views:

291

answers:

2

Can an Active Directory be used as a OpenID provider? WIF is an option, but it's quite complicated and not very widespread.

+2  A: 

Yes, you can. Just host an ASP.NET web site that itself uses Active Directory authentication, and exposes an OpenID Provider using DotNetOpenAuth.

Andrew Arnott
Any links to some sample code for how to do this? The DotNetOpenAuth site has limited documentation.
steve_c
To do what, exactly? If you want to be an Active Directory relying party, you'll have to find AD documentation for that. If you want to (also) be a DotNetOpenAuth OpenID Provider, there are samples that come with the library to demonstrate that, and some limited documentation as you've said.
Andrew Arnott
A: 

There is also OpenID-LDAP server which claims to work with AD LDAP.

Vladimir Dyuzhev