSql Server(integratedsecurity)
by: sefe dery | last post by:
Hi ng, i have an Asp.net webapplication on a remote Windows Server 2003. I created on the remote server a windows account and i use the "only windows authentification" in sql server 2000. ...
ASP.NET
1
Forms authentification
by: HIK | last post by:
I am porting an ASP.net 1.1 application from a win2K server to win2k3 server. The application uses forms authentification. The authentification information is in a query string. The user goes...
ASP.NET
2
Using two login pages in forms authentification?
by: the friendly display name | last post by:
Hello, following problem: I have set two folders in the web.config file, that should be protected against anonymous users. I am using forms authentification. Is there a way to use two login...
ASP.NET
1
possible to authentificate in both mode together: windows and forms?
by: Chris | last post by:
Hi, we run a webapplication where users must log in. So the web.config contains: <authentication mode="Forms"/and IIS is set to Anonymous authentification. Now we want the same application to...
ASP.NET
4
HttpContext.Current.User returns null (forms authentification); how to use custom role and membership providers together?
by: alexandis | last post by:
There are tons of articles about custom role and provider membership, but they just tear me apart and confuse :( The situation is following: I use DB2, so I wrote custom role + membership...
ASP.NET
1
Cloud Servers without Credit Card and Email Registration: A Simpler Way to Get on the Cloud
by: CloudSolutions | last post by:
Introduction: For many beginners and individual users, requiring a credit card and email registration may pose a barrier when starting to use cloud servers. However, some cloud server providers now...
General
0
Wordpress or something else?
by: Faith0G | last post by:
I am starting a new it consulting business and it's been a while since I setup a new website. Is wordpress still the best web based software for hosting a 5 page website? The webpages will be...
Content Management Systems
0
isladogs
Access Europe: Command bars, the Access Shortcut Tool and a simple Audit Log - Wed 3 April
by: isladogs | last post by:
The next Access Europe User Group meeting will be on Wednesday 3 Apr 2024 starting at 18:00 UK time (6PM UTC+1) and finishing by 19:30 (7.30PM). In this session, we are pleased to welcome former...
General
0
One-click Importing Excel Data into a*Database
by: ryjfgjl | last post by:
In our work, we often need to import Excel data into databases (such as MySQL, SQL Server, Oracle) for data analysis and processing. Usually, we use database tools like Navicat or the Excel import...
Microsoft Excel
0
Easy Steps to Fix "Canon Printer Won't Connect to WiFi Network"
by: taylorcarr | last post by:
A Canon printer is a smart device known for being advanced, efficient, and reliable. It is designed for home, office, and hybrid workspace use and can also be used for a variety of purposes. However,...
General
0
How to turn on java script in a villaon keypad mobile phone
by: Charles Arthur | last post by:
How do i turn on java script on a villaon, callus and itel keypad mobile phone
Java
0
Batch import of multiple excel files into the database
by: ryjfgjl | last post by:
If we have dozens or hundreds of excel to import into the database, if we use the excel import function provided by database editors such as navicat, it will be extremely tedious and time-consuming...
Data Management
1
Is that possible of reading the .csv file in column wise and the column have different lengths ?
by: Sonnysonu | last post by:
This is the data of csv file 1 2 3 1 2 3 1 2 3 1 2 3 2 3 2 3 3 the lengths should be different i have to store the data by column-wise with in the specific length. suppose the i have to...
C / C++
0
How to build RAID in BIOS?
by: Hystou | last post by:
There are some requirements for setting up RAID: 1. The motherboard and BIOS support RAID configuration. 2. The motherboard has 2 or more available SATA protocol SSD/HDD slots (including MSATA, M.2...
Computer Hardware

By using Bytes.com and it's services, you agree to our Privacy Policy and Terms of Use.

To disable or enable advertisements and analytics tracking please visit the manage ads & tracking page.

BYTES.COM © 2024
About Bytes
Terms Of Use
Privacy Policy
Sitemap
Advertise on Bytes:
Post a Job
Sponsored Posts
Platinum & Gold Sponsors
Hire Now!