I have a requirement for a company intranet where they want to use a single
sign-on with their windows 2003 domain (AD) so I was thinking of using
windows authentication in the asp.net application so that I can control
functionality by the roles the usr is a member of.
The question I want to know is can I force the popup windows for username,
password, domain to appear by 'logging' off the user from the website. I
read some where if I return a "403" in the reponse header it will show the
dialog and the user will have to enter the information to proceed. I tried
the following but i only get the 403 error page. So how do I force the popup
window to appear?
tried this but only get error page:
Session.Abandon();
Response.Clear();
Response.StatusCode = 403;
Response.End();
Cheers in Advance
Ollie Riches
8  2226 
Hi Ollie,
To force Windows POPUP ..Go to IIS under Directory Security turn off
"Anonymous Access and click integrate Windows Auth..
DO that to allow Windows Auth to validate against AD..
For more Questions POST it...
Enjoy
PAtrick
"Ollie" wrote: I have a requirement for a company intranet where they want to use a single
sign-on with their windows 2003 domain (AD) so I was thinking of using
windows authentication in the asp.net application so that I can control
functionality by the roles the usr is a member of.
The question I want to know is can I force the popup windows for username,
password, domain to appear by 'logging' off the user from the website. I
read some where if I return a "403" in the reponse header it will show the
dialog and the user will have to enter the information to proceed. I tried
the following but i only get the 403 error page. So how do I force the popup
window to appear?
tried this but only get error page:
Session.Abandon();
Response.Clear();
Response.StatusCode = 403;
Response.End();
Cheers in Advance
Ollie Riches
did you actually read the question?
"Patrick.O.Ige" <Pa*********@discussions.microsoft.com> wrote in message
news:2E**********************************@microsof t.com... Hi Ollie,
To force Windows POPUP ..Go to IIS under Directory Security turn
off "Anonymous Access and click integrate Windows Auth..
DO that to allow Windows Auth to validate against AD..
For more Questions POST it...
Enjoy
PAtrick
"Ollie" wrote:
I have a requirement for a company intranet where they want to use a
single sign-on with their windows 2003 domain (AD) so I was thinking of using
windows authentication in the asp.net application so that I can control
functionality by the roles the usr is a member of.
The question I want to know is can I force the popup windows for
username, password, domain to appear by 'logging' off the user from the website. I
read some where if I return a "403" in the reponse header it will show
the dialog and the user will have to enter the information to proceed. I
tried the following but i only get the 403 error page. So how do I force the
popup window to appear?
tried this but only get error page:
Session.Abandon();
Response.Clear();
Response.StatusCode = 403;
Response.End();
Cheers in Advance
Ollie Riches
I haven't actually tried this, but I thought I'd throw an idea at you.
What if you try sending a 401 instead and add the proper WWW-Authenticate
header to the response? The header value would depend on what kind of
authentication you are using, but that might work.
If it does, let me know as I'm curious.
Thanks,
Joe K.
"Ollie" <ol**********@hotmail.com> wrote in message
news:ud**************@TK2MSFTNGP15.phx.gbl... I have a requirement for a company intranet where they want to use a single
sign-on with their windows 2003 domain (AD) so I was thinking of using
windows authentication in the asp.net application so that I can control
functionality by the roles the usr is a member of.
The question I want to know is can I force the popup windows for username,
password, domain to appear by 'logging' off the user from the website. I
read some where if I return a "403" in the reponse header it will show the
dialog and the user will have to enter the information to proceed. I tried
the following but i only get the 403 error page. So how do I force the
popup
window to appear?
tried this but only get error page:
Session.Abandon();
Response.Clear();
Response.StatusCode = 403;
Response.End();
Cheers in Advance
Ollie Riches
Joe
Thanks for the reply, I tried changing it to "401" and it forced the popup
login window to appear and you can enter new credentials, but it does not
clear out the credentials from the browser cache so you are still
authenticated as the previous user if you hit 'Cancel', I didn't try it with
the 'proper' WWW-Authenticate header cos i don't know what that should be -
do you know at all ?
nice to see you venture out of the AD newsgroups :)
Cheers
Ollie Riches
"Joe Kaplan (MVP - ADSI)" <jo*************@removethis.accenture.com> wrote
in message news:e2**************@TK2MSFTNGP12.phx.gbl... I haven't actually tried this, but I thought I'd throw an idea at you.
What if you try sending a 401 instead and add the proper WWW-Authenticate
header to the response? The header value would depend on what kind of
authentication you are using, but that might work.
If it does, let me know as I'm curious.
Thanks,
Joe K.
