Home | Contact Us | FAQ | Search & Site Map | Link to Us
Sign In | Join | Other 45 Sites in Network
HomeAnnouncementsFree MagazinesWhite PapersSubmit Content
Discussion GroupsASP.NETWindows FormsLanguages.NET FrameworkVisual Studio.NET
Articles.NET FrameworkASP.NETToolsWindows Forms
.NET DirectoryOpen Source ProjectsUser GroupsWeb Resources
Related Topics
Visual Basic 6SQL ServerMS AccessOther DB ProductsMS Server ProductsMore Topics ...
.NET Forum / Visual Studio.NET / General / September 2005

Tip: Looking for answers? Try searching our database.

Windows authentication and Role security for VS2005 website

Thread view: 
Enable EMail Alerts  Start New Thread
Thread rating: 
SJH - 20 Sep 2005 08:02 GMT
Using VS2005RC1 I'm trying to use role based security to control access to
parts of a website.

Forms authentication works fine, but with windows authentication the web
site administration tools does not give the option of adding windows user
accounts.

I can restrict access based on the username, but cant find a way to restrict
access based on roles or security groups.

Thank you for any assistance.
Reply to this Message
Steven Cheng[MSFT] - 20 Sep 2005 14:25 GMT
Hi SJH,

Welcome to MSDN newsgroup.
As for the authentication/authorization setting in ASP.NET 2.0 / VS.NET
2005, it has been changed from the original ones in VS.NET 2003/ ASP.NET
1.X. In fact, we can find it from the ASP.NET Web admin configuration
console, when we swtich to use local intranet security mode,(not use
FormsAuthentication, the users/roles management are disabled in it , that
means currently the declarative mode authorization in web.config only
support FormsAuthentication. Anyway, I'll ask some other ASP.NET dev guys
to confirm this behavior and will update you soon.

Thanks,

Steven Cheng
Microsoft Online Support

Signature

Get Secure! www.microsoft.com/security
(This posting is provided "AS IS", with no warranties, and confers no
rights.)


--------------------
| From: "SJH" <sjh@nospam.nospam>
| Newsgroups: microsoft.public.vsnet.general
[quoted text clipped - 5 lines]
| NNTP-Posting-Host: host86-136-66-109.range86-136.btcentralplus.com
| X-Trace: nwrdmz03.dmz.ncs.ea.ibs-infra.bt.com 1127199775 16398
86.136.66.109 (20 Sep 2005 07:02:55 GMT)
| X-Complaints-To: news-complaints@lists.btinternet.com
| NNTP-Posting-Date: Tue, 20 Sep 2005 07:02:55 +0000 (UTC)
[quoted text clipped - 4 lines]
| X-MSMail-Priority: Normal
| Path:
TK2MSFTNGXA01.phx.gbl!TK2MSFTFEED02.phx.gbl!tornado.fastwebnet.it!tiscali!ne
wsfeed1.ip.tiscali.net!border2.nntp.ams.giganews.com!nntp.giganews.com!feede
r.xsnews.nl!83.128.0.11.MISMATCH!news-out1.kabelfoon.nl!newsfeed.kabelfoon.n
l!xindi.nntp.kabelfoon.nl!zen.net.uk!demorgan.zen.co.uk!194.72.9.35.MISMATCH
!news-peer1!btnet-feed5!btnet!news.btopenworld.com!not-for-mail
| Xref: TK2MSFTNGXA01.phx.gbl microsoft.public.vsnet.general:10506
| X-Tomcat-NG: microsoft.public.vsnet.general
[quoted text clipped - 10 lines]
|
| Thank you for any assistance.
Reply to this Message
SJH - 20 Sep 2005 20:22 GMT
Steven,

Thank you for your response.

Protecting the web site with IIS/file system security is great from a
security perspective. My concern was that doing this means you don't get the
UI updates (only available menu items are presented). However, I have tried
this and it seems that disabling access through the file system causes the UI
to update.

This is exactly what I was wanting to achieve.

Stephen

> Hi SJH,
>
[quoted text clipped - 57 lines]
> |
> | Thank you for any assistance.
Reply to this Message
Steven Cheng[MSFT] - 21 Sep 2005 02:31 GMT
Thanks for your followup Stephen,

Yes, since using File system security protection is separated from the
Forms based  /role based security protection, when we choose to use windows
authentication, the user/roles management in ASP.NET admin console will be
disabled . We need to use Forms authentication to make it active.

Thanks,

Steven Cheng
Microsoft Online Support

Signature

Get Secure! www.microsoft.com/security
(This posting is provided "AS IS", with no warranties, and confers no
rights.)

--------------------
| Thread-Topic: Windows authentication and Role security for VS2005 website
| thread-index: AcW+GJRldwfRgdYJQgKaXJnpKXOEmw==
| X-WBNR-Posting-Host: 86.136.66.109
| From: =?Utf-8?B?U0pI?= <sjh@nospam.nospam>
| References:  <dgoc6u$g0e$1@nwrdmz03.dmz.ncs.ea.ibs-infra.bt.com>
<xf0nbbevFHA.768@TK2MSFTNGXA01.phx.gbl>
| Subject: RE: Windows authentication and Role security for VS2005 website
| Date: Tue, 20 Sep 2005 12:22:02 -0700
[quoted text clipped - 69 lines]
| > | X-MSMail-Priority: Normal
| > | Path:

TK2MSFTNGXA01.phx.gbl!TK2MSFTFEED02.phx.gbl!tornado.fastwebnet.it!tiscali!ne

wsfeed1.ip.tiscali.net!border2.nntp.ams.giganews.com!nntp.giganews.com!feede

r.xsnews.nl!83.128.0.11.MISMATCH!news-out1.kabelfoon.nl!newsfeed.kabelfoon.n

l!xindi.nntp.kabelfoon.nl!zen.net.uk!demorgan.zen.co.uk!194.72.9.35.MISMATCH
| > !news-peer1!btnet-feed5!btnet!news.btopenworld.com!not-for-mail
| > | Xref: TK2MSFTNGXA01.phx.gbl microsoft.public.vsnet.general:10506
[quoted text clipped - 13 lines]
| > |
| > | Thank you for any assistance.
Reply to this Message

Free Magazines

Get these publications absolutely FREE for up to 12 months. There are no hidden fees and no obligation. Simply choose a title, complete the application form and submit it. Read more ...

Oracle MagazineNetwork ComputingComputer WorldBio-IT WorldeWeekInformation WeekInfosecurity
 
Sign In
Join
My Latest Posts
My Monitored Threads
My Blog
My Photo Gallery
My Profile
My Homepage
Start New Thread
Enable EMail Alerts
Rate this Thread



©2008 Advenet LLC   Privacy Policy - Terms of Use
This website includes both content owned or controlled by Advenet as well as content owned or controlled by third parties.