?
Solved

SSO between SharePoint 2010 and .NET MVC Application

Posted on 2013-11-21
2
Medium Priority
?
855 Views
Last Modified: 2013-12-16
Anybody have experience with developing a SSO between SharePoint 2010 and .NET applications hosted on the same domain? The two approaches I have been researching are AFDS and sharing the AuthTicket between the applications (because of the same domain factor.

I modified the SharePoint (claims-based) application, STS, and Central Admin web.config's to use the membership provider that the .NET app is using. The SP web.config also contains the same machine key as the .NET app as well the same form domain and Auth Cookie name. I am able to login to both applications separately using the same membership provider, but whenever I try to navigate to the SP after the .NET login, I get following error:

Exception of type 'System.ArgumentException' was thrown. Parameter name: encodedValue.


Here is the current entry to my .NET application's web.config

     <forms loginUrl="Login.aspx" protection="All" timeout="30"
         name=".ASPXAUTH"  path="/" slidingExpiration="true"
         defaultUrl="default.aspx" cookieless="UseCookies"
         enableCrossAppRedirects="true"
         domain=".mydomain.com" />

Entry to my SharePoint web.config.

<forms loginUrl="/_login/default.aspx" protection="All" timeout="30"
         name=".ASPXAUTH"  path="/" slidingExpiration="true"
         defaultUrl="default.aspx" cookieless="UseCookies"
         enableCrossAppRedirects="true"
         domain=".mydomain.com" />

machineKey for both are exactly the same:

<machineKey validationKey="value"
            decryptionKey="value"
            validation="SHA1"
            decryption="AES" />
0
Comment
Question by:borenl
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
2 Comments
 
LVL 14

Accepted Solution

by:
existenz2 earned 1000 total points
ID: 39668453
ADFS works like a charm when it's setup. The setting up however is the big pain with ADFS! The infra guys will hate you for it, but in my opinion it's the best MS oriented SSO solution available at this moment.
0
 
LVL 51

Expert Comment

by:Ted Bouskill
ID: 39682814
If both sites are on the same domain accessed by domain computers then AD will do the SSO for you without any forms authentication which is unnecessary complexity.

Just use Windows Integrated Authentication on both SharePoint and the web application.  It doesn't require any work at all other than configuring SharePoint and IIS.
0

Featured Post

Simplifying Server Workload Migrations

This use case outlines the migration challenges that organizations face and how the Acronis AnyData Engine supports physical-to-physical (P2P), physical-to-virtual (P2V), virtual to physical (V2P), and cross-virtual (V2V) migration scenarios to address these challenges.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Several part series to implement Internet Explorer 11 Enterprise Mode
In case you ever have to remove a faulty web part from a page , add the following to the end of the page url ?contents=1
This Micro Tutorial will demonstrate how nuggets on the Web are formatted by using Chrome Developer Tools. These tools would not only view the site's CSS but it can also modify it and save the CSS to use on your own site.
Shows how to create a shortcut to site-search Experts Exchange using Google in the Chrome browser. This eliminates the need to type out site:experts-exchange.com whenever you want to search the site. Launch the Search Engine Menu: In chrome, via you…

777 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question