Go Premium for a chance to win a PS4. Enter to Win

x
  • Status: Solved
  • Priority: Medium
  • Security: Public
  • Views: 324
  • Last Modified:

Authenication of Internet Web Page Users

My Configuration:  
          Novell Client 4.90 SP2
          Window Server 2000
          Internet Information Services 5.0
          ASP based web pages
          Intranet only (behind a firewall)

My Limitations:
          Zero experience using Novell

My Problem:
          I need to open my web pages up to only authenticated internet users  and secure my web pages.

My Question:
          Can I use existing Novell accounts to validate internet users via ASP?
0
RX87325
Asked:
RX87325
4 Solutions
 
alextoftCommented:
You could use the Novell LDAP library for C#
http://www.novell.com/support/search.do?cmd=displayKC&docType=kc&externalId=http--wwwnovellcom-coolsolutions-qna-11263html&sliceId=&dialogID=16818306&stateId=0%200%2016814671
I presume by "Novell account" you mean "Novell Netware eDirectory account"?

If you ever decide to upgrade your hosting platform from the legacy Windows operating system, mod_ldap, mod_ldap_auth, and mod_edir for Apache can be setup to do LDAP over SSL in about 5 minutes.
0
 
PsiCopCommented:
<pet peeve>

"Novell" is a company. It makes a number of products, including "SUSE Linux", "eDirectory", "Identity Manager" and "NetWare". You didn't write "Microsoft Server 2000", did you?

</pet peeve>

As alexoft has mentioned, you could use the C# NDK to code the calls in the ASP to authenticate against eDirectory through the LDAP interface. Note that the eDirectory environment is no different than any other platform providing services - the LDAP functionality needs to be installed/enabled/configured/whatever. If you're not the admin of the eDirectory environment, then you need to talk to the person who is and find out how to architect your LDAP connection - some example questions could include:

1) Are you going to do an Anonymous Bind (easier), or do you need to authenticate before you query (more secure)?
2) Is the LDAP interface configured for SSL (let's hope it is, especially if you're not doing Anonymous Binds)?
3) What is the Base DN?

LDAP is, of course, not the only interface available for eDirectory, but as long as you're stuck on the Windoze platform, it's probably the best route if the scale is small.
0
 
ShineOnCommented:
There are other APIs available as well, and I think there may even be some ASP stuff out on devnet.

If you choose to do LDAP, make sure you do secure LDAP so the auth traffic has some encryption going on, and keep in mind that the "CN=x,OU=x,DC=x,DC=x" notation that's the only one Microsoft talks about is used only when your tree structure is based on DNS rather than true x.500 hierarchy. You need to use "normal" x.500 naming for your LDAP lookups where the top level is "O" instead of "DC".
0
 
N3tb0ssCommented:
Here is a link to the Novell Developer site and some sample code for verifying user/password against NDS.
It requires the Novell ActiveX Controls to create the NWDir and NWSess objects.

http://developer.novell.com/wiki/index.php/TID102274_%28aspverif%29_Sample_code_demonstrating_how_to_verify_user_agains_NDS_from_IIS-ASP
0
 
RX87325Author Commented:
I found a software vendor call Stoneware that provides the functionallity I needed.
0

Featured Post

Free Tool: ZipGrep

ZipGrep is a utility that can list and search zip (.war, .ear, .jar, etc) archives for text patterns, without the need to extract the archive's contents.

One of a set of tools we're offering as a way to say thank you for being a part of the community.

Tackle projects and never again get stuck behind a technical roadblock.
Join Now