SSO between SharePoint 2010 and .NET MVC Application

Anybody have experience with developing a SSO between SharePoint 2010 and .NET applications hosted on the same domain? The two approaches I have been researching are AFDS and sharing the AuthTicket between the applications (because of the same domain factor.

I modified the SharePoint (claims-based) application, STS, and Central Admin web.config's to use the membership provider that the .NET app is using. The SP web.config also contains the same machine key as the .NET app as well the same form domain and Auth Cookie name. I am able to login to both applications separately using the same membership provider, but whenever I try to navigate to the SP after the .NET login, I get following error:

Exception of type 'System.ArgumentException' was thrown. Parameter name: encodedValue.


Here is the current entry to my .NET application's web.config

     <forms loginUrl="Login.aspx" protection="All" timeout="30"
         name=".ASPXAUTH"  path="/" slidingExpiration="true"
         defaultUrl="default.aspx" cookieless="UseCookies"
         enableCrossAppRedirects="true"
         domain=".mydomain.com" />

Entry to my SharePoint web.config.

<forms loginUrl="/_login/default.aspx" protection="All" timeout="30"
         name=".ASPXAUTH"  path="/" slidingExpiration="true"
         defaultUrl="default.aspx" cookieless="UseCookies"
         enableCrossAppRedirects="true"
         domain=".mydomain.com" />

machineKey for both are exactly the same:

<machineKey validationKey="value"
            decryptionKey="value"
            validation="SHA1"
            decryption="AES" />
borenlAsked:
Who is Participating?
 
existenz2Commented:
ADFS works like a charm when it's setup. The setting up however is the big pain with ADFS! The infra guys will hate you for it, but in my opinion it's the best MS oriented SSO solution available at this moment.
0
 
Ted BouskillSenior Software DeveloperCommented:
If both sites are on the same domain accessed by domain computers then AD will do the SSO for you without any forms authentication which is unnecessary complexity.

Just use Windows Integrated Authentication on both SharePoint and the web application.  It doesn't require any work at all other than configuring SharePoint and IIS.
0
Question has a verified solution.

Are you are experiencing a similar issue? Get a personalized answer when you ask a related question.

Have a better answer? Share it in a comment.

All Courses

From novice to tech pro — start learning today.