"Ollie" <ol**********@hotmail.com> wrote in message
news:ud**************@TK2MSFTNGP15.phx.gbl...I have a requirement for a company intranet where they want to use a
single
sign-on with their windows 2003 domain (AD) so I was thinking of using
windows authentication in the asp.net application so that I can control
functionality by the roles the usr is a member of.
The question I want to know is can I force the popup windows for
username,
password, domain to appear by 'logging' off the user from the website. I
read some where if I return a "403" in the reponse header it will show
the
dialog and the user will have to enter the information to proceed. I
tried
the following but i only get the 403 error page. So how do I force the
popup
window to appear?
tried this but only get error page:
Session.Abandon();
Response.Clear();
Response.StatusCode = 403;
Response.End();
Cheers in Advance
Ollie Riches
The best thing to do is sniff the traffic and look at the headers that are
sent back. You can also use an http proxy debugger like Fiddler for this.
Generally, if you use Basic auth, it will be something like Basic
realm=xxxx, and IWA is Negotiate, but I can't remember the exact syntax of
either, so you should be sure.
Half of my life is actually building big ASP.NET applications and doing
security integration work, so as a result, I follow this group too.
It may not be the case that you can actually clear out the cache on the
client without running some client code though. The reprompt may be the
best you can do.
Let us know if you find more details.
Joe K.
"Ollie" <why do they need this!!!!> wrote in message
news:%2***************@TK2MSFTNGP11.phx.gbl... Joe
Thanks for the reply, I tried changing it to "401" and it forced the popup
login window to appear and you can enter new credentials, but it does not
clear out the credentials from the browser cache so you are still
authenticated as the previous user if you hit 'Cancel', I didn't try it
with the 'proper' WWW-Authenticate header cos i don't know what that
should be - do you know at all ?
nice to see you venture out of the AD newsgroups :)
Cheers
Ollie Riches
"Joe Kaplan (MVP - ADSI)" <jo*************@removethis.accenture.com> wrote
in message news:e2**************@TK2MSFTNGP12.phx.gbl...I haven't actually tried this, but I thought I'd throw an idea at you.
What if you try sending a 401 instead and add the proper WWW-Authenticate
header to the response? The header value would depend on what kind of
authentication you are using, but that might work.
If it does, let me know as I'm curious.
Thanks,
Joe K.
"Ollie" <ol**********@hotmail.com> wrote in message
news:ud**************@TK2MSFTNGP15.phx.gbl...I have a requirement for a company intranet where they want to use a
single
sign-on with their windows 2003 domain (AD) so I was thinking of using
windows authentication in the asp.net application so that I can control
functionality by the roles the usr is a member of.
The question I want to know is can I force the popup windows for
username,
password, domain to appear by 'logging' off the user from the website. I
read some where if I return a "403" in the reponse header it will show
the
dialog and the user will have to enter the information to proceed. I
tried
the following but i only get the 403 error page. So how do I force the
popup
window to appear?
tried this but only get error page:
Session.Abandon();
Response.Clear();
Response.StatusCode = 403;
Response.End();
Cheers in Advance
Ollie Riches
Sorry i guess i didn't read your Quaestion well!
Well its good Joe dropped here ..He will provide concerete details for
sure..
Let us know how u go about it..
Patrick
*** Sent via Developersdex http://www.developersdex.com ***
Don't just participate in USENET...get rewarded for it!
thsnks Joe will have a look later today , I had considered clearing out the
client cache and I am aware you can do it with an AcitveX control and you
can also do it with IE6 SP1 (my preferred solution out of the two) and
javascript I believe. http://support.microsoft.com/kb/q195192/#kb1 http://blogs.msdn.com/kclemson/archi.../17/53911.aspx
Cheers
Ollie Riches
"Joe Kaplan (MVP - ADSI)" <jo*************@removethis.accenture.com> wrote
in message news:%2****************@tk2msftngp13.phx.gbl... The best thing to do is sniff the traffic and look at the headers that are
sent back. You can also use an http proxy debugger like Fiddler for this.
Generally, if you use Basic auth, it will be something like Basic
realm=xxxx, and IWA is Negotiate, but I can't remember the exact syntax of
either, so you should be sure.
Half of my life is actually building big ASP.NET applications and doing
security integration work, so as a result, I follow this group too.
It may not be the case that you can actually clear out the cache on the
client without running some client code though. The reprompt may be the
best you can do.
Let us know if you find more details.
Joe K.
