Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people, just like you, are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
Solved

SSO between SharePoint 2010 and .NET MVC Application

Posted on 2013-11-21
2
819 Views
Last Modified: 2013-12-16
Anybody have experience with developing a SSO between SharePoint 2010 and .NET applications hosted on the same domain? The two approaches I have been researching are AFDS and sharing the AuthTicket between the applications (because of the same domain factor.

I modified the SharePoint (claims-based) application, STS, and Central Admin web.config's to use the membership provider that the .NET app is using. The SP web.config also contains the same machine key as the .NET app as well the same form domain and Auth Cookie name. I am able to login to both applications separately using the same membership provider, but whenever I try to navigate to the SP after the .NET login, I get following error:

Exception of type 'System.ArgumentException' was thrown. Parameter name: encodedValue.


Here is the current entry to my .NET application's web.config

     <forms loginUrl="Login.aspx" protection="All" timeout="30"
         name=".ASPXAUTH"  path="/" slidingExpiration="true"
         defaultUrl="default.aspx" cookieless="UseCookies"
         enableCrossAppRedirects="true"
         domain=".mydomain.com" />

Entry to my SharePoint web.config.

<forms loginUrl="/_login/default.aspx" protection="All" timeout="30"
         name=".ASPXAUTH"  path="/" slidingExpiration="true"
         defaultUrl="default.aspx" cookieless="UseCookies"
         enableCrossAppRedirects="true"
         domain=".mydomain.com" />

machineKey for both are exactly the same:

<machineKey validationKey="value"
            decryptionKey="value"
            validation="SHA1"
            decryption="AES" />
0
Comment
Question by:borenl
2 Comments
 
LVL 14

Accepted Solution

by:
existenz2 earned 500 total points
ID: 39668453
ADFS works like a charm when it's setup. The setting up however is the big pain with ADFS! The infra guys will hate you for it, but in my opinion it's the best MS oriented SSO solution available at this moment.
0
 
LVL 51

Expert Comment

by:Ted Bouskill
ID: 39682814
If both sites are on the same domain accessed by domain computers then AD will do the SSO for you without any forms authentication which is unnecessary complexity.

Just use Windows Integrated Authentication on both SharePoint and the web application.  It doesn't require any work at all other than configuring SharePoint and IIS.
0

Featured Post

Free Tool: Subnet Calculator

The subnet calculator helps you design networks by taking an IP address and network mask and returning information such as network, broadcast address, and host range.

One of a set of tools we're offering as a way of saying thank you for being a part of the community.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

This article offers some helpful and general tips for safe browsing and online shopping. It offers simple and manageable procedures that help to ensure the safety of one's personal information and the security of any devices.
The article shows the basic steps of integrating an HTML theme template into an ASP.NET MVC project
This Micro Tutorial will demonstrate how to add subdomains to your content reports. This can be very importing in having a site with multiple subdomains.
How to create a custom search shortcut to site-search Experts Exchange using Google in the Firefox browser. This eliminates the need to type out site:experts-exchange.com whenever you want to search the site. Launch your Bookmark Menu: Press 'Ctrl +…

860 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question