RE: User Authentication

Hi Alex,

Have you got any further progress on this issue or do you still have any
other questions?
If so, please feel free to let me know.

Sincerely,

Steven Cheng

Microsoft MSDN Online Support Lead


Delighting our customers is our #1 priority. We welcome your comments and
suggestions about how we can improve the support we provide to you. Please
feel free to let my manager know what you think of the level of service
provided. You can send feedback directly to my manager at:
msdnmg@xxxxxxxxxxxxxx

==================================================
Get notification to my posts through email? Please refer to
http://msdn.microsoft.com/en-us/subscriptions/aa948868.aspx#notifications.

==================================================
This posting is provided "AS IS" with no warranties, and confers no rights.
--------------------
Content-Transfer-Encoding: 7bit
From: stcheng@xxxxxxxxxxxxxxxxxxxx ("Steven Cheng")
Organization: Microsoft
Date: Mon, 06 Oct 2008 03:02:43 GMT
Subject: RE: User Authentication


Thanks for your reply Alex,

If you're using windows authenticaiton, most of them have been done by the
IIS and ASP.NET authentication modules and our application just need to do
some configuration work. Have you made it working?

One thing is that if you test if via Visual studio test server, it is
different from IIS that VS test server by default always use NTLM
authentiation and run under the logon user. While deploying in IIS, you
need to configure both IIS virtual directory and ASP.NET web.config to
make
sure windows authentication is used.

If you have anything unclear, please feel free to let me know.

Sincerely,

Steven Cheng

Microsoft MSDN Online Support Lead


Delighting our customers is our #1 priority. We welcome your comments and
suggestions about how we can improve the support we provide to you. Please
feel free to let my manager know what you think of the level of service
provided. You can send feedback directly to my manager at:
msdnmg@xxxxxxxxxxxxxx

==================================================
Get notification to my posts through email? Please refer to
http://msdn.microsoft.com/en-us/subscriptions/aa948868.aspx#notifications.

==================================================
This posting is provided "AS IS" with no warranties, and confers no rights.

--------------------

From: =?Utf-8?B?QWxleC4gTy4gS29yYW50ZW5n?= <AlexK@xxxxxxxxxxxxxxxx>
References: <0D3A95AD-7405-4BFE-ADE9-BE80AF42ABEE@xxxxxxxxxxxxx>
<F2ZtVASJJHA.1652@xxxxxxxxxxxxxxxxxxxxxx>
Subject: RE: User Authentication
Date: Fri, 3 Oct 2008 19:28:01 -0700


Steve,

Thanks for the suggestions. I am using using windows authentication. My
business scenarion will be something like described below:

I have created a simple web service like Hello word. Would like
authenticate
the user who is logged on, in this situation Alex-PC\test. If not show
invalid user credentials message.

Thanks

""Steven Cheng"" wrote:

Hi Alex,

From your description, you're developing an ASP.NET webservice(ASMX)
application, and wondering how to secuire the webservice application
such
as provide user logon authentication, correct?

Based on my experience, for ASP.NET webservice, you have the following
options for apply user logon authentication:

** Since ASP.NET web application are hosted in IIS server, therefore,
you
can using windows authentication which rely on the IIS's integrated
windows
authentication. IIS will do the authentication for client request and
then
forward the authenticated user info to ASP.NET application(your ASP.NET
application also set to "Windows" authentication so as to associate it
with each request Httpcontext).




.

Relevant Pages

  • Re: HELP PLEASE The request failed with HTTP status 401: Access Denied.
    ... Web Security: Part 2: Introducing the Web Application Manager, Client ... Authentication Options, and Process Isolation ... It introduces the Web Application Manager in IIS that ... logon session, which is dangerous. ...
    (microsoft.public.dotnet.framework.aspnet.security)
  • RE: Can no longer access ActiveSync
    ... OMA and Exchange/Exchange-OMA virtual directory. ... Please verify Authentication settings by the following steps. ... Open IIS Manager ... issue may be caused by the Exchange attribute of original user account. ...
    (microsoft.public.exchange.admin)
  • Re: Basic Authentication fails with Error 401.2 where Integrated s
    ... I didn't realise the Web Sites folder in IIS manager threw up a global ... sure that Basic Authentication is allowed to function on your server. ... ACCOUNTNAME, this is the account that I am trying to grant access to: ... Account: COMPUTERNAME\ACCOUNTNAME Access type: FULL ...
    (microsoft.public.inetserver.iis.security)
  • Re: SBS2k3 and activesync over the air
    ... the Exchweb virtual directory. ... ONLY 'Basic authentication' is selected ... please restart your IIS service and test your issue again. ... Regarding ActiveSync issue, support code 0x85010014 means error HTTP 500. ...
    (microsoft.public.windows.server.sbs)
  • Re: How can I set "remote_user" in ISAPI filter/Extension?
    ... HSE_REQ_EXEC_URL (ISAPI Extension functionality) is able to change the ... - ISAPI Filter requires Basic authentication configured, ... I have checked the new feature of IIS 6 Extension. ... No. Server Variables are read-only entities representative of the ...
    (microsoft.public.inetserver.iis.security)
Loading