Active directory and security set up
Active directory and security set up
Active directory and security set up
Active directory and security set up
Active directory and security set up
Active directory and security set up Active directory and security set up Active directory and security set up Active directory and security set up Active directory and security set up Active directory and security set up Active directory and security set up Active directory and security set up
Active directory and security set up Active directory and security set up
Active directory and security set up
Go Back  Xtreme Visual Basic Talk > > > Active directory and security set up


Reply
 
Thread Tools Display Modes
  #1  
Old 03-26-2008, 02:09 PM
ADOUser ADOUser is offline
Regular
 
Join Date: Sep 2005
Posts: 53
Default Active directory and security set up


Is it a good practice to use Active directory authentication for external users? I understand that active directory can be used to authenticate Intranet users. What about Internet users accessing the websites from outside? Please provide me with info if anyone of you have any experience with this topic.
Reply With Quote
  #2  
Old 03-27-2008, 11:52 AM
shaul_ahuvaActive directory and security set up shaul_ahuva is offline
Ultimate Contributor

Retired Leader
* Expert *
 
Join Date: Jul 2003
Location: Camp Hill, PA
Posts: 1,992
Default

I wouldn't say it's good practice as much as finding the tool that fits the job. If you're using AD authentication for internal/admin users, then you most likely have the plumbing to do the same for external users.

ASP.NET and integrated authentication (Active Directory) aren't super-easy to set up correctly, however. The process ASP.NET runs under isn't initially allowed to access AD (i.e. make changes), and configuring the security to do so can be troublesome.

I've only ever seen integrated authentication used when the domain security (authentication) is directly tied to application security (authorization), and therefore it makes more sense to use one central store of credentials instead of trying to somehow logically tie two separate systems together. For example, SQL Server allows you to directly assign privileges to Windows users and groups - it doesn't use try to map users and groups in it's own security system (SQL Server authentication) to Windows security because it's an extra step that need not take place.
Reply With Quote
  #3  
Old 03-28-2008, 09:42 AM
ADOUser ADOUser is offline
Regular
 
Join Date: Sep 2005
Posts: 53
Default Active directory and Security

Thank you for your prompt reply. We are planning to use integrated authentication to have everything in on place. Like you mentioned to keep the domain security (authentication) directly tied to application security (authorization) is the plan. I heard a suggestion from a friend saying that keeping seperate acitve directory for Internal and external users is the best way. I am not a network expert,but I am trying to understand the overall picture before we start this big project. We have Oracle database and planning to convert all the existing applications to AsP.net apps. Ours is a financial institution with members (external users) of the system logging on to find out the money postings etc etc.

Last edited by ADOUser; 03-28-2008 at 11:34 AM. Reason: Adding more info
Reply With Quote
Reply


Currently Active Users Viewing This Thread: 1 (0 members and 1 guests)
 
Thread Tools
Display Modes

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is Off
HTML code is Off

Forum Jump

Advertisement:





Free Publications
The ASP.NET 2.0 Anthology
101 Essential Tips, Tricks & Hacks - Free 156 Page Preview. Learn the most practical features and best approaches for ASP.NET.
subscribe
Programmers Heaven C# School Book -Free 338 Page eBook
The Programmers Heaven C# School book covers the .NET framework and the C# language.
subscribe
Build Your Own ASP.NET 3.5 Web Site Using C# & VB, 3rd Edition - Free 219 Page Preview!
This comprehensive step-by-step guide will help get your database-driven ASP.NET web site up and running in no time..
subscribe
Active directory and security set up
Active directory and security set up
Active directory and security set up Active directory and security set up
Active directory and security set up
Active directory and security set up
Active directory and security set up Active directory and security set up Active directory and security set up Active directory and security set up Active directory and security set up Active directory and security set up Active directory and security set up
Active directory and security set up
Active directory and security set up
 
Active directory and security set up
Active directory and security set up
 
-->