tags:

views:

769

answers:

2
Q: 

User.Identity.Name is not returning the correct credentials when using Windows Authentication in ASP.NET MVC

I am using Windows Authentication in my ASP.NET MVC application and I am prompted to enter credentials on my webserver which is a domain member [I have domain credentials and can authenticate fine] however when my controller action calls "User.Identity.Name" in an attempt to check a database value against the currently logged in user this is returning the SAM Account from the local machine and NOT the SAM account from the DOMAIN:

Local machine user name (which User.Identity.Name returns): LOCALPC\username

What I am expecting (which is what I am authenticating against AD as): DOMAIN\username

This causes me problems because I cannot accurately verify a user using only the username.

Am I missing something, is there a way to return what I am currently authenticated as to the webserver as opposed to what the local SAM account is on the client machine?

The reason this is important is because not all the intranet application clients will be domain joined (machines that aren't domain joined but belong to users with AD accounts).

A: 

When prompted in your web browser enter "DOMAIN\username" instead of just "username" for the authentication.

EDIT:

Is this a development server? Check the account that IIS is running on. Did you configure impersonation in web.config?

chris  2009-04-22 06:16:20
If both users have the same password, this is the case, yes. If not, it shouldn't make a difference.
Martin C.  2009-04-22 06:24:05
I always authenticate as DOMAIN\username, however User.Identity.Name apparently doesn't cache 'DOMAIN\username' and just returns 'LOCALPC\username' when asked for the name again (which is the issue) they aren't the same strings so they can't be compared against each other.
mig  2009-04-22 06:32:55
It was my mistake, thanks for helping though.
mig  2009-04-22 07:24:24
+1  A: 

My mistake, the issue is fixed now, it turned out to be an error in my code and the fact that my machine is not domain joined that was leading me to believe the issue was with the value of User.Identity.Name.

Thanks all for suggestions, hopefully my next contribution to the site will be on a less foolish note.

--

By the way - this link might help people looking for related information on authentication in IIS: http://blog.mike-obrien.net/PermaLink,guid,5e975b20-7b05-472f-bd80-04028ab8b6fa.aspx

mig  2009-04-22 06:55:08

related questions

Is it better to create Model classes, or just stick with generic database utility class?
What are effective options for embedding video in an ASP.NET web site?
Visual Studio 2008 debugger already attached work-around
Tracking state using ASP.NET AJAX / ICallbackEventHandler
ASP.NET Display SVN Revision Number
ASP.NET URL Rewriting
How can I change the background of a masterpage from the code behind of a content page?
Easy way to AJAX WebControls
How do I define custom web.config sections with potential child elements and attributes for the properties?
ASP.NET MVC "CRUD" Database Sample
Are Multiple DataContext classes ever appropriate?
How to RedirectToAction in ASP.NET MVC without losing request data
Triple Quotes? How do I delimit a databound Javascript string parameter in ASP.NET?
ASP.NET built in user profile, Vs old stile user class/tables
What's a good book for learning ASP?
Bandwith throttling in IIS 6 by IP Address
ASP .Net Custom Client-Side Validation
How to get the value of built, encoded ViewState?
Decent, simple, GIS/mapping component for ASP.NET?
Checklist for IIS 6/ASP.NET Windows Authentication?
How to write to Web.Config in Medium Trust ?
ASP.NET, Visual Studio and Subversion - how to integrate?
Floating Point Number parsing: Is there a Catch All algorithm?
How do I sync the SVN revision number with my ASP.NET web site?
ASP.NET Site Maps