I have a web application using windows authentication. I also want to authenticate non-domain users against AD. Can I have domain members can enter site directly, and non-members enter their domain username and password.
How can I do this?
A:
Assuming your using ASP.NET, you can write a custom provider that first auths against your AD, then a non AD store.
Or you can use multiple providers, ActiveDirectoryMembershipProvider and then for example SqlMembershipProvider.
mxmissile
2010-03-27 21:43:30
Pretty sure this will require you to use Forms Authentication however.
mxmissile
2010-03-27 21:44:44
+1
A:
It is possible to do this but you probably want to have 2 distinct web applications running accessing a similar set of application code.
- Web application 1 is configured to use Windows authentication.
- Web application 2 is configured to use Forms authentication. You need to have some additional code in this application which allows a user to authenticate themselves using LDAP against the active directory. This code is placed in an authentication provider if you use ASP.NET.
BrianLy
2010-03-27 21:44:28