Windows Authentication

[Mark]

When our staff are logged into a computer on our domain, they're still
prompted for their domain login and password to get into our ASP.NET
application in Internet Explorer when using Windows Authentication. Is it
possible to leverage the windows authentication from a client pc that is
already on the domain and authenticated??

Thanks in advance.
Mark

 

[Ann Marinas]

Hi Mark!

You can leverage your windows authentication by using the Integrated Windows
Security in your IIS.
These are the steps:
1. Configure your IIS.
a. Open IIS
b. Right- click the Web application you want to configure, then click
Properties
c. On the Properties windows, click the Directory Security tab
d. Under the Anonymous access and authentication control section, click
edit
e. Make sure that the Anonymous acces check box and the Integrated
windows security check box are selected
2. Set up authentication
a.. On your Web.config file, set up the following parameters
<system.web>
<authentication mode="Windows">
</system.web>
3. Set up Authorization
a.. You may choose the following scenarios
//This setting restricts or allows access the entire web application
<system.web>
<authorization>
<[allow|deny] users=["?"|"*"]/> </authorization>
</system.web>

//This setting restricts or allows access a specific page
<location path="your_webPage.aspx">
</system.web>
<authorization>
<[allow|deny] users=["?"|"*"]/> //You may choose to allow
all users or deny all users
</authorization>
</system.web>
</location>

Hope this one helps!

--KAM