Using ASP.NET built-in functionality, you can control access to your web site using Single Signon (SSO), also called CAS. When the web page loads, you validate the browser has a valid ticket, created by SSO. The Case Network ID then be used for authentication in Active Directory.

You have created an Active Directory Security group, and want to use it to control access to a web page.

ASP.NET allows integration of Windows services into the web site. When a web page loads, you can authenticate the credentials of the user. A person without the proper credentials is redirected to another web page. The script iterates through each member of the security group.

The security group looks like this in AD

This is a VB.NET script, which will run on IIS. It validates a user is in an AD group. The ordering of the OU string is important. It goes from most granular to least granular.