I need help to understand and design a asp.net based system for my bank. Its a electronic bill payment system which different branches will use based on different cities.
We all have our user names in Active directory for example : "josh.dave" and our domain is "mybank.com" so we provide josh.dave and password in our windows and logged in. After that I want users to open the browser and run my application ..NO LOGIN PAGE required and NO SESSION EXPIRY (keeping this in mind i am going to use FORM AUTHENTICATION TICKETS)..and want to authenticate the password and user id from Active Directory and redirect to the page.
But I am confused how to give rights to different roles by branch...do i need to create a local user table with active directory users exactly the replica and manage rights in local table? its a duplicate work infact.
Can you help me in this regard that how many tables I should keep and share ideas what can be the best design.