Velocity Reviews - Computer Hardware Reviews

Velocity Reviews > Newsgroups > Programming > ASP .Net > ASP .Net Security > Forms Based Authentication and AD and Roles and Security Trimming!

Reply
Thread Tools

Forms Based Authentication and AD and Roles and Security Trimming!

 
 
Eric
Guest
Posts: n/a
 
      11-01-2006
Hello there,

I've looked everywhere and cannot find a solution to this. Have you
seen an implementation of forms based authentication to AD WITH roles
WITH security trimming? Would you recommend this? How do you go about
it?

So, I've implemented Forms Authentication w/ Active Directory as per
the following article:
http://msdn.microsoft.com/library/de...AGHT000026.asp.
I'm wondering what options are available to me if I'd like to use
securitytrimming=true via roles. I attempted to implement the
sqlroleprovider and did not have much luck. It would never show me ANY
links (even after being logged in and being a part of the permitted
roles). Can you tell me what you've implemented or have seen
implemented using forms authentication w/ active directory for
roles/security trimming?

Some background: I'm developing an "intranet" app that both employees
and students will be using. I'm putting it into one app because
certain tasks will be utilized by both employees and students. What
would you recommend in my situation? I've chosen forms based
authentication because we will have students logging in and they may
not be on the domain... the windows authentication prompt that pops up
for integrated windows auth doesn't tell them to use their student ID
and it's just not friendly. I'm thinking my problems would be solved
if I just made it two separate apps but problems with that include:
knowing 2 separate addresses, developing the same code for 2 separate
apps, etc. My problem with this is that I'm duplicating code and our
intranet users would be confused as to where to go to do what.

Personally, I'm fine with using AD or SQL for the role store. I would
think SQL would be faster and using the sqlroleprovider would give me
more benefits such as methods to add a user to a role, etc.

Thanks for any advice!

 
Reply With Quote
 
 
 
Reply

Thread Tools

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is On
HTML code is Off
Trackbacks are On
Pingbacks are On
Refbacks are Off


Similar Threads
Thread Thread Starter Forum Replies Last Post
Best practices for using forms authentication and security in a hosted env (was: Re: Using a Forms authentication in a shared hosting environment) JEFF ASP .Net 1 11-12-2007 07:00 PM
forms authentication -- expired forms cookie vs. not provided forms cookie Eric ASP .Net Security 2 01-27-2006 10:09 PM
How Do I Implement Roles For Forms-Based Authentication? Joey ASP .Net 2 10-26-2005 08:52 AM
NT based roles using forms authentication Sharat Koya ASP .Net 3 08-13-2004 06:58 PM
Forms Authentication based on roles. Luis Esteban Valencia Muņoz perrohijueputa@hotmail.com ASP .Net Security 0 08-09-2004 06:26 PM



Advertisments