[RESOLVED] VS2010 What type of security should I use?

**davieeeee** · Aug 5th, 2011, 01:15 AM

Hi,

I was hoping someone could point me in the right direction as to what security technology I should use to meet my requirements.

I need the following:

- An ASP.Net Intranet site running on IIS7.
- All users will be using Internet Explorer.
- There is only one domain which is authenticated using Active Directory.
- In Active Directory, the users are split up into Security Groups.
- The user should be able to type in the URL, then see the website without any authentication. Their Security Group should have been passed through automatically by their windows logon. I would then like to control their webpage navigation menu access by their Security Group.
- I need to somehow be able to log in as an alternate Active Directory user on the same computer if required.
- The user logon details need to be able to be passed through to SQL connections.

My questions are what technologies should I pursue to achieve all this?
I've seen terms such as Windows Authentication, Kerboros, Impersonation etc which I am not sure is relevant or not.

- Is Windows Authentication what I am after?
- Does IIS somehow automatically pass in the users authentication information to SQL if I select Windows Authentication in the connection string?

Any suggetions are appriciated.

**danasegarane** · Aug 5th, 2011, 01:42 AM

Originally Posted by davieeeee

Hi,

The user should be able to type in the URL, then see the website without any authentication. Their Security Group should have been passed through automatically by their windows logon. I would then like to control their webpage navigation menu access by their Security Group.
-

For Accessing the user roles and name the user must be authenticated. While opening the page the user should be prompted to enter user name and password

**davieeeee** · Aug 5th, 2011, 01:46 AM

OK so going by what you avae advised, I understand that there is no way to pass through Security Groups with a logon screen. That wont be a problem then, I can work with that.

Is this still considered "Windows Authentication" or a different authentication method?

**danasegarane** · Aug 5th, 2011, 01:51 AM

If you are going to use the Active Directory Authentication Roles then have a look this example from MSDN

**gep13** · Aug 8th, 2011, 01:12 AM

Hello,

Yes, you can use Windows Authentication in ASP.Net:

http://msdn.microsoft.com/en-us/library/ff647405.aspx

However, to be clear the Groups that a user is a member of is NOT passed through in the request to the web site, you would need to access this information on the server, if required. If you used the Role Provider, which you can also hook up to Windows Authentication, then some of this work could be done for you. Take a look at the restricted menu sample in my signature. This uses Forms Authentication, but it can be made to work with Windows Authentication as well.

Gary

**davieeeee** · Aug 10th, 2011, 01:25 AM

Thanks guys.
While I am still digesting all of the information I beleive my inital question has been answered.

**gep13** · Aug 10th, 2011, 01:59 AM

Originally Posted by davieeeee

Thanks guys.
While I am still digesting all of the information I beleive my inital question has been answered.

Glad to hear it!

Let us know if you have any follow up questions.

Gary

Thread: [RESOLVED] VS2010 What type of security should I use?

Thread Tools

Display

[RESOLVED] VS2010 What type of security should I use?

Re: VS2010 What type of security should I use?

Re: VS2010 What type of security should I use?

Re: VS2010 What type of security should I use?

Re: VS2010 What type of security should I use?

Re: VS2010 What type of security should I use?

Re: VS2010 What type of security should I use?

Posting Permissions