ASP.NET 2.0 // IIS Authentication

ASP.NET 2.0 // IIS Authentication

am 14.01.2008 16:21:54 von Samuel

Hi

I'm trying to build a kind of small intranet page. We have some Intranet
users which are member of the active directory, others which aren't.

The main idea is that the users can go to http://intranet and if they are
authenticated automatically, the just get the page content, if not, they
have to enter a special user and password.

For checking which user is authenticated, I use
HttpContext.Current.Request.ServerVariables["LOGON_USER"]

I have an asp.net page handling all the output, but run into the following
problems
- if I disable "anonymous access" and enable integraded windows
authentication: then I get the nt-username if computer is in the domain, if
the computer is not in the domain, i get the authentication popup in the
browser, but I don't won't to show this one, instead a login page should
come up.

- if i enable "anonymous access" i don't get the NT username with the
ServerVariable, it's always empty, even if the computer is member of the
domain.

Any ideas how a solution could work??
Thanks for any hints

Samuel

Re: ASP.NET 2.0 // IIS Authentication

am 15.01.2008 01:19:53 von David Wang

On Jan 14, 7:21=A0am, "Samuel" wrote:
> Hi
>
> I'm trying to build a kind of small intranet page. We have some Intranet
> users which are member of the active directory, others which aren't.
>
> The main idea is that the users can go tohttp://intranetand if they are
> authenticated automatically, the just get the page content, if not, they
> have to enter a special user and password.
>
> For checking which user is authenticated, I use
> HttpContext.Current.Request.ServerVariables["LOGON_USER"]
>
> I have an asp.net page handling all the output, but run into the following=

> problems
> - if I disable "anonymous access" and enable =A0integraded windows
> authentication: then I get the nt-username if computer is in the domain, i=
f
> the computer is not in the domain, i get the authentication popup in the
> browser, but I don't won't to show this one, instead a login page should
> come up.
>
> - if i enable "anonymous access" i don't get the NT username with the
> ServerVariable, it's always empty, even if the computer is member of the
> domain.
>
> Any ideas how a solution could work??
> Thanks for any hints
>
> Samuel


What you want is "Fallback Authentication", which is proprietary so
IIS does not come with it. However, it can be cobbled together in an
insecure and hacky manner -- find someone who has.

Please search for:
"Fallback Authentication ASP.Net"


//David
http://w3-4u.blogspot.com
http://blogs.msdn.com/David.Wang
//

Re: ASP.NET 2.0 // IIS Authentication

am 22.01.2008 17:46:26 von Samuel

I found a solution. I have an entry page, which is anonymouse. from there i
try to make an ajax-call to an secured site. if the ajax call works, i know,
the user can do automatic sign-in, else i redirect him to the "forms" login
page

"David Wang" schrieb im Newsbeitrag
news:88c895d4-e23c-44ff-be7a-144991bb6c19@v67g2000hse.google groups.com...
On Jan 14, 7:21 am, "Samuel" wrote:
> Hi
>
> I'm trying to build a kind of small intranet page. We have some Intranet
> users which are member of the active directory, others which aren't.
>
> The main idea is that the users can go tohttp://intranetand if they are
> authenticated automatically, the just get the page content, if not, they
> have to enter a special user and password.
>
> For checking which user is authenticated, I use
> HttpContext.Current.Request.ServerVariables["LOGON_USER"]
>
> I have an asp.net page handling all the output, but run into the following
> problems
> - if I disable "anonymous access" and enable integraded windows
> authentication: then I get the nt-username if computer is in the domain,
> if
> the computer is not in the domain, i get the authentication popup in the
> browser, but I don't won't to show this one, instead a login page should
> come up.
>
> - if i enable "anonymous access" i don't get the NT username with the
> ServerVariable, it's always empty, even if the computer is member of the
> domain.
>
> Any ideas how a solution could work??
> Thanks for any hints
>
> Samuel


What you want is "Fallback Authentication", which is proprietary so
IIS does not come with it. However, it can be cobbled together in an
insecure and hacky manner -- find someone who has.

Please search for:
"Fallback Authentication ASP.Net"


//David
http://w3-4u.blogspot.com
http://blogs.msdn.com/David.Wang
//