"Ollie" <why do they need this!!!!> wrote in message
news:%2***************@TK2MSFTNGP11.phx.gbl... Joe
Thanks for the reply, I tried changing it to "401" and it forced the
popup login window to appear and you can enter new credentials, but it does
not clear out the credentials from the browser cache so you are still
authenticated as the previous user if you hit 'Cancel', I didn't try it
with the 'proper' WWW-Authenticate header cos i don't know what that
should be - do you know at all ?
nice to see you venture out of the AD newsgroups :)
Cheers
Ollie Riches
"Joe Kaplan (MVP - ADSI)" <jo*************@removethis.accenture.com>
wrote in message news:e2**************@TK2MSFTNGP12.phx.gbl...I haven't actually tried this, but I thought I'd throw an idea at you.
What if you try sending a 401 instead and add the proper
WWW-Authenticate header to the response? The header value would depend on what kind of
authentication you are using, but that might work.
If it does, let me know as I'm curious.
Thanks,
Joe K.
"Ollie" <ol**********@hotmail.com> wrote in message
news:ud**************@TK2MSFTNGP15.phx.gbl...
I have a requirement for a company intranet where they want to use a
single
sign-on with their windows 2003 domain (AD) so I was thinking of using
windows authentication in the asp.net application so that I can
control functionality by the roles the usr is a member of.
The question I want to know is can I force the popup windows for
username,
password, domain to appear by 'logging' off the user from the website.
I read some where if I return a "403" in the reponse header it will show
the
dialog and the user will have to enter the information to proceed. I
tried
the following but i only get the 403 error page. So how do I force the
popup
window to appear?
tried this but only get error page:
Session.Abandon();
Response.Clear();
Response.StatusCode = 403;
Response.End();
Cheers in Advance
Ollie Riches
Ah, that's a spiffy new feature. I'm going to hang on to that link.
Thanks for digging that up.
Cheers,
Joe K.
"Ollie" <ol**********@hotmail.com> wrote in message
news:uz**************@tk2msftngp13.phx.gbl... thsnks Joe will have a look later today , I had considered clearing out
the
client cache and I am aware you can do it with an AcitveX control and you
can also do it with IE6 SP1 (my preferred solution out of the two) and
javascript I believe.
http://support.microsoft.com/kb/q195192/#kb1
http://blogs.msdn.com/kclemson/archi.../17/53911.aspx
Cheers
Ollie Riches
"Joe Kaplan (MVP - ADSI)" <jo*************@removethis.accenture.com> wrote
in message news:%2****************@tk2msftngp13.phx.gbl... The best thing to do is sniff the traffic and look at the headers that
are
sent back. You can also use an http proxy debugger like Fiddler for
this.
Generally, if you use Basic auth, it will be something like Basic
realm=xxxx, and IWA is Negotiate, but I can't remember the exact syntax
of
either, so you should be sure.
Half of my life is actually building big ASP.NET applications and doing
security integration work, so as a result, I follow this group too.
It may not be the case that you can actually clear out the cache on the
client without running some client code though. The reprompt may be the
best you can do.
Let us know if you find more details.
Joe K.
"Ollie" <why do they need this!!!!> wrote in message
news:%2***************@TK2MSFTNGP11.phx.gbl... > Joe
>
> Thanks for the reply, I tried changing it to "401" and it forced the popup > login window to appear and you can enter new credentials, but it does not > clear out the credentials from the browser cache so you are still
> authenticated as the previous user if you hit 'Cancel', I didn't try it
> with the 'proper' WWW-Authenticate header cos i don't know what that
> should be - do you know at all ?
>
> nice to see you venture out of the AD newsgroups :)
>
> Cheers
>
> Ollie Riches
>
> "Joe Kaplan (MVP - ADSI)" <jo*************@removethis.accenture.com> wrote > in message news:e2**************@TK2MSFTNGP12.phx.gbl...
>>I haven't actually tried this, but I thought I'd throw an idea at you.
>>
>> What if you try sending a 401 instead and add the proper WWW-Authenticate >> header to the response? The header value would depend on what kind of
>> authentication you are using, but that might work.
>>
>> If it does, let me know as I'm curious.
>>
>> Thanks,
>>
>> Joe K.
>>
>> "Ollie" <ol**********@hotmail.com> wrote in message
>> news:ud**************@TK2MSFTNGP15.phx.gbl...
>>>I have a requirement for a company intranet where they want to use a
>>>single
>>> sign-on with their windows 2003 domain (AD) so I was thinking of
>>> using
>>> windows authentication in the asp.net application so that I can control >>> functionality by the roles the usr is a member of.
