RE: OLAP, Forms Auth and OWC

Tech-Archive recommends: Repair Windows Errors & Optimize Windows Performance

From: James (news_at_att.com)
Date: 08/11/04

• Next message: Bob: "Re: Displaying OWC Picture"
• Previous message: Ed Browning: "Excel Charting Engine Licensing"
• In reply to: Wei-Dong XU [MSFT]: "RE: OLAP, Forms Auth and OWC"
• Next in thread: Wei-Dong XU [MSFT]: "RE: OLAP, Forms Auth and OWC"
• Reply: Wei-Dong XU [MSFT]: "RE: OLAP, Forms Auth and OWC"
• Messages sorted by: [ date ] [ thread ]

---

Date: Wed, 11 Aug 2004 04:41:01 -0700

The link shows me a method that I can use to authenticate a user. However, I
still cannot impersonate a Windows user. Quote: "store a GenericPrincipal
object in the HttpContext.User property". The http context isn't what is used
by Analysis Services to check security.

"Wei-Dong XU [MSFT]" wrote:

> Hi,
>
> From my understanding, your issue is when the user logons into the server
> through Form authentication of ASP.net. SQL server Analysis service can't
> distinguish which logon user is the manager or the normal user, the
> authenticated windows principal object is aspnet not windows account, so
> the data retrieved from server is all the same.
>
> So I'd suggest you can follow the kb article below to check the user
> windows account after the form authentication. This authentication will
> obtain the logon user credential and then validate it from Active
> directory; so after that, the request will use the windows account as its
> security credential so that AS will know which user is the manager and
> others are not.
> 316748 How to authenticate against the Active Directory by using Forms
> http://support.microsoft.com/?id=316748
>
> Please feel free to let me know if you have any question.
>
> Best Regards,
> Wei-Dong Xu
> Microsoft Product Support Services
> Get Secure! - www.microsoft.com/security
> This posting is provided "AS IS" with no warranties, and confers no rights.
>
>

---

• Next message: Bob: "Re: Displaying OWC Picture"
• Previous message: Ed Browning: "Excel Charting Engine Licensing"
• In reply to: Wei-Dong XU [MSFT]: "RE: OLAP, Forms Auth and OWC"
• Next in thread: Wei-Dong XU [MSFT]: "RE: OLAP, Forms Auth and OWC"
• Reply: Wei-Dong XU [MSFT]: "RE: OLAP, Forms Auth and OWC"
• Messages sorted by: [ date ] [ thread ]

---

Relevant Pages Re: EAP-TLS with windows CE ... The AP was sending out an Identity Request every second, ... request to the identification server. ... When the server asks the Windows CE device to identify itself, ... I could easily steal your authentication information. ... (microsoft.public.windowsce.platbuilder) Re: server authentication & ASP authentication ... on to the client workstation with an authorized Windows account. ... SQL Server with Windows authentication. ... (microsoft.public.sqlserver.security) Re: ADFS Development Issues ... site to be automatically authenticated by our windows application so ... based on redirects and possibly uses forms-based authentication to collect ... web service proxies don't handle this type of thing ... the server based on how it needs to work. ... (microsoft.public.windows.server.active_directory) Re: Change in ASP.Net authentication between Win2000 and Win2003 ... > is turning on/off Kerberos is occuring. ... It control how IE deals with "Authentication: ... when you put IIS6 in a domain and have "Integrated Windows Authentication" ... (microsoft.public.windows.server.security) Re: Change in ASP.Net authentication between Win2000 and Win2003 ... > is turning on/off Kerberos is occuring. ... It control how IE deals with "Authentication: ... when you put IIS6 in a domain and have "Integrated Windows Authentication" ... (microsoft.public.inetserver.iis.security)

---

• Windows
• Science
• Usenet

• Archive
• About
• Privacy
• Search
• Imprint

www.tech-archive.net  > Archive  > Office  > microsoft.public.office.developer.web.components  > 2004-08