Expiring Today—Celebrate National IT Professionals Day with 3 months of free Premium Membership. Use Code ITDAY17

x
?
Solved

Most suitable authentication method for our IIS web application

Posted on 2014-09-25
3
Medium Priority
?
223 Views
Last Modified: 2014-10-10
We are designing a .Net web application which will primarily used by employees.  We are Windows environment and we would like users who log into the domain not need to subsequently log into the site but instead the site reference the logged in user's AD group affiliation to enforce security.

Some users external to our LAN will also need to access the application.  If they are logged into their non-company PC we would like for them to be prompted for their AD credentials.

What is the best authentication for this?  Also, how can I set my development environment (Visual Studio 2013 Pro) up to emulate this?
0
Comment
Question by:canuckconsulting
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
  • 2
3 Comments
 
LVL 9

Assisted Solution

by:Trenton Knew
Trenton Knew earned 2000 total points
ID: 40344497
I can't tell you exactly how to do it, but You should be able to use NTLM authentication, which would automatically log the person on if they are logged into a domain computer.  We use Passwordstate password manager and it uses this very method of authentication.  When I access it via a web browser, it never asks me for credentials if I'm myself logged into a domain computer, but people who are not authorized to use it get denied access.  Passwordstate runs on IIS and MSSQL, so I know it is possible.  I just can't give you more direction than that, unfortunately.
0
 
LVL 9

Accepted Solution

by:
Trenton Knew earned 2000 total points
ID: 40344506
the Default "Windows" authentication should do what you're looking for, no?

http://msdn.microsoft.com/en-us/library/134ec8tc(v=vs.90).aspx
0
 

Author Closing Comment

by:canuckconsulting
ID: 40373178
Default "Windows" authentication with disabled anonymous access was the ticket.  Thanks!
0

Featured Post

Stack Overflow Podcast - Developer Story

Welcome to the Stack Overflow podcast recorded Thursday July 20 at Stack Overflow Headquearters in NYC. Your hosts today are podcast regulars Jay Hanlon, David Fullerton, and Ilana Yitzhaki, plus the quite irregular Matt Sherman (Stack Overflow Engineering Manager extraordinaire)

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

A long time ago (May 2011), I have written an article showing you how to create a DLL using Visual Studio 2005 to be hosted in SQL Server 2005. That was valid at that time and it is still valid if you are still using these versions. You can still re…
If you are a web developer, you would be aware of the <iframe> tag in HTML. The <iframe> stands for inline frame and is used to embed another document within the current HTML document. The embedded document could be even another website.
Sometimes it takes a new vantage point, apart from our everyday security practices, to truly see our Active Directory (AD) vulnerabilities. We get used to implementing the same techniques and checking the same areas for a breach. This pattern can re…
In this video, Percona Director of Solution Engineering Jon Tobin discusses the function and features of Percona Server for MongoDB. How Percona can help Percona can help you determine if Percona Server for MongoDB is the right solution for …

718 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question