Im writing an ASP.NET 2.0 web application that implements SSO. In order to do that I need to access other ASP.NET web applications(these are hosted on IIS 6.0 or 5.0 and I have no access to them). The sites that I need to access use windows or forms authentication. I need to transparently authenticate the users of my application to these sites, without prompting for their password a username (I have valid passwords and usernames for the sites that I need to access and Ill use them to log in automatically, in the code).
There are 2 problems. How can I do this transparent authentication:
1. for the sites that are using Windows authentication: avoid prompting for user and password and login automatically(NTLM authentication);
2. for the sites that are using forms authentication: skip the login page and login automatically.