I am looking for a code which does authentication using service account username and password. I mean username and password which has permission to access the active directory and then authenticate the actual username and password provided by end-user. Googled everywhere but could not find any suitable code.
View 1 RepliesWe are using membership provider for LDAP authentication. It is working as it should.
But what all configuration settings I have to do so that
all the future requests to this application run under the security context of the Logged in user account not through the some default user set in IIS.
We need to have this working because all the permissions on the database are based on the logged in user.
We are using form authentication for LDAP authentication. And having impersonation = true in web.config.
I am working on Web application which get the authentication details from the Active direcoty using LDAP
when I am using the function DirectorySearcher.FindOne() it gives this error message (The authentication mechanism is unknown), and I relized that I should put this line in the web.config file ( <identity impersonate="false"/> ), then this problem will be solved.
but at the same time I should put true value to the same attribute to get the correct result when I am calling this function
System.Security.Principal.WindowsIdentity.GetCurrent().Name
otherwise the returened value will be (NT AUTHORITYNETWORK SERVICE) not the authenticated user name.
I am trying to restrict access to the webpage using a security group. find the code in the web.config file:
<authentication mode="Windows"/>
<roleManager enabled="true" defaultProvider="AspNetWindowsTokenRoleProvider" />
<authorization>
<allow roles="enterprisenet.orgNMR Helpdesk Supt" />
</authorization>
Code in the code behind file of the aspx file i am trying to access:
if (User.IsInRole(@"enterprisenet.orgNMR Helpdesk Supt"))
{}
else
{
Server.Transfer("noaccess.aspx");
}
Group is located in enterprisenet.org/Groups/NMR Helpdesk Supt . Its not working as expected.
I have an application which is installed on local pc and is using SQL db. It is a client management system where I want to add capability to register new clients and give them access to my web site which is sharing the same SQL database with local application.
At the moment clients can register on the web site and I have ASP.NET authorisation system set up with aspnetdb_user, aspnetdb_membership and etc tables. But sometimes it happens that I need to register clients on my local application on PC and ideally would like that registration to create online account for the client as well. Then I want to be able to send him user id and password by email and let him know that he has been registered in my database and online account is ready for him as well.
Basically I want to have full synchronization between asp.net membership service and local application through SQL db. As I said both online and local apps are shareing the same SQL database. what would be the best practice to implement it.
I have a web application. This application needs to perform a search on folders located on 2 different machines. I can use impersonation for this. But -
a. I don't want to use network service account
b. I want to impersonate just the search part of the code.
c. Specifying encrypted user name / password in web.config is one option. But this would be the last option.
Can I use a custom service account for the application pool for this? If yes, then how to impersonate a specific part of code using this?
I have a requirement I should connect to MS SQL server under IIS Application pool account from ASP.NET application where Windows Authentication is enabled. I cannot use user name and password in connection string.
ASP.NET application should use Entity Framework 4.0 to work with data.
I am writing two ASP.NET apps. One is a web service that provides xml data and the other is a web client that will use the service to display and manipulate data. I would like for the web service to do the membership authentication and authorization. Is there any way to simply point the login controls in my client application to the web service instead of to a database. I assume I would have to provide the necesarry methods in my web service interface, which would then use the membership provider database I created and pass the results back through to the client.
Is this possible? I have seen many articles on security provisioin from a web service but none has really been what I am looking for. I was hoping that, since my service and my client are both written in ASP.NET, there might be some built functionality that would benefit me.
I created one application, and I need to authenticate local user. This user is the user who is login to his/her Personal Computer.. Main thing his that he/she does not in any DOMAIN... I want NON-DOMAIN authentication.
View 4 RepliesI have a web service in which i am making connection to the database to get data..now i want that the app pool account should be used to make the connection and not the current user's credentials..can somebody tell me step by step what changes do i need to make like setting impersonation=true etc.
View 1 RepliesIs it possible to authenticate a user using userDN and password? If so, then tell me the syntax.So far i have tried to authenticate using username and password from my c# code using directoryentry which takes the parameters like domainname,username and password. But i need to authenticate using Userdn and password.
View 1 Repliesi have a problem with the users authentication on my site. I made <authentication mode="Windows"> in my web.config. The LoginView shows "mycomputermyusername" if i request the page. So far as well. Now i want to login with a different username. Users are stored in an Active Directory. My questions: wich setting i have to do, that user's account and password checked by Active Directory? how can i force the system to make a new login? Logout doesn't work, i always see my on account.
View 1 RepliesI have to invoke SSIS packages from web service in the most secure way. I think that windows authentication will be secure but i am not sure. I do not have much knowledge about how to achieve this and the information on the internet is very distributed.
