Re: Using Windows Authentication in ASP.NET - Adding properties to users

I'm confused as AspNetAccessProvider is for microsoft Access.

I don't actually want to extract any information from active directory I
just wanted to use the windows log in name and associate this with user
details held within the application. I presume I could have done this using
a combination of the records in aspnet_Membership aspnet_Users with another
user table.



"Alexey Smirnov" <alexey.smirnov@xxxxxxxxx> wrote in message
news:1172585213.378603.92260@xxxxxxxxxxxxxxxxxxxxxxxxxxxxxx
On Feb 27, 2:08 pm, "Matt Adamson" <Adamson_Matt...@xxxxxxxxxxx>
wrote:
Thanks Alexey

However how would I use the existing user store from the membership API
i.e.
there are user tables

1) aspnet_Membership
2) aspnet_Users

No, I suggested to use "Windows authentication", not a "Form
authentication".


Should I create a new User table which contains the windows log in name
e.g.
MICROSOFT\BGATES and then use a record in the member ship tables for
other
data such as full name / email address e.t.c.?


Yes, my idea was to use such tables like AspNetAccessProvider does,
where you can assign MICROSOFT\BGATES to his roles. At the same time,
all information like full name / email address and so on is available
in Active Directory (AD) and this can be a second approach you have to
think of. I said nothing about it in the first post because this way
could be more complex to implement. In this case you can call the
information about group membership, and user profile directly from AD.
How to do that - please google for "ASP.NET Active Directory" - I'm
sure you can find many simple examples you can test. In my experience,
it is better to work with AD through a custom COM+ (can be developed
e.g. in VB6) because of the security reasons. All AD-related functions
could be included in this COM+ and used from ASP.NET. I can give you
more details later on if you'll decide to go this way...



.

Relevant Pages

  • Re: Looking to verify users via Active Directory
    ... I'll have an Admin ... How do I search the Active directory? ... Here is a sample that what use lets you test group membership ...
    (microsoft.public.access.modulesdaovba)
  • Re: Active directory groups refresh question
    ... There is a difference between querying your local token and querying Active Directory for the list of current groups. ... an access token is created that has the users SID and all SIDs of the groups that the user is a member of. ... in VB.NET 2005 that checks the current user's group membership in Active ...
    (microsoft.public.windows.server.active_directory)
  • Help and Advice
    ... membership in Active Directory. ... My menu populates with the foll parent nones ... I have the foll groups in Active Directory ... So if you are a member of gpAccounting and gpMarketing then the respective ...
    (microsoft.public.dotnet.framework.aspnet.security)
  • Error when compiling an audience
    ... When compiling an audience based on an Active Directory group I get ... An error occurred while attempting to update audience membership. ... Unable to retrieve group membership from Active Directory directory ...
    (microsoft.public.sharepoint.portalserver)