Using "Windows" authentication to authenticate BUT "Forms" to maintain the user's session?

Is there a way to do this?

Basically I want to ensure and pick up users who are already authenticated via AD but use Forms Authentication under the covers once they've been authenticated.  Ideally I'd like to roll this into a custom membership provider so that both internal users (who will have already logged into their machines and been authenticated via AD) and outside users (who will need to use a login control provided on a page) both can have their sessions as maintained in the same way ... AND be associated and use a common roles and profile provider.

Any help would be appreciated?

Thanks - wg
 

0
wgpubs
9/6/2007 12:24:17 AM
asp.net.security 27051 articles. 1 followers. Follow

1 Replies
767 Views

Similar Articles

[PageSpeed] 30

Check out this article:

Mixing Forms and Windows Authentication 


Darrell Norton, MVP
Darrell Norton's Blog


Please mark this post as answered if it helped you!
0
DarrellNorton
9/6/2007 11:58:22 AM
Reply:

Similar Artilces:

What's with "~/" and NOT "~/" ?
In trying to deplay test projects to my provider (GoDaddy) I'm finding a consistent barfness with the form of reference that I read as "in this directory, this file"  or "~/filename.filetype". I am having to consistently strip the "~/" to make it work.Is there a way to strip off this type of reference through a preference? In the past, I've been led to believe that "filename.filetype" when in the same directory was just FINE as that -- no need for this "~/".Hints, direction, etc. welcomed and appreciated in advance ... mahalos .....

"Using" or "With"
Hi all Please can someone enlighten to me as regards the difference with the "Using" and "With" statement when accessing data - which is better, what are the limitations and/or any pointers. Many thanks. Regards DaveDavid WinchesterPlease mark as answer if this is the solution.  using gives you the ability to use the connection and it closes the connection directlly after you finish using it. and there is no need to try- cach - finaly. there is no limitation on using USING keywordMuhanad YOUNISMCSD.NETMy Blog || My Photos || LinkedIn I have a dataobject the re...

Using "+" or "||"
Using SQLAnywhere 5.5.04, I've gotten into the habit of using "||" in ISQL to indicate a string concatenation. I needed to paste my SQL statement into the PowerBuilder script painter for some embedded SQL, and PB didn't like the "||" very much at all. I changed it to "+" and it seems to be ok. Do these two operators indicate ~exactly~ the same thing? moin, afaik these two's are not the same! if you're using "||" and any term is NULL then in the resultstring the term will be ignored if you use "+" then the resu...

superreview granted: [Bug 225809] Don't fall back to insecure authentication if "use secure authentication" is checked : [Attachment 136279] patch addressing mscott's comments
Lorenzo Colitti <lorenzo@colitti.com> has granted Lorenzo Colitti <lorenzo@colitti.com>'s request for superreview: Bug 225809: Don't fall back to insecure authentication if "use secure authentication" is checked http://bugzilla.mozilla.org/show_bug.cgi?id=225809 Attachment 136279: patch addressing mscott's comments http://bugzilla.mozilla.org/attachment.cgi?id=136279&action=edit ------- Additional Comments from Lorenzo Colitti <lorenzo@colitti.com> Carrying forward r= and sr= ...

Problem with Using Forms Authentication to Secure Subdirectory
Ok first let me say that this is a typical rented server off DiscountASP.net so I dont have direct IIS manager access. My app is pretty simple. I have the root / and a /Admin subfolder that I will allow the client to edit data on the customer interface. Mostly simple price listings. I want to restrict access to the /Admin folder obviously but leave the rest of the site wide open. I'm getting the following error. I only have one web.config file in the root. and the Admin subfolder is just a simple subfolder I created myself. Do I have to create the ADmin folder as its own application? I w...

.ALLCOL("%COLUMN%", " ", ", ", ", ")
Do you know anyway for me to exclude a subset of columns returned by this function. We have two columns (rec_user and rec_datetime) which are in all of our tables, but when generating triggers I want automatically generate a script which does not include those two columns but does include all other columns in that table. Bruce I should add that I am using PD 9.0.0.580. Bruce "Bruce Lamb" <lamb.bruce@mayo.edu> wrote in message news:6HgI315nCHA.155@forums.sybase.com... > Do you know anyway for me to exclude a subset of columns returned by this > function. ...

