October 28, 2009

How do you use Single Signon on a IIS web site?

Platform: IIS 6 running on Windows Server 2003 SP2

Using ASP.NET built-in functionality, you can control access to your web site using Single Signon (SSO), also called CAS. When the web page loads, you validate the browser has a valid ticket, created by SSO. The Case Network ID then be used for authentication in Active Directory.

Continue reading "How do you use Single Signon on a IIS web site?"

How do you use Active Directory to control access to your web site?

Platform: IIS 6 running on Windows Server 2003 SP2

You have created an Active Directory Security group, and want to use it to control access to a web page.

ASP.NET allows integration of Windows services into the web site. When a web page loads, you can authenticate the credentials of the user. A person without the proper credentials is redirected to another web page. The script iterates through each member of the security group.

The security group looks like this in AD
AD_Tree.JPG


This is a VB.NET script, which will run on IIS. It validates a user is in an AD group. The ordering of the OU string is important. It goes from most granular to least granular.

Continue reading "How do you use Active Directory to control access to your web site?"