Solved

SSO between SharePoint 2010 and .NET MVC Application

Posted on 2013-11-21
2
843 Views
Last Modified: 2013-12-16
Anybody have experience with developing a SSO between SharePoint 2010 and .NET applications hosted on the same domain? The two approaches I have been researching are AFDS and sharing the AuthTicket between the applications (because of the same domain factor.

I modified the SharePoint (claims-based) application, STS, and Central Admin web.config's to use the membership provider that the .NET app is using. The SP web.config also contains the same machine key as the .NET app as well the same form domain and Auth Cookie name. I am able to login to both applications separately using the same membership provider, but whenever I try to navigate to the SP after the .NET login, I get following error:

Exception of type 'System.ArgumentException' was thrown. Parameter name: encodedValue.


Here is the current entry to my .NET application's web.config

     <forms loginUrl="Login.aspx" protection="All" timeout="30"
         name=".ASPXAUTH"  path="/" slidingExpiration="true"
         defaultUrl="default.aspx" cookieless="UseCookies"
         enableCrossAppRedirects="true"
         domain=".mydomain.com" />

Entry to my SharePoint web.config.

<forms loginUrl="/_login/default.aspx" protection="All" timeout="30"
         name=".ASPXAUTH"  path="/" slidingExpiration="true"
         defaultUrl="default.aspx" cookieless="UseCookies"
         enableCrossAppRedirects="true"
         domain=".mydomain.com" />

machineKey for both are exactly the same:

<machineKey validationKey="value"
            decryptionKey="value"
            validation="SHA1"
            decryption="AES" />
0
Comment
Question by:borenl
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
2 Comments
 
LVL 14

Accepted Solution

by:
existenz2 earned 500 total points
ID: 39668453
ADFS works like a charm when it's setup. The setting up however is the big pain with ADFS! The infra guys will hate you for it, but in my opinion it's the best MS oriented SSO solution available at this moment.
0
 
LVL 51

Expert Comment

by:Ted Bouskill
ID: 39682814
If both sites are on the same domain accessed by domain computers then AD will do the SSO for you without any forms authentication which is unnecessary complexity.

Just use Windows Integrated Authentication on both SharePoint and the web application.  It doesn't require any work at all other than configuring SharePoint and IIS.
0

Featured Post

Migrating Your Company's PCs

To keep pace with competitors, businesses must keep employees productive, and that means providing them with the latest technology. This document provides the tips and tricks you need to help you migrate an outdated PC fleet to new desktops, laptops, and tablets.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

I annotated my article on ransomware somewhat extensively, but I keep adding new references and wanted to put a link to the reference library.  Despite all the reference tools I have on hand, it was not easy to find a way to do this easily. I finall…
In threads here at EE, each comment has a unique Identifier (ID). It is easy to get the full path for an ID via the right-click context menu. However, we often want to post a short link within a thread rather than the full link. This article shows a…
This Micro Tutorial will demonstrate how nuggets on the Web are formatted by using Chrome Developer Tools. These tools would not only view the site's CSS but it can also modify it and save the CSS to use on your own site.
How to create a custom search shortcut to site-search Experts Exchange using Google in the Firefox browser. This eliminates the need to type out site:experts-exchange.com whenever you want to search the site. Launch your Bookmark Menu: Press 'Ctrl +…

717 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question