Re: Authentication question

Tech-Archive recommends: Repair Windows Errors & Optimize Windows Performance

From: MP (martin.pare_at_I_Will_Not_Give_You_My_Address)
Date: 10/26/04

• Next message: Steve E.: "Render PDF to HTML on-the-fly?"
• Previous message: STech: "RE: LosFormatter"
• In reply to: richlm: "Re: Authentication question"
• Messages sorted by: [ date ] [ thread ]

---

Date: Tue, 26 Oct 2004 10:33:31 -0400

Thank you,
    We have no intention of using a single logon to our application. We are
aiming at domain accounts, AD.

    So far I can prompt the user to enter a user id, domain name and
password. The I validate these using LogonUser and then
I start our application using the user's information, the application is
started under the user's identity.... like runas will do.

    This works fine, but now we have 2 clients, one that uses smart-cards
and the other one that uses a fingerprint reader to authenticate the users
at logon. Is there a standard API I can use? or will I have to write a
custom module for each client?

Thank you!

"richlm" <rich_lm@h0tmai1.com> wrote in message
news:eOXBVesuEHA.2096@tk2msftngp13.phx.gbl...
> Need more information about your infrastructure to provide a sensible
> answer. Here are some 'leading' questions to make sure we're on the same
> track:
> - are you looking for single-sign-on?
> - when you are talking windows credentials does that imply AD & domain
> user accounts - or is this network a workgroup with just local machine
> accounts?
>
> Also a couple of pointers/ideas:
> - Generally you don't store passwords - you only ever store a hash of the
> password. After the hash of the password is verified, the password itself
> is discarded.
> If you do store passwords this is a BIG security risk.
> - Have you considerd ADAM (Active Directory Application Mode) as a
> possible alternative to SQL server?
> see
> http://www.microsoft.com/downloads/details.aspx?FamilyId=9688F8B9-1034-4EF6-A3E5-2A2A57B5C8E4&displaylang=en
>
>

---

• Next message: Steve E.: "Render PDF to HTML on-the-fly?"
• Previous message: STech: "RE: LosFormatter"
• In reply to: richlm: "Re: Authentication question"
• Messages sorted by: [ date ] [ thread ]

---

Relevant Pages Re: Authentication question ... We have no intention of using a single logon to our application. ... aiming at domain accounts, AD. ... The I validate these using LogonUser and then ... > user accounts - or is this network a workgroup with just local machine ... (microsoft.public.dotnet.security) Re: Authentication question ... We have no intention of using a single logon to our application. ... aiming at domain accounts, AD. ... The I validate these using LogonUser and then ... > user accounts - or is this network a workgroup with just local machine ... (microsoft.public.inetserver.iis.security) Re: Authentication question ... We have no intention of using a single logon to our application. ... aiming at domain accounts, AD. ... The I validate these using LogonUser and then ... > user accounts - or is this network a workgroup with just local machine ... (microsoft.public.dotnet.framework.aspnet.security) Re: Authentication question ... We have no intention of using a single logon to our application. ... aiming at domain accounts, AD. ... The I validate these using LogonUser and then ... > user accounts - or is this network a workgroup with just local machine ... (microsoft.public.dotnet.languages.vb) Re: UserAccountControl Attribute ... specific user objects (enabled user accounts) that appear to be missing those ... How can I view the attributes of the user objects in question? ... foreach (string parameter in Parameters) ... (microsoft.public.win2000.active_directory)

---

• Windows
• Science
• Usenet

• Archive
• About
• Privacy
• Search
• Imprint

www.tech-archive.net  > Archive  > DotNet  > microsoft.public.dotnet.framework.aspnet  > 2004-10