Re: Accessing ActiveDirectory through LDAP with .NET

From: Paul Clement (UseAdddressAtEndofMessage_at_swspectrum.com)
Date: 12/28/04 

Date: Tue, 28 Dec 2004 09:56:11 -0600

On Mon, 27 Dec 2004 15:42:29 -0600, "Tim Mavers" <webview@hotmail.com> wrote:

¤ "Paul Clement" <UseAdddressAtEndofMessage@swspectrum.com> wrote in message
¤ news:r4r0t09m3obnfsr6l3mh4psd4q82lspj0j@4ax.com...
¤ > Is your web server (that is hosting your application) a member of the
¤ > domain that you need to
¤ > authenticate against?
¤
¤ No, that is the problem. The application runs at a separate site but the
¤ client wants their users to be able to log in with their local (domain)
¤ name/password (i.e. not a separately managed name/password for my app). I
¤ am trying to figure out a secure way of authenticating against the domain
¤ across the Internet.
¤
¤ In regards to LDAP, how does it address these types of issues? How would
¤ someone be able to authenticate against an LDAP server?
¤
¤ Is this even possible?
¤
¤ There are solutions where you set up a VPN and then have the company domain
¤ trust the domain the site runs under but that is pretty much out of the
¤ question as my client is not going to trust a foreign domain (from the
¤ datacenter) where IIS is running under.
¤

Well I have to scratch my head a bit about this scenario. It's rather difficult
to authenticate against a domain that you don't have access to. ;-)

I wish I had a better answer for you but the bottom line is that you don't have
direct access to an authentication mechanism for the client site. If all that
you need to do is validate credentials via LDAP you could use a Web Service, but
it would need to be running on the client site.

Paul ~~~ pclement@ameritech.net
Microsoft MVP (Visual Basic)

Relevant Pages

  • Re: Accessing ActiveDirectory through LDAP with .NET
    ... > Is your web server a member of the ... In regards to LDAP, how does it address these types of issues? ... someone be able to authenticate against an LDAP server? ... direct access to an authentication mechanism for the client site. ...
    (microsoft.public.dotnet.framework.aspnet.security)
  • Re: LDAP authentication with Internet Explorer
    ... authentication to LDAP natively (unless you are trying to use the LDAP:// ... IE talks to a web server. ... something else to attempt to the authenticate the user. ... Co-author of "The .NET Developer's Guide to Directory Services Programming" ...
    (microsoft.public.windows.server.security)
  • Re: ipfw plus authentication (authpf is cool but....)
    ... their ipaddress, mac address, workstation os, etc. in our ldap directory. ... gain network access is indeed belongs to that user. ... router first before being allowed to access any server. ... user will authenticate to a web based login form which is tied up ...
    (freebsd-questions)
  • Re: Trouble Authenticating users from trusted domains
    ... For the internal referrals, ... We have a new ERP system that can either authenticate with it's own user ... If you specify an LDAP server, ... >> login as a user from the child domain, ...
    (microsoft.public.win2000.active_directory)
  • RE: Cant authenticate to LDAP domain with Redhat9
    ... it is more used by the authconfig ... sure you can reach your ldap server with ldapsearch, ... Cant authenticate to LDAP domain with Redhat9 ...
    (RedHat)