Precedence of "where" ("of", "is", "will")?
Nobody on #perl6 today could answer this one. Is: Str | Int where { $_ } the same as: (Str | Int) where { $_ } or: Str | (Int where { $_ }) ? Followup questions, Mr. President: What kind of operators are "where", "of", "is", and "will"? Is there a reason that S03 doesn't list them? What are their precedence(s)? -- Chip Salzenberg - a.k.a. - <chip@pobox.com> Open Source is not an excuse to write fun code then leave the actual work to others. Chip Salzenberg writes: &...

Changing 'Window.Status' using Session("UserName") [Authentication issue]
Hi, I would like to have a Javascript which changes the Browser statusbar (Window.Status) based upon whether the Session User is currently logged in or not... (called from a User Control, something like: <script> if ( Request.IsAuthenticated ) { self.status = ' Session( "UserName" ) '; return true; } </script> Could someone out there with better ASP.NET and JavaScript skills than I help me out? (Maybe I need a custom Event in the logon User Control?) Much appreciated! Dobe http://dobedoinat.com...

Deleting "to's" and "from's" on emails
Name: Rae McFarland Email: larryatmacsmachinedotcom Product: Firefox Summary: Deleting "to's" and "from's" on emails Comments: There doesn't seem to be a way to edit and email and then forward it. Some people send something I'd like to forward, but there's a whole page of previous mailing addresses. I'd like to delete them before forwarding. I've tried and the whole email gets deleted. Browser Details: Mozilla/5.0 (Windows; U; Windows NT 5.1; en-US; rv:1.8.1.16) Gecko/20080702 Firefox/2.0.0.16 From URL: http://hendrix.mozi...

Here's a headscratcher! "I" and "*"
We have a user, all of a sudden whenever he types in the body of a message from GroupWise (6.5.5), he can't type the letter "I" as in "me myself and I." When he does, what appears instead of an I is either an asterisk (*) or a dash (-). It's the wierdest thing and I can't find anything to even remotely describe this situation. At first I suspected his keyboard but he does not have this issue typing in Word or other applications, just GroupWise. Anyone ever see this? What in the world is going on there? (By the way, it's a really funny situa...

quotes, quotes, quotes...
I am getting this error and I know what is causing it, but I have no idea how to fix it, any help would be great. The script steps through the /var/log/messages file on a linux server and puts The entries into a mysql database. However when it gets to the 'hlt' line in the messages file it just barfs. The single quotes are freaking it out. I know about quotes but not how to use in this situation. Thanks, Paul Error: May 27 17:53:00 localhost kernel: Checking 'hlt' instruction... OK. <----- doesn't like this in the messages file DBD::mysql::st exec...

RFC: interactions between "use bytes", "use locale", and "use feature 'unicode_strings'
I am waiting for blead to reopen before I submit a patch for extending feature unicode_strings to matching \s, and \w. In documenting it, it occurred to me that the existing implementation is wrong, along with the existing interaction between use bytes and use locale. To refresh your memory, "use feature 'unicode_strings'" is supposed to mean that even non-utf8 data is to be considered to have Unicode semantics. In practice, this only affects the characters from 128-255. It is new in 5.12, and is implemented there only on functions that change case, such a...

<authentication mode="Forms">forms name=".AUTHCOOKIE"
Hi there, I used authentication mode="Forms" with AUTHCOOKIE. my web.config looks like this <system.web> <authentication mode="Forms"><forms name=".AUTHCOOKIE" loginUrl="default.aspx" protection="All" /> </authentication><machineKey  validationKey="AutoGenerate" decryptionKey="AutoGenerate" validation="SHA1" /><authorization> <deny users="?" /> </authorization>   </system.web>    So far so good, but ... I have a f...

Whan can i do? make "string" data type convert to "window" data type, and use a "window" name to get it ancestor "window name", thanks! i use pb5
Rich, With a string window name, you can open a window of that type if you need to. You could, of course, query that window object for any attributes. Another option is to use the LibraryExport function to export the definition of the window which is specified by the string. You can then parse the resulting file to get information on the ancestor object. HTH Sanjiv. "Rich" <windows_ce@netease.com> wrote in message news:2Xsr1WW0AHA.178@forums.sybase.com... > > > ...

Web resources about - Using "Windows" authentication to authenticate BUT "Forms" to maintain the user's session? - asp.net.security

Resources last updated: 12/8/2015 1:36:11 PM