473,414 Members | 1,677 Online
Bytes | Software Development & Data Engineering Community
Post Job

Home Posts Topics Members FAQ

home > topics > .net framework > questions > user authentication through webservice

Join Bytes to post your question to a community of 473,414 software developers and data experts.

user Authentication through webservice

I have a webservice based app that a company has purchased to use
internally. They want the authentication to integrate with their Active
Directory. Is there anyway that the client portion of the application
(which is a .NET WinForms app) can send some information about the logged in
user so that I could athenticate that user before accessing the database?
The database will not have individual user accounts but will authenticate
using a table in the database. The reason that I need this is so that the
company can push out the client app to it's users using Zenworks. So, the
install must get the user data from the Active directory. Therefore I need
to be able to use whatever information he can get from the AD and use it get
the same info from the AD from the webserver code. One thing I was thinking
of using was the AD object ID (a guid) but I don't know how I would pass
that value to the DirectorySearcher's filter property and I don't know if
that's a property that the ZenWorks install can grab anyway.

So, to sum up the client app polls a webservice to get some data, I need to
be able to get some user information (gleaned from the AD) from the client
and authenticate the user, then connect to the database and retrieve teh
requested data.

Any ideas?
Thanks.
Nov 23 '05 #1
3 4356
You could just use integrated security for the web service, and pass the
default credentials from the client to the web service.

proxy.Credentials = System.Net.CredentialCache.DefaultCredentials;

where proxy is the proxy object to the web service.

--
Manohar Kamath
Editor, .netWire
www.dotnetwire.com
"Buddy Ackerman" <bu**********@buddyackerman.com> wrote in message
news:O7**************@tk2msftngp13.phx.gbl...
I have a webservice based app that a company has purchased to use
internally. They want the authentication to integrate with their Active
Directory. Is there anyway that the client portion of the application
(which is a .NET WinForms app) can send some information about the logged in user so that I could athenticate that user before accessing the database?
The database will not have individual user accounts but will authenticate
using a table in the database. The reason that I need this is so that the
company can push out the client app to it's users using Zenworks. So, the
install must get the user data from the Active directory. Therefore I need to be able to use whatever information he can get from the AD and use it get the same info from the AD from the webserver code. One thing I was thinking of using was the AD object ID (a guid) but I don't know how I would pass
that value to the DirectorySearcher's filter property and I don't know if
that's a property that the ZenWorks install can grab anyway.

So, to sum up the client app polls a webservice to get some data, I need to be able to get some user information (gleaned from the AD) from the client
and authenticate the user, then connect to the database and retrieve teh
requested data.

Any ideas?
Thanks.

Nov 23 '05 #2
You could also use WSE and WS-Security and pass UsernameTokens or get
SecurityContextToken and authenticate to AD using LogonUser API inside the
Token verifier logic. WSE has a lot of security things you can do.

--
William Stacey, MVP
http://mvp.support.microsoft.com

"Buddy Ackerman" <bu**********@buddyackerman.com> wrote in message
news:O7**************@tk2msftngp13.phx.gbl...
I have a webservice based app that a company has purchased to use
internally. They want the authentication to integrate with their Active
Directory. Is there anyway that the client portion of the application
(which is a .NET WinForms app) can send some information about the logged in user so that I could athenticate that user before accessing the database?
The database will not have individual user accounts but will authenticate
using a table in the database. The reason that I need this is so that the
company can push out the client app to it's users using Zenworks. So, the
install must get the user data from the Active directory. Therefore I need to be able to use whatever information he can get from the AD and use it get the same info from the AD from the webserver code. One thing I was thinking of using was the AD object ID (a guid) but I don't know how I would pass
that value to the DirectorySearcher's filter property and I don't know if
that's a property that the ZenWorks install can grab anyway.

So, to sum up the client app polls a webservice to get some data, I need to be able to get some user information (gleaned from the AD) from the client
and authenticate the user, then connect to the database and retrieve teh
requested data.

Any ideas?
Thanks.


Nov 23 '05 #3
This sounds interesting, do you have an more information on how to do this? I was looking for a LogonUser API and found
nothing. My application consist of a desktop application (written in .NET) that polls a web serivice. I have a client
that want AD integration. I need to pass the local users authenticated security token to the webservice and then be
able to retireve the users login name so that I can then authenticate that against my application's database. I have
already developed an AD scanning tool that runs as a windows service and creates accounts (using the SAMAccount name
from the AD) in my database so I just need to get the authenticated user info from the client to match up with what's in
my database.

I've never worked with active directory integration in a webservice (or anywhere else for that matter) so I need a lot
of info (quickly).

--Buddy


William Stacey [MVP] wrote:
You could also use WSE and WS-Security and pass UsernameTokens or get
SecurityContextToken and authenticate to AD using LogonUser API inside the
Token verifier logic. WSE has a lot of security things you can do.

Nov 23 '05 #4
New Post

This thread has been closed and replies have been disabled. Please start a new discussion.

