Last post Oct 11, 2017 09:40 AM by Cathy Zou
Oct 10, 2017 04:18 PM|bigmac025|LINK
Simple question I believe... To use Windows Authentication in a ASP.NET web application (company intranet) are clients required to be connected to a company domain? I have spent a lot of time researching and I believe the answer is yes, but I just wanted
I currently work for a small company and we are getting ready to join all the computers to the domain, but not quite there yet. I would like to start enabling security on some of our web pages on the company intranet grabbing the clients Windows login (Windows
local login) and checking against Active Directory Groups to permit the user to view the page, but it looks like that is not possible until the client is connected to the domain for Windows Authentication. If this is the case what options do I have for intranet
security until all the clients are connected to our company domain? Is Forms Authentication my only choice now? Still learning ASP.NET so any help would be appreciated.
Oct 10, 2017 04:46 PM|PatriceSc|LINK
I believe it could perhaps work if the local account have the same name and password than the domain account. My understanding is that you are trying to log user of non domain joined machines to log to a web server that is domain joined ?
A network admin forum could be better.
Oct 11, 2017 09:40 AM|Cathy Zou|LINK
To use Windows Authentication in a ASP.NET web application (company intranet) are clients required to be connected to a company domain? I
In intranet applications inside your corporate domain, you typically use Windows authentication. Windows authentication enables Web applications in a Windows domain to take advantage of the domain infrastructure for authenticating users. However, do not
use Windows authentication if users who must be authenticated access your Web site from behind firewalls and proxy servers.
Integrated Windows Authentication is the preferred approach to authentication whenever users are part of the same Windows domain as the server
In ASP.NET, you set authorization to the application by adding settings in the Web.config file. You can specify which users or groups are permitted to have access to what resources
If this is the case what options do I have for intranet security until all the clients are connected to our company domain? Is Forms Authentication my only choice now?
Yes, clients not connected to company domain, Forms Authentication is your choice for you to implement authorization.