Re: Is forms authentication valid in sps (or even wss)

Tech-Archive recommends: Repair Windows Errors & Optimize Windows Performance

From: Martin (martin_NO_SPAM_WANTED_at_martinz.co.nz)
Date: 02/28/05 

Date: Tue, 1 Mar 2005 12:33:08 +1300

Hi Daniel,

I just looked at your blog and found the topic

"Using non-Windows authentication with WSS"
which seems to be what I was looking for.
this is an interesting solutions (I had already had it suggested to me to
write an isapi filter..)

Perhaps I need to re-look at my active directory arrangement.
I guess ISP's that host large sharepoint deployments have to manage their
security wisely and I guess this is a topic that I should read up on.

I was also interseted in your articles on site definitions which is an area
that I am currently looking at in great detail.

on a seperate point, I noticed that you are speaking at Denver .NET User
Group.
do you make these availble over the internet???

also how were you about to add the "Portal Solutions" after you name as in

Presenter: Daniel Larson, MCAD, MCSD for .NET, Portal Solutions

as far as I am aware there are no mcp exams for the portal (although I may
be wrong.)

cheers

martin.

"Daniel Larson (www.portalbuilder.org)"
<daniel@larsontechnology.spamfree.com> wrote in message
news:9CBD0C53-D368-40BD-BE7E-CF8B3F441E5F@microsoft.com...
> Yes, you absolutely can use custom authentication with WSS and SPS. It is
> NOT
> "pure" forms Authentication as you have in "traditional" ASP.NET apps-- it
> IS
> a custom implementation that you have to do.
>
> Been there, done that. Should you? Maybe, maybe not. It COMPLETELY depends
> on your situation. There are implications and effects of this approach,
> and
> based on your scenario it sounds like a better approach would have to do
> with
> Windows Security and a better AD infrastructure.
>
> Regardless, I have some details on this approach (custom authentication in
> WSS/SPS) on my blog that should get you started (url below).
>
> Daniel Larson
> http://www.portalbuilder.org
> xblox live: death angel
> ***********************************************************
> Read the PortalBuilder SharePoint Developer Series at
> http://www.portalbuilder.org.
> ***********************************************************
>
>
> "Martin" wrote:
>
>> Hi,
>>
>> I would like to ask if sharepoint portal server (or even wss) can be used
>> with forms authentication.
>> After all sharepoint is just an asp.net application, it has a web config
>> file with an authorization elements.
>>
>> I have noted however that there is no global .asax page on a site so I
>> guess
>> any custom authentication that anybody wanted to do in
>> Global_AuthenticateRequest would be out, but this is no big deal.
>>
>> My senario is this.
>>
>> The comapny I work for has 200+ clients and would like to build a portal
>> site that can be accessed, in a secure manner, by each of these 200+
>> clients.
>> Now I could add these 200+ clients to active Directory, however that
>> would
>> then mean that they have a login to my LAN / DOMAIN.
>>
>> No problem really because none of these people ever access the comapny
>> building and try to connect to the network.
>>
>> However, I have pages on a seperate company web site that can only be
>> accessed by employees, these pages must remain confidential.
>> These pages use integrated security (windows authentication) and so can
>> now
>> be accessed by anybody with a login to my network -- which now includes
>> the
>> 200+ clients who I have just set up in AD.
>>
>> Now I realize that I could probabally block access to the confidential
>> stuff
>> via organizational units and denying access.
>> However I can see this solution becoming messay.
>>
>> My point here is that the original 200+ clients don't belong in AD, so
>> why
>> should I put them there just so they can have access to the portal,
>> unless I have totally missed something and this is the way (and the only
>> way) that sharepoint is meant to keep users.
>>
>> on the reverse of this, I though that if a user was not in AD,
>> potentially
>> their login credentials would not be picked up and this may affect things
>> like trying to pick up a users login credentails from a custom web part
>> or
>> access to the SSO service.
>>
>> I would greatly appreciate some advice.
>>
>> cheers
>>
>> martin
>>
>>
>>
>>
>>
>>
>>
>>
>>
>>
>>
>>
>>
>>
>>
>>
>>
>>
>>
>>
>>
>>
>>
>>
>>
>>
>>
>>

Relevant Pages

  • RE: Is forms authentication valid in sps (or even wss)
    ... you absolutely can use custom authentication with WSS and SPS. ... Read the PortalBuilder SharePoint Developer Series at ... > The comapny I work for has 200+ clients and would like to build a portal ...
    (microsoft.public.sharepoint.portalserver.development)
  • Re: How do I add external users?
    ... Active Directory. ... Sharepoint, you must set up Custom Authentication. ...
    (microsoft.public.sharepoint.portalserver)
  • Re: ADAM handshaking very slow in a DMZ
    ... This is similar to what I see in SharePoint myself. ... This forms authentication piece just directs ... It also looks from your trace ... Key Exchange, Change Cipher Spec, Encrypted Handshake Message" ...
    (microsoft.public.windows.server.active_directory)
  • Authentication Issues with Vista Clients
    ... I'm having an authentication issue with one specific user...we run SBS 2003 ... he's having issues with Sharepoint. ... and logged in with his account, I've noticed it's doing it on them, too. ... account on all three Vista workstations and not the XP workstation. ...
    (microsoft.public.windows.server.sbs)
  • RE: Why authentication before opening a document in document library
    ... I suggest we perform the following steps to resolve this issue. ... Add the SharePoint site to the trusted site ... Add the URL of the SharePoint site to the trusted sites list. ... please check the Authentication type of the IIS virtual server. ...
    (microsoft.public.sharepoint.portalserver)