Basic authentication...

Basic authentication...

am 09.04.2008 09:13:55 von Walter Sobchak

Is there a way to programmatically populate the User Name field in the
basic authentication popup window?

Thanks in advance for any suggestions.

Re: Basic authentication...

am 10.04.2008 01:29:53 von Ken Schaefer

Not from IIS you can't. The dialogue is generated by the client browser. The
only way to do such a thing would be on the client. Even then, that type of
thing weakens your security.

Cheers
Ken

--
My IIS blog: http://adopenstatic.com/blog


"Walter Sobchak" wrote in message
news:fthqbk$4m6$1@news.metronet.hr...
> Is there a way to programmatically populate the User Name field in the
> basic authentication popup window?
>
> Thanks in advance for any suggestions.

Re: Basic authentication...

am 10.04.2008 13:19:53 von Walter Sobchak

I suspected it could not be done.
I'm trying to avoid that, and also asp.net forms authentication (because
it doesn't work on a cluster).
Maybe I could use a simple asp form and embed the credentials via isapi
filter?



Ken Schaefer wrote:
> Not from IIS you can't. The dialogue is generated by the client browser.
> The only way to do such a thing would be on the client. Even then, that
> type of thing weakens your security.
>
> Cheers
> Ken
>

Re: Basic authentication...

am 10.04.2008 14:29:08 von David Wang

What is your actual issue?

The implementation details you describe all sound pretty hacky and
insecure, and passing user credentials around is a pretty easy thing
to do consistently and securely, so it makes be believe that you have
some bad design element somewhere that you are working around.


//David
http://w3-4u.blogspot.com
http://blogs.msdn.com/David.Wang
//



On Apr 10, 4:19=A0am, Walter Sobchak wrote:
> I suspected it could not be done.
> I'm trying to avoid that, and also asp.net forms authentication (because
> it doesn't work on a cluster).
> Maybe I could use a simple asp form and embed the credentials via isapi
> filter?
>
>
>
> Ken Schaefer wrote:
> > Not from IIS you can't. The dialogue is generated by the client browser.=

> > The only way to do such a thing would be on the client. Even then, that
> > type of thing weakens your security.
>
> > Cheers
> > Ken- Hide quoted text -
>
> - Show quoted text -

Re: Basic authentication...

am 11.04.2008 12:59:36 von Walter Sobchak

Here is the thing.
I want to establish a cluster with 2 outlook web access servers. I would
like them to have forms authentication. At first I read that forms
authentication could not be used on a cluster so I wanted to do some
kind of basic authentication with an isapi filter. The problem is in
creating auth tickets based on MAC address of a server.So when the
request is passed to the other server it failes.
Anyway I found out that this problem can be solved in several ways:

1. Set up the load balance so that when logged in the requests goes to
the same server.
2. Edit the machine.config or web.config and hard code validation and
encryption key so it is the same on both servers.
3. Enable forms based authentication on a front end server so that every
request passes through it.

I have not yet tried these methods and I'd like to hear other suggestions.
I'll post back the results when done..


David Wang wrote:
> What is your actual issue?
>
> The implementation details you describe all sound pretty hacky and
> insecure, and passing user credentials around is a pretty easy thing
> to do consistently and securely, so it makes be believe that you have
> some bad design element somewhere that you are working around.
>
>
> //David
> http://w3-4u.blogspot.com
> http://blogs.msdn.com/David.Wang
> //
>
>
>
> On Apr 10, 4:19 am, Walter Sobchak wrote:
>> I suspected it could not be done.
>> I'm trying to avoid that, and also asp.net forms authentication (because
>> it doesn't work on a cluster).
>> Maybe I could use a simple asp form and embed the credentials via isapi
>> filter?
>>
>>
>>
>> Ken Schaefer wrote:
>>> Not from IIS you can't. The dialogue is generated by the client browser.
>>> The only way to do such a thing would be on the client. Even then, that
>>> type of thing weakens your security.
>>> Cheers
>>> Ken- Hide quoted text -
>> - Show quoted text -
>

Re: Basic authentication...

am 12.04.2008 00:49:19 von David Wang

I can tell you that #1 definitely works. I would suggest it -- just
have to configure ISA Server to keep connections with the cookie and
you are set.


//David
http://w3-4u.blogspot.com
http://blogs.msdn.com/David.Wang
//


On Apr 11, 3:59=A0am, Walter Sobchak wrote:
> Here is the thing.
> I want to establish a cluster with 2 outlook web access servers. I would
> like them to have forms authentication. At first I read that forms
> authentication could not be used on a cluster so I wanted to do some
> kind of basic authentication with an isapi filter. The problem is in
> creating auth tickets based on MAC address of a server.So when the
> request is passed to the other server it failes.
> Anyway I found out that this problem can be solved in several ways:
>
> 1. Set up the load balance so that when logged in the requests goes to
> the same server.
> 2. Edit the machine.config or web.config and hard code validation and
> encryption key so it is the same on both servers.
> 3. Enable forms based authentication on a front end server so that every
> request passes through it.
>
> I have not yet tried these methods and I'd like to hear other suggestions.=

> I'll post back the results when done..
>
>
>
> David Wang wrote:
> > What is your actual issue?
>
> > The implementation details you describe all sound pretty hacky and
> > insecure, and passing user credentials around is a pretty easy thing
> > to do consistently and securely, so it makes be believe that you have
> > some bad design element somewhere that you are working around.
>
> > //David
> >http://w3-4u.blogspot.com
> >http://blogs.msdn.com/David.Wang
> > //
>
> > On Apr 10, 4:19 am, Walter Sobchak wrote:
> >> I suspected it could not be done.
> >> I'm trying to avoid that, and also asp.net forms authentication (becaus=
e
> >> it doesn't work on a cluster).
> >> Maybe I could use a simple asp form and embed the credentials via isapi=

> >> filter?
>
> >> Ken Schaefer wrote:
> >>> Not from IIS you can't. The dialogue is generated by the client browse=
r.
> >>> The only way to do such a thing would be on the client. Even then, tha=
t
> >>> type of thing weakens your security.
> >>> Cheers
> >>> Ken- Hide quoted text -
> >> - Show quoted text -- Hide quoted text -
>
> - Show quoted text -