Products

Evoq Content Overview Content Creation Workflow Asset Management Mobile Responsive Personalization Content Analytics SEO Integrations Security Website PerformanceEvoq Engage Overview Community Management  Dashboard  Analytics  Member Profile Gamification Advocate Marketing Community Engagement  Ideas  Answers  Discussions  Groups  Wikis  Events Mobile ReadyDNN Support PackagesEvoq: CMS FeaturesEvoq OnDemandCompare DNN's CMS Products

Solutions

Content Management SystemMulti-Channel PublishingDigital MarketingOnline Community ManagementIntranet Software SolutionOur CustomersPrime

Resources

Test DrivesSchedule A DemoDocumentation CenterWebinarsWhite PapersProduct ManualsRequest PricingData SheetsCase StudiesEvoq Preferred Products Content Management Ecommerce Forms Identity Management and Authentication Site Management Social Themes

Partners

DNN Partners Partner Directory Become a DNN Partner Partner Program Overview  Hosting  Implementation  ISV  Training  Competencies

Community

Participate Ask a Question Forums Community Showcase DNN MVP  Program Overview  Lifetime MVPs  Honorary MVPs Subscribe to DNN Digest Advisory Groups  Awareness Advisory Group  Developer Advisory Group  Partner Advisory Group  Technology Advisory GroupLearn Documentation Wiki Community Blog Video Library Project History Development RoadmapDownload DNN Store Language Packs Manuals Nightly BuildsSecurity Policies Security Center

Blog

About

News Press Releases News Coverage Press KitCareersContact DNN

QA

Ideas Test

New Community Website

Ordinarily, you'd be at the right spot, but we've recently launched a brand new community website... For the community, by the community.

Yay... Take Me to the Community!

Welcome to the DNN Community Forums, your preferred source of online community support for all things related to DNN.
In order to participate you must be a registered DNNizen
HomeHomeDNN Open Source...DNN Open Source...Provider and Extension ForumsProvider and Extension ForumsAuthenticationAuthenticationIntranet first-time autologinIntranet first-time autologin
Previous
 
Next
New Post
6/26/2008 9:30 AM
 
avsompol

Joined: 5/20/2008
Posts: 50

George,

i have the same problem, i tried your settings but i get a 401 access denied error, i'm using impersonation.  I really need to fix this, any clues?
 
New Post
7/15/2008 1:00 PM
 
smcnair

Joined: 6/16/2008
Posts: 2

Is there anyway to get the site to do an auto log in inside of the network even in the site is not added to a computers local intranet zone?
 
New Post
7/15/2008 3:10 PM
 
Joey Navarro

Joined: 6/13/2006
Posts: 13

Mike, I'm not quite sure the AD provider is behaving as you described.

I just performed the following test. I installed a fresh, new DNN 4.8.4 blank site, logged in as host and installed the 01.00.03 AD provider module. I then set the authentication settings as suggested and entered the Auto-Login IP Address values of 10.2.2.0 - 10.2.2.255 (our internal IP addresses). I checked the web.config file to make sure the following line is uncommented: add name="Authentication" type="DotNetNuke.Authentication.ActiveDirectory.HttpModules.AuthenticationModule, DotNetNuke.Authentication.ActiveDirectory" /> I reset IIS by invoking iisreset from the command line. I also cleared the IIS log. From another internal computer, I opened my browser, cleared all cookies and then browsed to the site. The site auto-logged me in using my AD credentials. When I viewed the IIS log however, there are no redirects to the windowssignin.aspx page.

<

 
 
New Post
7/15/2008 4:46 PM
 
Mike Horton


Joined: 7/16/2003
Posts: 4865

No there isn't. If a website is in your Trusted or Intranet zone your computer will willing pass the username you're logged on with to the webserver (needed in order to process the auto-login).  If it isn't then your computer won't pass this information and you'll get the IIS login popup.
 
New Post
7/15/2008 5:53 PM
 
Mike Horton


Joined: 7/16/2003
Posts: 4865

Joey Navarro wrote

Mike, I'm not quite sure the AD provider is behaving as you described.

