[RESOLVED] VS2010 What type of security should I use?
Hi,
I was hoping someone could point me in the right direction as to what security technology I should use to meet my requirements.
I need the following:
- An ASP.Net Intranet site running on IIS7.
- All users will be using Internet Explorer.
- There is only one domain which is authenticated using Active Directory.
- In Active Directory, the users are split up into Security Groups.
- The user should be able to type in the URL, then see the website without any authentication. Their Security Group should have been passed through automatically by their windows logon. I would then like to control their webpage navigation menu access by their Security Group.
- I need to somehow be able to log in as an alternate Active Directory user on the same computer if required.
- The user logon details need to be able to be passed through to SQL connections.
My questions are what technologies should I pursue to achieve all this?
I've seen terms such as Windows Authentication, Kerboros, Impersonation etc which I am not sure is relevant or not.
- Is Windows Authentication what I am after?
- Does IIS somehow automatically pass in the users authentication information to SQL if I select Windows Authentication in the connection string?
Any suggetions are appriciated.
Re: VS2010 What type of security should I use?
Quote:
Originally Posted by
davieeeee
Hi,
The user should be able to type in the URL, then see the website without any authentication. Their Security Group should have been passed through automatically by their windows logon. I would then like to control their webpage navigation menu access by their Security Group.
-
For Accessing the user roles and name the user must be authenticated. While opening the page the user should be prompted to enter user name and password
Re: VS2010 What type of security should I use?
OK so going by what you avae advised, I understand that there is no way to pass through Security Groups with a logon screen. That wont be a problem then, I can work with that.
Is this still considered "Windows Authentication" or a different authentication method?
Re: VS2010 What type of security should I use?
If you are going to use the Active Directory Authentication Roles then have a look this example from MSDN
Re: VS2010 What type of security should I use?
Hello,
Yes, you can use Windows Authentication in ASP.Net:
http://msdn.microsoft.com/en-us/library/ff647405.aspx
However, to be clear the Groups that a user is a member of is NOT passed through in the request to the web site, you would need to access this information on the server, if required. If you used the Role Provider, which you can also hook up to Windows Authentication, then some of this work could be done for you. Take a look at the restricted menu sample in my signature. This uses Forms Authentication, but it can be made to work with Windows Authentication as well.
Gary
Re: VS2010 What type of security should I use?
Thanks guys.
While I am still digesting all of the information I beleive my inital question has been answered.
Re: VS2010 What type of security should I use?
Quote:
Originally Posted by
davieeeee
Thanks guys.
While I am still digesting all of the information I beleive my inital question has been answered.
Glad to hear it!
Let us know if you have any follow up questions.
Gary