Similar topics

0
Access to WSDL files (authentication general practices - long)
by: David | last post by:
We have a .NET web service that has IIS authentication set to "allow anonymous". However, the web service does its own 'application-level' authentication (by validating the HTTP authentication...
.NET Framework
1
How to implement mixed asp.net authentication
by: Invalidlastname | last post by:
Hi, Here is the issue: we have an ASP.NET application which is protected by Form authentication. The web application is hosted in the web-farm environment on multiple web servers. There are...
ASP.NET
1
SQL User authentication
by: Nikolay Petrov | last post by:
Is it possible to authenticate user using a SQL database, containing users and passwords? What I want to achive is: I have as SQL database containig data for my app. This database also contains...
ASP.NET
4
Passing user credintials from a web page to a web service.
by: Dan Higman | last post by:
I'm sure this is easy and I'll be embarrassed when I see the answer, but I just can't figure this one out. Using .Net/ASP 1.1 on a server using integrated authentication-- I have a web page...
ASP.NET
3
User name and password dialog refresh after 3 mins
by: Funky | last post by:
Hi, I have developed an ASP.NET application which has been running in production for around 3 months without any major glitches. Recently, a user was attempting to upload a rather large CSV file...
ASP.NET
1
How to authenticate user and make access to sql database
by: Marc Eggenberger | last post by:
Hi there .. I have the following scenario. I have a Webservice which is running under Win2003/IIS6 with .Net1.1 The Service itselfs connects to a database which is a SQL 2000 on a Server in...
.NET Framework
0
x509 Client Side Authentication with WebService
by: Chris Fink | last post by:
I have a requirement to make a webservice have x509 authentication. I have not done this before and have a few questions: 1. where do I obtain the x509 cert? Can I make my own? 2. assuming i have...
.NET Framework
3
User Security?
by: Asaf | last post by:
Hello, I have created a web service name "TestWS" and published it to my SBS2003 server that uses IIS6 as a web server. I have set NO anonymous access to TestWS virtual directory and I have...
.NET Framework
0
MSSQL Connection/Authentication Problem?
by: menmaatre | last post by:
Hi all, I have a very odd problem: - System A: Win 2k3 with IIS 6 exposing a little WSDL Webservice - System B: Win 2k3 with MSSQL Server 2k5 - System C: RedHat Enterprise Server running...
Microsoft SQL Server
0
BarryA
Navigating the Data Structures and Algorithms (DSA)
by: BarryA | last post by:
What are the essential steps and strategies outlined in the Data Structures and Algorithms (DSA) roadmap for aspiring data scientists? How can individuals effectively utilize this roadmap to progress...
Algorithms / Advanced Math
1
Looking to do Android software development, any suggestions? Is flutter better?
by: nemocccc | last post by:
hello, everyone, I want to develop a software for my android phone for daily needs, any suggestions?
General
0
How to build RAID in BIOS?
by: Hystou | last post by:
There are some requirements for setting up RAID: 1. The motherboard and BIOS support RAID configuration. 2. The motherboard has 2 or more available SATA protocol SSD/HDD slots (including MSATA, M.2...
Computer Hardware
0
marktang
What is ONU?
by: marktang | last post by:
ONU (Optical Network Unit) is one of the key components for providing high-speed Internet services. Its primary function is to act as an endpoint device located at the user's premises. However,...
General
0
Changing the language in Windows 10
by: Hystou | last post by:
Most computers default to English, but sometimes we require a different language, especially when relocating. Forgot to request a specific language before your computer shipped? No problem! You can...
Windows Server
0
Oralloy
Problem With Comparison Operator <=> in G++
by: Oralloy | last post by:
Hello folks, I am unable to find appropriate documentation on the type promotion of bit-fields when using the generalised comparison operator "<=>". The problem is that using the GNU compilers,...
C / C++
0
The easy way to turn off automatic updates for Windows 10/11
by: Hystou | last post by:
Overview: Windows 11 and 10 have less user interface control over operating system update behaviour than previous versions of Windows. In Windows 11 and 10, there is no way to turn off the Windows...
Windows Server
0
tracyyun
Discussion: How does Zigbee compare with other wireless protocols in smart home applications?
by: tracyyun | last post by:
Dear forum friends, With the development of smart home technology, a variety of wireless communication protocols have appeared on the market, such as Zigbee, Z-Wave, Wi-Fi, Bluetooth, etc. Each...
General
0
agi2029
AI Job Threat for Devs
by: agi2029 | last post by:
Let's talk about the concept of autonomous AI software engineers and no-code agents. These AIs are designed to manage the entire lifecycle of a software development project—planning, coding, testing,...
Career Advice

By using Bytes.com and it's services, you agree to our Privacy Policy and Terms of Use.

To disable or enable advertisements and analytics tracking please visit the manage ads & tracking page.

BYTES.COM © 2024
About Bytes
Terms Of Use
Privacy Policy
Sitemap
Advertise on Bytes:
Post a Job
Sponsored Posts
Platinum & Gold Sponsors
Hire Now!