I just performed the following test. I installed a fresh, new DNN 4.8.4 blank site, logged in as host and installed the 01.00.03 AD provider module. I then set the authentication settings as suggested and entered the Auto-Login IP Address values of 10.2.2.0 - 10.2.2.255 (our internal IP addresses). I checked the web.config file to make sure the following line is uncommented: add name="Authentication" type="DotNetNuke.Authentication.ActiveDirectory.HttpModules.AuthenticationModule, DotNetNuke.Authentication.ActiveDirectory" /> I reset IIS by invoking iisreset from the command line. I also cleared the IIS log. From another internal computer, I opened my browser, cleared all cookies and then browsed to the site. The site auto-logged me in using my AD credentials. When I viewed the IIS log however, there are no redirects to the windowssignin.aspx page.

I guarantee it went through windowssignin.aspx if it detected that the authentication status was undefined (what it'll see if the cookie has expired or isn't there). The pertinent code from AuthenticationModule.vb (which is what is called when the line in <httpModules> is uncommented) is below (slightly different from the .03 version due to fixes for .04 but the logic is the same):

If (authStatus = AuthenticationStatus.Undefined) Then  'OrElse (blnWinLogon) Then <---There's three status types (Undefined, Windows, and WinLogoff). If Windows is returned then the user is already logged into the site so all is bypassed (otherwise we'd be in an infinite loop) and WinLogoff is pretty self explanitory.
                    AuthenticationController.SetStatus(_portalSettings.PortalId, AuthenticationStatus.WinProcess)
                    Dim url As String = Request.RawUrl
                    Dim arrAutoIP() = config.AutoIP.Split(";")
                    'ACD-7664
                    Dim strClientIP As String = ADSI.Utilities.GetIP4Address(Request.UserHostAddress)
                    For intCount As Integer = 0 To arrAutoIP.Length - 1
                        Dim strAutoIP As String = arrAutoIP(intCount)
                        If (InStr(strAutoIP, "-")) Then
                            Dim arrIPRange() = strAutoIP.Split("-")
                            Dim lClientIP As Long = IPAddressToLong(strClientIP)
                            If lClientIP >= IPAddressToLong(ADSI.Utilities.GetIP4Address(Trim(arrIPRange(0)))) And lClientIP <= IPAddressToLong(ADSI.Utilities.GetIP4Address(Trim(arrIPRange(1)))) Then
                                url = GetRedirectURL(Request, _portalSettings) <--- Returns the path to WindowsSignin.aspx
                                SetDNNReturnToCookie(Request, Response, _portalSettings)
                                Exit For
                            End If
                        ElseIf (Not InStr(Left(strClientIP.ToString, strAutoIP.Length), strAutoIP) = 0) Or (strAutoIP = "") Then
                            url = GetRedirectURL(Request, _portalSettings) <--- Returns the path to WindowsSignin.aspx
                            SetDNNReturnToCookie(Request, Response, _portalSettings)
                            Exit For
                        End If
                    Next
                    Response.Redirect(url) <---Does the Redirect to WindowsSignin.aspx
 
 
 Page 5 of 5
Previous12345 
Previous
 
Next
HomeHomeDNN Open Source...DNN Open Source...Provider and Extension ForumsProvider and Extension ForumsAuthenticationAuthenticationIntranet first-time autologinIntranet first-time autologin


These Forums are dedicated to discussion of DNN Platform and Evoq Solutions.

For the benefit of the community and to protect the integrity of the ecosystem, please observe the following posting guidelines:

  1. No Advertising. This includes promotion of commercial and non-commercial products or services which are not directly related to DNN.
  2. No vendor trolling / poaching. If someone posts about a vendor issue, allow the vendor or other customers to respond. Any post that looks like trolling / poaching will be removed.
  3. Discussion or promotion of DNN Platform product releases under a different brand name are strictly prohibited.
  4. No Flaming or Trolling.
  5. No Profanity, Racism, or Prejudice.
  6. Site Moderators have the final word on approving / removing a thread or post or comment.
  7. English language posting only, please.
What is Liquid Content?
Find Out
What is Liquid Content?
Find Out
What is Liquid Content?
Find Out