468,268 Members | 1,573 Online
Bytes | Developer Community
New Post

Home Posts Topics Members FAQ

Post your question to a community of 468,268 developers. It's quick & easy.

ASP.NET and Active Directory

At the moment, we have a simple user id / password entry screen to login to
our website, the data credentials are held in our database.

We've now been asked to integrate with active directory so that users on the
lan who are already logged in via active directory no longer need to log
into the website, but automatically are logged in using their network userid
(which should match the old website login).

I can see how I could prompt for the userid / pwd again and interogate the
active directory to see if the user is valid, but how can I do it without
asking for the login info ?

Thanks
Adrian Parker
Nov 19 '05 #1
3 2389
Hi Adrian,

1) Turn the security of the web app to “Integrated Windows Authentication”
2) In the global.ascx, retrieve the userID from the Context.User.Identity.Name
3) Search the Active Directory for the user's information but notice that
you need to query the directory using a hard-coded user id if you are on Win
2000 or to turn on Kerberos authentication if you are on win server 2003
http://www.microsoft.com/windowsserv...s/default.mspx

You can search the adsi.general newsgroup for more details on making a query
to the Active Directory

--
HTH,
Phillip Williams
http://www.societopia.net
http://www.webswapp.com
"Adrian Parker" wrote:
At the moment, we have a simple user id / password entry screen to login to
our website, the data credentials are held in our database.

We've now been asked to integrate with active directory so that users on the
lan who are already logged in via active directory no longer need to log
into the website, but automatically are logged in using their network userid
(which should match the old website login).

I can see how I could prompt for the userid / pwd again and interogate the
active directory to see if the user is valid, but how can I do it without
asking for the login info ?

Thanks
Adrian Parker

Nov 19 '05 #2
WJ

"Adrian Parker" <ap******@nospam.nospam> wrote in message
news:%2****************@TK2MSFTNGP15.phx.gbl...
We've now been asked to integrate with active directory so that users on
the lan who are already logged in via active directory no longer need to
log into the website, but automatically are logged in using their network
userid (which should match the old website login).


You will have to make your webserver (IIS) as "member" of the AD. This way,
when an AD client is successfully authenticated to the AD, s/he can use your
website without being prompted for AD credential again. You will have to
switch from anonymous to Integrated Windows in the IIS server. And if you
use MS/SQL, you will also need to use "Integrate Windows security option"
also to take advantage of the AD security system.

John
Nov 19 '05 #3
Thanks guys, that's given me somewhere to start!

Nov 19 '05 #4

This discussion thread is closed

Replies have been disabled for this discussion.

Similar topics

9 posts views Thread by Mario Rodriguez | last post: by
4 posts views Thread by ASGMikeG | last post: by
1 post views Thread by Andrew | last post: by
6 posts views Thread by Leo_Surf | last post: by
1 post views Thread by tangus via DotNetMonster.com | last post: by
2 posts views Thread by Jim in Arizona | last post: by
reply views Thread by NPC403 | last post: by
reply views Thread by kermitthefrogpy | last post: by
By using this site, you agree to our Privacy Policy and Terms of Use.