Products

Evoq Content Overview Content Creation Workflow Asset Management Mobile Responsive Personalization Content Analytics SEO Integrations Security Website PerformanceEvoq Engage Overview Community Management  Dashboard  Analytics  Member Profile Gamification Advocate Marketing Community Engagement  Ideas  Answers  Discussions  Groups  Wikis  Events Mobile ReadyDNN Support PackagesEvoq: CMS FeaturesEvoq OnDemandCompare DNN's CMS Products

Solutions

Content Management SystemMulti-Channel PublishingDigital MarketingOnline Community ManagementIntranet Software SolutionOur CustomersPrime

Resources

Test DrivesSchedule A DemoDocumentation CenterWebinarsWhite PapersProduct ManualsRequest PricingData SheetsCase StudiesEvoq Preferred Products Content Management Ecommerce Forms Identity Management and Authentication Site Management Social Themes

Partners

DNN Partners Partner Directory Become a DNN Partner Partner Program Overview  Hosting  Implementation  ISV  Training  Competencies

Community

Participate Ask a Question Forums Community Showcase DNN MVP  Program Overview  Lifetime MVPs  Honorary MVPs Subscribe to DNN Digest Advisory Groups  Awareness Advisory Group  Developer Advisory Group  Partner Advisory Group  Technology Advisory GroupLearn Documentation Wiki Community Blog Video Library Project History Development RoadmapDownload DNN Store Language Packs Manuals Nightly BuildsSecurity Policies Security Center

Blog

About

News Press Releases News Coverage Press KitCareersContact DNN

QA

Ideas Test

New Community Website

Ordinarily, you'd be at the right spot, but we've recently launched a brand new community website... For the community, by the community.

Yay... Take Me to the Community!

Welcome to the DNN Community Forums, your preferred source of online community support for all things related to DNN.
In order to participate you must be a registered DNNizen
HomeHomeDNN Open Source...DNN Open Source...Provider and Extension ForumsProvider and Extension ForumsAuthenticationAuthenticationModifying the Email address profile field for AD usersModifying the Email address profile field for AD users
Previous
 
Next
New Post
4/15/2009 11:15 PM
 
Mike Horton


Joined: 7/16/2003
Posts: 4865

jspenc3 wrote

Nope, on my Windows 2003 server if I don't make an Exchange account the actual email field is blank.  Now "behind the scenes" there is an account name/login that looks like an email address (username@domain) but that isn't actually stored as an email in AD.  I understand the reasoning behind requireing an email  for DNN and the AD provider "making one up" to meet this requirement, but that isn't a very good way to handle the situation in my book.  I mean, why would I want the provider just "guessing" or making up an invalid email to fill a required field.  If it's an invalid email it won't work anyway so why waste time "making it up"? 

I know most companies probably won't use AD/DNN with users without a company email, but sounds to me like the process behind this integration is broken.  Here's how I suggest the AD provider work for this situation:

  • Any user without both a DNN and AD email field would be required to enter one into DNN on login (stored only in the DNN database).
At this point I don't think it can be done. The email field is not different for DNN vs AD. It's the same field. On auto login it blows past any of the checks and automatically logs the user in. I've looked at trying to redirect the user if there are fields that are required but from what I remember (it was about a year ago) there was no way to trip the required triggers that manually logging in does.  I guess I need to rephrase what I posted above. A user can login and use DNN without an email and it's work fine for the user. Where things blow up is on the administation side (for example when you try to view user accounts).
  • On every future login, if the AD email field is blank the AD provider will leave the manually entered DNN email alone.
    • There's no way to tell if an email address has been manually filled or not but I could check if the field has anything in it and if so, not overwrite it. Please post this in the DNN Public section of Gemini so that it's on my list of things to do.
  • On every future login, if the AD email field has been filled in it should prompt the user which email address to keep (and sync or ignore the sync accordingly).
    • That would be a major pain in the you-know-what. If I could capture it on automatic login and I had a different email address than my company email on our portal (as an example) I would be getting asked which email account I wanted dozens of times during the day.

    In my situation we actually want our employees required to enter a home email in addition to the "company"/primary one.  If that were a normal requirement I'd probably add an additional bullet point to extend the AD provider to juggle between the home & corporate email for the DNN primary email field depending on if an AD email is there...

    For now  I guess I'll stick with my plan to write a stored procedure (or something) for now as I don't have time (or knowledge) to modify the provider at this point...

    I'm not arguing against your use case and I'm willing to do what I can but it has to be something that's going to work for the majority of users. If it doesn't then that's where the joy of open-source comes in (the ability to tweak the code to work specifically for you).
     
    New Post
    4/16/2009 10:20 AM
    		 
    Jason Spencer

    Joined: 12/14/2008
    Posts: 13

    Sorry if I came off a little strong, that wasn't my intention.  I fully understand the role of open source and embrace both its pros and cons (mostly pros :-).   I really appreciate your time considering my situation / suggestions and the great work your're doing to improve DNN.

    I don't think I mentioned this yet, but at this time we're not using autologin (and I don't really plan to for the forseeable future).  I'm requiring all of my users to use the username/password process to log in.  My reasons are pretty simple:

    • The user base is mostly comprised of older and less technical people so I wanted to keep the process of using the Intranet simple and consistant so there was one set of "instructions" for all users.
    • More than 50% of the users are not logging in from the a domain computer (they use their home PCs).
    • There are shared domain PCs where users have a "generic" domain login and I don't want them all autologging under that user.
    • We are adding a timesheet module to the system and I want to make sure somebody doesn't just walk up to a PC and open the intranet without having to log in (technically the module has a secondary password prompt but I'd rather make them double authenticate for security).

    As for your reply to my bullet points, I guess the issue really boils down to a disconnect between the authentication provider and DNN.  I was going to reply to your comments, but my brain hurts (I've got bigger fish to fry at work just like you :-)  Ultimately in my opinion the root of the problem is that the AD integration is not part of the core framework.  The way it is being developed now you're having to work around the limitations of allowing both database and AD users and "tacking on" your AD module to the highly database driven framework.

    I hate to say this, but I think the solution to my problem is probably going to be to just drop AD integration and move to a fully database (internal user) config.  It will be another password for people to manage and another place for me / HR to manage but ultimately it sounds like that would solve all of my issues...
     
     Page 2 of 2
    Previous12 
    Previous
    		 
    Next
    HomeHomeDNN Open Source...DNN Open Source...Provider and Extension ForumsProvider and Extension ForumsAuthenticationAuthenticationModifying the Email address profile field for AD usersModifying the Email address profile field for AD users


    These Forums are dedicated to discussion of DNN Platform and Evoq Solutions.

    For the benefit of the community and to protect the integrity of the ecosystem, please observe the following posting guidelines:

    1. No Advertising. This includes promotion of commercial and non-commercial products or services which are not directly related to DNN.
    2. No vendor trolling / poaching. If someone posts about a vendor issue, allow the vendor or other customers to respond. Any post that looks like trolling / poaching will be removed.
    3. Discussion or promotion of DNN Platform product releases under a different brand name are strictly prohibited.
    4. No Flaming or Trolling.
    5. No Profanity, Racism, or Prejudice.
    6. Site Moderators have the final word on approving / removing a thread or post or comment.
    7. English language posting only, please.
    What is Liquid Content?
    Find Out
    What is Liquid Content?
    Find Out
    What is Liquid Content?
    Find Out