Solved

Most suitable authentication method for our IIS web application

Posted on 2014-09-25
3
203 Views
Last Modified: 2014-10-10
We are designing a .Net web application which will primarily used by employees.  We are Windows environment and we would like users who log into the domain not need to subsequently log into the site but instead the site reference the logged in user's AD group affiliation to enforce security.

Some users external to our LAN will also need to access the application.  If they are logged into their non-company PC we would like for them to be prompted for their AD credentials.

What is the best authentication for this?  Also, how can I set my development environment (Visual Studio 2013 Pro) up to emulate this?
0
Comment
Question by:canuckconsulting
  • 2
3 Comments
 
LVL 9

Assisted Solution

by:Trenton Knew
Trenton Knew earned 500 total points
Comment Utility
I can't tell you exactly how to do it, but You should be able to use NTLM authentication, which would automatically log the person on if they are logged into a domain computer.  We use Passwordstate password manager and it uses this very method of authentication.  When I access it via a web browser, it never asks me for credentials if I'm myself logged into a domain computer, but people who are not authorized to use it get denied access.  Passwordstate runs on IIS and MSSQL, so I know it is possible.  I just can't give you more direction than that, unfortunately.
0
 
LVL 9

Accepted Solution

by:
Trenton Knew earned 500 total points
Comment Utility
the Default "Windows" authentication should do what you're looking for, no?

http://msdn.microsoft.com/en-us/library/134ec8tc(v=vs.90).aspx
0
 

Author Closing Comment

by:canuckconsulting
Comment Utility
Default "Windows" authentication with disabled anonymous access was the ticket.  Thanks!
0

Featured Post

What Is Threat Intelligence?

Threat intelligence is often discussed, but rarely understood. Starting with a precise definition, along with clear business goals, is essential.

Join & Write a Comment

Suggested Solutions

Title # Comments Views Activity
Expando 4 33
Please explain: Aspect Oriented Programming 2 51
Handle null when using linq in this line 1 20
Problem to page 4 17
User art_snob (http://www.experts-exchange.com/M_6114203.html) encountered strange behavior of Android Web browser on his Mobile Web site. It took a while to find the true cause. It happens so, that the Android Web browser (at least up to OS ver. 2.…
Today I had a very interesting conundrum that had to get solved quickly. Needless to say, it wasn't resolved quickly because when we needed it we were very rushed, but as soon as the conference call was over and I took a step back I saw the correct …
This video demonstrates how to create an example email signature rule for a department in a company using CodeTwo Exchange Rules. The signature will be inserted beneath users' latest emails in conversations and will be displayed in users' Sent Items…
You have products, that come in variants and want to set different prices for them? Watch this micro tutorial that describes how to configure prices for Magento super attributes. Assigning simple products to configurable: We assigned simple products…

743 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question

Need Help in Real-Time?

Connect with top rated Experts

18 Experts available now in Live!

Get 1:1 Help Now