Wrox Programmer Forums
Go Back   Wrox Programmer Forums > .NET > Other .NET > General .NET
|
General .NET For general discussion of MICROSOFT .NET topics that don't fall within any of the other .NET forum subcategories or .NET language forums.  If your question is specific to a language (C# or Visual Basic) or type of application (Windows Forms or ASP.Net) try an applicable forum category. ** PLEASE BE SPECIFIC WITH YOUR QUESTION ** When posting here, provide details regarding the Microsoft .NET language you are using and/or what type of application (Windows/Web Forms, etc) you are working in, if applicable to the question. This will help others answer the question without having to ask.
Welcome to the p2p.wrox.com Forums.

You are currently viewing the General .NET section of the Wrox Programmer to Programmer discussions. This is a community of software programmers and website developers including Wrox book authors and readers. New member registration was closed in 2019. New posts were shut off and the site was archived into this static format as of October 1, 2020. If you require technical support for a Wrox book please contact http://hub.wiley.com
 
Old June 1st, 2004, 11:09 AM
Authorized User
 
Join Date: Jun 2003
Posts: 52
Thanks: 0
Thanked 0 Times in 0 Posts
Default Windows authentication

Hello,

I have the following problem, possible because I'm starting with VB.Net and ASP.NET. We have a Intranet working, build with MSFrontpage, running in a XP Pro machine. Our network is hosted in a windows2000 Server Edition. We (me and my boss) are making changes in our Intranet, and for several reasons we are using VB.Net and ASP.Net. The test pages are build in my machine (XP Pro also). The first aspx page need to have a windows authentication (from the html page I "jump" to an aspx page if I have a valid login ( it's a valid network login). In my web.config file, in the authentication Mode I set it to "windows" and in the authorization section I set it to <deny users =*">. When I launch the page it asks for the authentication with a windows window, with a box for username, password and domain, but never accepts the login I give (and it's a valid network login).
Any clue to solve this?

Thanks,





Elisa Resina
__________________
Elisa Resina
 
Old June 1st, 2004, 12:20 PM
Friend of Wrox
 
Join Date: Jun 2003
Posts: 1,998
Thanks: 0
Thanked 3 Times in 3 Posts
Default

Hello,

<deny users="*"> means deny all users. You want <deny users="?"/> for deny anonymous users.

Brian
 
Old June 1st, 2004, 01:23 PM
Authorized User
 
Join Date: May 2004
Posts: 24
Thanks: 0
Thanked 0 Times in 0 Posts
Default

Hope you have set the NT authentication to 'On' and others to 'Off'
in IIS manager. Also, this could happen if your web site
is on a domain and you are accessing it from a domain that's not friendly. Also set your default page for the application and try hitting the web site with the full URL including the default page.

SS
 
Old June 2nd, 2004, 03:37 AM
Authorized User
 
Join Date: Jun 2003
Posts: 52
Thanks: 0
Thanked 0 Times in 0 Posts
Default

Thanks for your answers guys! If i set <deny users="?"/> I have no problem to launch my page. But maybe I was not thinking right in my problem. I'm going to explain: I have a form to submit a username and a password and what I want is to use the windows authentication (i mean, to use the networking authentication) to validate the submission by the user. I don't want to assume that the login used by the user when he logged in the machine will be the same used to access my page, because we want to let someone, that it's out of the his room to access the page from any computer in the company. Imagine, it's my computer and I logged this morning but I'm working with someone from another department and he needs to use the intranet and he uses my computer logged by me before. He access the intranet (with my login still in the computer) and access his working area there. To be able to do it he as to submit his login in the aspx page and the page will identify his login as a valid login because it's also a network login. I don't know if it is clear to you.

Any suggestions?

Thanks,






Elisa Resina
 
Old June 2nd, 2004, 08:55 AM
Friend of Wrox
 
Join Date: Jun 2003
Posts: 1,101
Thanks: 0
Thanked 2 Times in 2 Posts
Default

Yes, it's clear what you want to do..

Turn off windows authentication- This means that you are using the logged in user the the client machine as the user. it does not provide for someone else logging into a site from that machine. Since you can not trust that the person at the keyboard is the person who is visiting the site, you can not use Windows Authentication.

AFter you do that, you need to look into the "Forms" authentication method and how that works- and how you can hook it into validating against domain credentials.



Hal Levy
Web Developer, PDI Inc.

NOT a Wiley/Wrox Employee
 
Old June 2nd, 2004, 09:16 AM
Authorized User
 
Join Date: Jun 2003
Posts: 52
Thanks: 0
Thanked 0 Times in 0 Posts
Default

Thank's! That's what I'll do. After change to <deny users="?"/> I realised I was not thinking well in my problem. Possibly I'll write another post, this time with a problem with Forms authentication eh he...

:)

Thanks again for your help.



Elisa Resina





Similar Threads
Thread Thread Starter Forum Replies Last Post
Windows Authentication OrbitalThread .NET Framework 2.0 0 December 5th, 2006 01:57 PM
windows Authentication zee_ahmed2002 Classic ASP Basics 1 August 15th, 2004 08:27 AM





Powered by vBulletin®
Copyright ©2000 - 2020, Jelsoft Enterprises Ltd.
Copyright (c) 2020 John Wiley & Sons, Inc.