View 1 RepliesLDAP - directory entry issue with out user and password using impersonate and windows authentication
View 1 RepliesI tried to use Authentication form with LDAP but when I run my web application I received error: Invalid dn syntax specified. This is my code:
public bool IsAuthenticated(string domain, string username, string password)
{
// string domainAndUsername = domain + @"" + username;
string domainAndUsername = "http://localhost:389
jsmith";
// DirectoryEntry entry = new DirectoryEntry(_path, domainAndUsername, password);// _path = LDAP://localhost:389/dc=example,dc=com
DirectoryEntry entry = new DirectoryEntry("LDAP://localhost:389",domainAndUsername,"rJsmitH");
try
{
Object obj = entry.NativeObject;
DirectorySearcher search = new DirectorySearcher(entry);
search.Filter = "(SAMAccountName=" + username + ")";
search.PropertiesToLoad.Add("cn");
SearchResult result = search.FindOne();
if(null == result)
{
return false;
}
_path = result.Path;
_filterAttribute = (String)result.Properties["cn"][0];
}
catch (System.Exception ex)
{
throw new Exception("Error authenticating user. " + ex.Message);
}
return true;
}
I got exception at line Object obj = entry.NativeObject; and error message is: Invalid dn syntax specified. how can i take a right dn syntax? I tried some domain name such as: LDAP://localhost:389, [URL], ... but I still get this error
I have created a WCF service that will serve as authentication service for Silverlight client.The problem is that when I make a call to FormsAuthentication.SetAuthCookie in the Login method below, I get a null reference exception. I am following the 'Securing Applications Built on Silverlight and WCF' (http://www.componentart.com/community/blogs/milos/archive/2009/05/07/securing-applications-built-on-silverlight-and-wcf.aspx)
[Code]....
I want to create a web service that can authenticate user from my application. I will be sending user name and password from my app to the web service and that will deny or accept the user. I want to use form authentication using sql server. that this web service can be used by other team in my office so that they can just call the web service and the user will be authenticated.
Also, is it possible to use both form and windows authentication in my web service and authenticate the user both ways.
I am using .NET roles and membership model to manage user accounts in my system back-end.
If the request is come from within my web-app, I can authenticate through form.
But if the user is requesting from else where, maybe their own apps, how to I do authentication?
attach username and password (GET/POST) and then secure the line by SSL? is that what I should do?
I have created an asp.net web application on windows server 2008. I have created a website in IIS 7 with an application pool. The application pool has the identity "NETWORKSERVICE". I have a web reference in my application with a certificate.
When I create a new web application and add the code below and add the web reference, and run the web application from the solution (and not from a website in IIS), the web service works fine. I think the local administrator has permissions and the network service account not.
public static PartsService MyCompanyPartsService
{
get
{
if (_partsService != null)
return _partsService;
_partsService = new PartsService();
_partsService.PreAuthenticate = true;
[Code]....
I'm trying to use ASP.NET WCF Authentication Service from a Winforms Application.
I am referring to this article as a tutorial.
for silverlight clients, the WCF Auth service works well.
but for Winforms Apps,
[Code]....the AuthenticationServiceClient.IsLoggedIn() always returns false even after login.
what is the cause of this and is there another approach I should take when I leverage ASP.NET authentication from Winforms?
how to authenticate a user using the central authentication service?
I created a login page to enter the user name etc. I have the server for the authentication.
Here in my work I have four guys managing AD server(2003), and one of this guys, locked an workstation account. I would like to know if there are a way to find out who did this.
View 1 RepliesWhat is the best way to use System.DirectoryServices.AccountManagement to lock an Active Directory user object? I'm able to determine if an account is locked using..
UserPrincipal principal = new UserPrincipal(context);
bool locked = principal.IsAccountLockedOut();
How do I lock the account? Is there an alternative to doing something like this...
UserPrincipal principal = new UserPrincipal(context);
DirectoryEntry entry = (DirectoryEntry)principal.GetUnderlyingObject();
int val = (int)entry.Properties["userAccountControl"].Value;[code]....
My ASP.NET MVC 2 application runs under built-in local NETWORK SERVICE account. I want to set up access permissions for the folder which resides in another computer, but in the same domain. I located that folder right-clicked to open its properties form, clicked to Security tab and pressed Add button which displayed Add user form with correct domain name in the location field. I referred to the account with following syntax:
<domain name><server name>$
because I learned that NETWORK SERVICE account uses machine account when connected to other computers in the domain. However, the system couldn't find the account, so refuses to add the account. Without the domain name it adds a user, but that user seems to be local user, not web server's NETWORK SERVICE account. What am I doing wrong?
By the way, the above syntax worked when I created login for the sql server which is different computer from the web server.
I need an idea please, i have the task of disabling the Domain Administrator account, but we have a very messed up AC and im practilly new employee here. The administrator account has been used on several services, servers, print servers, etc. Across the network and sites. All our intersite communication is perfect.So what i want is a way to know in which devices this account is configured.Is there a way or tool, where i can input the account, and the output should be a list of servers, ip adresses or devices where the account is configured?
View 1 Replies