Solved

Authenticating to one web site from another

Posted on 2012-04-10
5
275 Views
Last Modified: 2012-04-27
Here's the situation...I've got a Sharepoint site.  In that Sharepoint site, in a content editor web part (HTML), I'm trying to pull in content (images) from *another* IIS web site, which has Windows Authentication enabled.  What I'd like is for people who are already authenticated to the Sharepoint server, to be able to view the images in the content editor web part (I want the Sharepoint page to pass a username/password to the other server).  Is this possible?  

I've Googled up and down and I'm sure there's a way, I'm just not sure what to look for.
0
Comment
Question by:mgudites1
  • 3
  • 2
5 Comments
 
LVL 6

Accepted Solution

by:
RaithZ earned 500 total points
ID: 37829370
It is called double-hop authentication, which only works if you are using Kerberos authentication with SharePoint.  Without Kerberos, your authentication token gets used up when you authenticate with SharePoint, and is not available anymore to be sent to the site you are pulling content from.
0
 
LVL 1

Author Comment

by:mgudites1
ID: 37829385
Sorry, I'm not looking to pass the user's authentication.  I want to pass a specific username and password.  

So, jsmith logs on to Sharepoint, and then when they go to this site, and they try to load up this page, Sharepoint passes a "hardcoded" username/password for an account called "pictures," which lives on the other server it's authenticating to.  Does that make sense?
0
 
LVL 6

Expert Comment

by:RaithZ
ID: 37829413
Sorry I failed to read your question in full.  I would think this is possible but it would either need to be passed in the URL that the webpart pulls up or you would need to make a custom web part.  There is a SharePoint service called BCS but I don't think it would help in this particular situation.
0
 
LVL 1

Author Comment

by:mgudites1
ID: 37829423
I thought about the passing via the URL, but it would appear that solution doesn't work with IE.  Otherwise that would have been great.  It's a resource that we don't necessarily want the outside world having access to, but nothing so secure that if someone got a hold of the PW, would be a big deal.
0
 
LVL 6

Expert Comment

by:RaithZ
ID: 37829503
You could check what authentication the SharePoint server gives your secondary resource and then give that ID permissions to the resource.  Check the logs on the destination server when authentication fails to see what credentials it tried to use.
0

Featured Post

Ransomware-A Revenue Bonanza for Service Providers

Ransomware – malware that gets on your customers’ computers, encrypts their data, and extorts a hefty ransom for the decryption keys – is a surging new threat.  The purpose of this eBook is to educate the reader about ransomware attacks.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Suggested Solutions

Title # Comments Views Activity
Adding items to a C# list incrementally 5 61
asp.net mvc 2 35
What are my options to share data with field staff 16 52
Set the FileVersion of a website dll 1 25
The vision: A MegaMenu for a SharePoint portal home page The mission: Make it easy to maintain. Allow rich content and sub headers as well as standard links. Factor in frequent changes without involving developers or a lengthy Dev/Test/Prod rel…
When it comes to showing a 404 error page to your visitors, you do not want that generic page to show, and you especially do not want your hosting provider’s ad error page to show either. In this article, I will show you how to enable the custom 40…
Nobody understands Phishing better than an anti-spam company. That’s why we are providing Phishing Awareness Training to our customers. According to a report by Verizon, only 3% of targeted users report malicious emails to management. With compan…

749 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question