I'm there Steve.  Particuarly interested in parsing all trusted domains to the root.  Will help with anything.

Wallew

Hey All,

Having some problems installing this today.

1.) Installed the PA

2.) Added the PA, and checked Windows Auth, and the provider from drop down list.

3.) I made the web.config changes

4.) Set the permissions (a little confused by installation document):-

•  Set the \DesktopModules\Authentication\Logon.aspx to not allow anonymous users (windows auth only)

Is this the only change for permissions, should the root folder be anonymous and windows auth checked?

5.) Ran the site

The problems I am having:-

* It does not auto-login. I have to navigate to DesktopModules\Authentication\Logon.aspx which does log me in successfully (and creates my account). I added the site to my list of trusted sites because it contains the period character in the url.

* When I logout, and try to login as a user e.g. host/host, it does not let me in.

* When I try to view the User Manager I get a FormatEmail error (does this pull back users live from AD?) Some accounts might not have an email address.

Anyone experienced the above problems?

to get it to autologin - i think you need to change the web config from forms authentication to windows authentication - this should then log you in - however - you cant then logout and login as host

Mixed mode is not done yet - see above for more info

Mixed mode isn't done yet???     Seems to be working for me....

I open the page, it logs me in using local credentials... I logout...  I hit login again, I can login as host/host.   I then run the winlogon.aspx off the root, and it reauthenticates with AD.

Is mixed mode that you are talking about where you can choose which one to log on to, where it doesn't try to just force you into AD if it's enabled?

PTEKelly wrote:

to get it to autologin - i think you need to change the web config from forms authentication to windows authentication - this should then log you in - however - you cant then logout and login as host Mixed mode is not done yet - see above for more info

Mixed Mode "does" work, but not very well.  On my Intranet, it works great.  Accessing it from the Internet, however, you have to go to the URL, wait for the error message, and then go to that URL again without closing the window.

Not ready for actual use, but you can get it working at least.

It seems to me that if you could change the default login back to the way it was (not logged in by default), and then create a custom login page allowing login to both AD and DNN users, it would work with no code modifications.  But, I have no idea on how to do that.

Imsoccrman wrote:

Scott... Did you leave the IIS settings to allow anonymous ? If you do not enforce the Windows Authentication to occur by removing anaonymous from the root of the web site then it will act as you described I believe.

I left it at anonymous because I wanted mixed mode, is that how people using mixed mode set it up?

Revlis wrote:

Mixed mode isn't done yet???     Seems to be working for me.... I open the page, it logs me in using local credentials... I logout...  I hit login again, I can login as host/host.   I then run the winlogon.aspx off the root, and it reauthenticates with AD. Is mixed mode that you are talking about where you can choose which one to log on to, where it doesn't try to just force you into AD if it's enabled?

Where is winlogon.aspx? It the private assembly I installed it had a logon.aspx but that was down at the desktopmodules\authentication level

Revlis wrote:

Mixed mode isn't done yet???     Seems to be working for me.... I open the page, it logs me in using local credentials... I logout...  I hit login again, I can login as host/host.   I then run the winlogon.aspx off the root, and it reauthenticates with AD. Is mixed mode that you are talking about where you can choose which one to log on to, where it doesn't try to just force you into AD if it's enabled?

Apologis all round - i dont use it at alike this - we just have windows auth and dont need mixed.  i was going by what is posted above and what i read in other posts.  it is entirely possible that i miss-understood those posts (i shouldnt really jump in when i dont know the full details - me bad)

Pk

What I did was set the IIS Settings and Checked windows authentication and anonymous.

Then on the Logon.aspx Page under DesktopModules\Authentication, set IIS properties on that file for just windows authentication.

Then I hit the Logon.aspx page directly (http://mysite/DesktopModules/Authentication/Logon.aspx) and it
worked.  It automatically logs me into the AD.I

I think the "mixed mode" that tam was working on was adding LDAP-style, entering username/password instead of autologon.  Not sure where that is though since we haven't heard from Tam lately.

Eventhough it used autologon, I was still able to go to the Account Logon page and log in as admin instead, so it is picking up both types of authentication.

Nathan

nitro001 wrote:

Then I hit the Logon.aspx page directly (http://mysite/DesktopModules/Authentication/Logon.aspx) and it worked.  It automatically logs me into the AD.I

Yep, that page works for me (e.g. it logs in), but how do you force your users to hit that page when browsing your site.

smcculloch wrote:

Yep, that page works for me (e.g. it logs in), but how do you force your users to hit that page when browsing your site.

I created a custom login page where there are two options. 

1.  Log on using DNN account (normal login).

2. A link that points to the winlogon.aspx file (quoted in the documents) to log on using an AD account.

My goal is to have everyone, by default, browse the site anonymously until they login.  When they go to the login page, they have those two options.

If I can figure out how to disable the initial automatic login, I'm set.

Once you hit it the first time, it should be set that way, however, what I forgot is that if you use the other logon method after, it will reset itself and you will have to hit the logon.aspx page again.

If that is not setting for you, maybe create a default.htm page with a redirect to the login.aspx page, which will then auto-redirect you to the DNN main page.  then set the default.htm page as the primary page for the site.

I'm working on this (custom login page with option for AD or DNN authentication)

Hope it will be available end of this week

Tam