 |
 | Home | Contact Us | FAQ | Search & Site Map | Link to Us |
 | Sign In | Join | Other 45 Sites in Network |
.NET Forum / .NET Framework / Security / November 2004Planning active directory integration
Hello, I'm Francesco and I write from Italy. we are creating a new web site in ASP.NET. In our network infrastructure we have a win 2003 domain. This web site will have a secure zone with two kinds of login groups, User and Admin, I was thinking to use active directory for the authentication, do you have any suggestion on how to start and how to implement it in active directory ? Thanks in advance for your help Francesco If the web server is a domain member and you use Windows authentication in ASP.NET, then the integration is done for you. if you need to check Windows group membership, you can use Context.User.IsInRole. Joe K. > Hello, > I'm Francesco and I write from Italy. we are creating a new web site in [quoted text clipped - 6 lines] > Thanks in advance for your help > Francesco Ciao, thanks for the answer,do you suggest to install the web server in dmz and open the ports in the firewall or install the web server in lan and expose the URL using an ISA Server ? Francesco "Joe Kaplan (MVP - ADSI)" wrote: > If the web server is a domain member and you use Windows authentication in > ASP.NET, then the integration is done for you. if you need to check Windows [quoted text clipped - 12 lines] > > Thanks in advance for your help > > Francesco I don't really like to get into the infrastructure issues, especially regarding networking setup. However, I will say that either can work. If you put the web server in the DMZ, you may need to use IPSEC to establish a connection to the DCs behind the firewall or open all the required firewall ports. If you are comfortable with ISA server, that seems like a very viable solution. Joe K. > Ciao, > thanks for the answer,do you suggest to install the web server in dmz and [quoted text clipped - 25 lines] >> > Thanks in advance for your help >> > Francesco Hello Joe, I tried to use your suggestion but, in this case all the web site is protected by a password. In my web site I need to provide a secure zone only for two pages of the web site, the other pages are public. Is there any possibility to do it with active directory? Many thanks Francesco "Joe Kaplan (MVP - ADSI)" wrote: > I don't really like to get into the infrastructure issues, especially > regarding networking setup. However, I will say that either can work. If [quoted text clipped - 34 lines] > >> > Thanks in advance for your help > >> > Francesco Can you put these two pages in a different Virtual Root and set the security there differently? That would be the easiest way. Alternately, you could do Forms auth against AD and use location tags to protect those pages. However, that is going to be a lot more work as you will need to implement all the authentication and authorization logic yourself. Joe K. > Hello Joe, > [quoted text clipped - 58 lines] >> >> > Thanks in advance for your help >> >> > Francesco Free MagazinesGet these publications absolutely FREE for up to 12 months. There are no hidden fees and no obligation. Simply choose a title, complete the application form and submit it. Read more ...
|
Reply to this Message
|
 Sign In
 Join
 My Latest Posts My Monitored Threads My Blog My Photo Gallery My Profile My Homepage Start New Thread Enable EMail Alerts Rate this Thread
|
©2008 Advenet LLC Privacy Policy - Terms of Use
This website includes both content owned or controlled by Advenet as well as content owned or controlled by third parties.