>>>
>>> The question I want to know is can I force the popup windows for
>>> username,
>>> password, domain to appear by 'logging' off the user from the
>>> website. I >>> read some where if I return a "403" in the reponse header it will
>>> show
>>> the
>>> dialog and the user will have to enter the information to proceed. I
>>> tried
>>> the following but i only get the 403 error page. So how do I force
>>> the
>>> popup
>>> window to appear?
>>>
>>> tried this but only get error page:
>>>
>>> Session.Abandon();
>>> Response.Clear();
>>> Response.StatusCode = 403;
>>> Response.End();
>>>
>>>
>>> Cheers in Advance
>>>
>>> Ollie Riches
>>>
>>>
>>
>>
>
>
This thread has been closed and replies have been disabled. Please start a new discussion. Similar topics
by: Christian McArdle |
last post by:
REQUEST FOR DISCUSSION (RFD)
unmoderated group comp.os.ms-windows.programmer.64bit
This is a formal Request For Discussion (RFD) to create
comp.os.ms-windows.programmer.64bit as an unmoderated...
|
by: Patrick.O.Ige |
last post by:
Hi folks,
How can i pass credentials to windows integrated authentication.
I want to use my credentials from windows authentication and pass it on to
different asp.net and asp pages without having...
|
by: WinDev |
last post by:
We are trying to build a system where we have a Windows Service do some
manipulation of data, and then sending the data to a Windows App. I had
posted a question of how we should do this and was...
|
by: Ray Muforosky |
last post by:
Hello all:
Task: I want to do file search, using the "conatining text" option from
a web page.
How do I search for a file on my local drive containing a certain
string, from a web page. That...
|
by: =?Utf-8?B?RGFuZGFuIFpoYW5n?= |
last post by:
Now I have a web application, a web service and a SQL Server database.
The Web application will invoke the web service, the web service
invokes the SQL Server stored procedure.
I let the web...
|
by: =?Utf-8?B?UGFyYWcgR2Fpa3dhZA==?= |
last post by:
Hi All,
We have a requirement where we have to develop a custom Login Page which
will accept user's NT credentials ( Username , password, domain name).
This then needs to be passed to a website...
|
by: bsturg21 |
last post by:
Hello,
I have a windows form that has a series of linklabels on it, and I
need to have each linklabel, when clicked, open a separate windows
form that has a single paramter passed into it. The...
|
by: =?Utf-8?B?dmlzaHJ1dGg=?= |
last post by:
Hi,
I have 2 applications running, one Windows application project and the other
windows services project.
I want to call my Windows application in my windows services.
I want to run them as...
|
by: =?Utf-8?B?dmlzaHJ1dGg=?= |
last post by:
Hi,
I have 2 applications running, one Windows application project and the other
windows services project.
I want to call my Windows application in my windows services.
I want to run them as...
|
by: Sylvie |
last post by:
My Windows Application has two forms, one form contains a grid (lets say
Stock Listing), and the other is a form of one stock, contains some edit
boxes for one stock's fields..
Is it possible to...
|
by: Charles Arthur |
last post by:
How do i turn on java script on a villaon, callus and itel keypad mobile phone
|
by: ryjfgjl |
last post by:
If we have dozens or hundreds of excel to import into the database, if we use the excel import function provided by database editors such as navicat, it will be extremely tedious and time-consuming...
|
by: BarryA |
last post by:
What are the essential steps and strategies outlined in the Data Structures and Algorithms (DSA) roadmap for aspiring data scientists? How can individuals effectively utilize this roadmap to progress...
|
by: nemocccc |
last post by:
hello, everyone, I want to develop a software for my android phone for daily needs, any suggestions?
|
by: Sonnysonu |
last post by:
This is the data of csv file
1 2 3
1 2 3
1 2 3
1 2 3
2 3
2 3
3
the lengths should be different i have to store the data by column-wise with in the specific length.
suppose the i have to...
|
by: Hystou |
last post by:
There are some requirements for setting up RAID:
1. The motherboard and BIOS support RAID configuration.
2. The motherboard has 2 or more available SATA protocol SSD/HDD slots (including MSATA, M.2...
|
by: marktang |
last post by:
ONU (Optical Network Unit) is one of the key components for providing high-speed Internet services. Its primary function is to act as an endpoint device located at the user's premises. However,...
|
by: Hystou |
last post by:
Most computers default to English, but sometimes we require a different language, especially when relocating. Forgot to request a specific language before your computer shipped? No problem! You can...
|
by: jinu1996 |
last post by:
In today's digital age, having a compelling online presence is paramount for businesses aiming to thrive in a competitive landscape. At the heart of this digital strategy lies an intricately woven...
| |
