Products

Evoq Content Overview Content Creation Workflow Asset Management Mobile Responsive Personalization Content Analytics SEO Integrations Security Website PerformanceEvoq Engage Overview Community Management  Dashboard  Analytics  Member Profile Gamification Advocate Marketing Community Engagement  Ideas  Answers  Discussions  Groups  Wikis  Events Mobile ReadyDNN Support PackagesEvoq: CMS FeaturesEvoq OnDemandCompare DNN's CMS Products

Solutions

Content Management SystemMulti-Channel PublishingDigital MarketingOnline Community ManagementIntranet Software SolutionOur CustomersPrime

Resources

Test DrivesSchedule A DemoDocumentation CenterWebinarsWhite PapersProduct ManualsRequest PricingData SheetsCase StudiesEvoq Preferred Products Content Management Ecommerce Forms Identity Management and Authentication Site Management Social Themes

Partners

DNN Partners Partner Directory Become a DNN Partner Partner Program Overview  Hosting  Implementation  ISV  Training  Competencies

Community

Participate Ask a Question Forums Community Showcase DNN MVP  Program Overview  Lifetime MVPs  Honorary MVPs Subscribe to DNN Digest Advisory Groups  Awareness Advisory Group  Developer Advisory Group  Partner Advisory Group  Technology Advisory GroupLearn Documentation Wiki Community Blog Video Library Project History Development RoadmapDownload DNN Store Language Packs Manuals Nightly BuildsSecurity Policies Security Center

Blog

About

News Press Releases News Coverage Press KitCareersContact DNN

QA

Ideas Test

New Community Website

Ordinarily, you'd be at the right spot, but we've recently launched a brand new community website... For the community, by the community.

Yay... Take Me to the Community!

Welcome to the DNN Community Forums, your preferred source of online community support for all things related to DNN.
In order to participate you must be a registered DNNizen
HomeHomeDNN Open Source...DNN Open Source...Provider and Extension ForumsProvider and Extension ForumsAuthenticationAuthenticationAnyone using the Multifactor Membership Provider from Brandon Haynes?Anyone using the Multifactor Membership Provider from Brandon Haynes?
Previous
 
Next
New Post
10/7/2009 10:30 AM
 
Brandon Haynes Haynes


brandonhaynes.org
Joined: 2/6/2006
Posts: 1172

Hi Eugene,

Your error is identical to Steve's; it will be corrected during my next update.  I'm hoping for over the weekend, but things have been hectic for me lately.

Note that this is a MULTI-factor authentication provider; though you can configure digital certificates in addition to forms authentication, you cannot disable the latter.  It appears that this provider will not meet your requirements (though it is perhaps possible that you could modify it to suit your needs).  I am not aware if there is a certificate-only provider available for DotNetNuke, but it would be a reasonably straightforward task to effectuate.

Hope this helps!

Brandon

Brandon Haynes
BrandonHaynes.org
 
New Post
10/7/2009 2:31 PM
 
Eugene Novikov

Joined: 4/16/2004
Posts: 6

Thank you Brandon to answer my questions!

Our design plan probably is to create our login module with certificate authentication only and plug in DNN, so basicly we will use the same standart approach you are using in you module:

            var certificate = HttpContext.Current.Request.ClientCertificate;
 

but we wont to verify this certificates against data we stored in our Certificate table  - I guess we have to add new table to DNN database or extend exisitng User table if it is possible.

My questions:

- is it possible to do authentication on every page in DNN (assuming we create our Login module and store Certificates data in DB) ?

- should we extend existing table User or better create new table Certificate (we already have this table in other apps), can we read data from new table by reusing DNN data provider functionality?

Eugene

 
 
New Post
10/7/2009 7:51 PM
 
Brandon Haynes Haynes


brandonhaynes.org
Joined: 2/6/2006
Posts: 1172

Hi Eugene,

If everyone who will be accessing the site will have a client certificate, you may be able to use IIS to require certificates granted from a particular authority and skip DNN entirely.  For narrow cases, this is an easy solution.

If you will require some users to have certificates, and others will be unauthenticated (or use a different credential), or if you will have needs that vary across portals, you will probably need an authentication provider and interface.  This is likely to look a lot more like the OpenID or Active Directory authentication options than the multifactor provider (though the method by which I validate client certificates will certainly be applicable for you).  You might look there for additional inspiration.

Answering your questions:

1) It is possible to require that a user be a member of one or more security roles across an entire site.

2) Do not extend the Users table; this would be considered a "modification of the core" and would affect your future upgrade path.  DotNetNuke already has a built-in mechanism for external authentication (e.g. OpenID) that you will be able to leverage.  You are of course always free to use your own tables.

Note that I would consider this to be an advanced task for a developer; though much of the implementation is straightforward, anything that touches security this heavily is of increased difficulty.  

Hope this helps!

Brandon

Brandon Haynes
BrandonHaynes.org
 
New Post
10/12/2012 7:46 PM
 
Larry Daniele


Joined: 5/3/2007
Posts: 58

Has anyone been able to get Brandon's Multi-factor Authentication Provider working with DNN 6? Or does anyone have an alternative to this provider for X.509 certificates or SMS one-time password?

This provider looks like a very promising addition to the DNN ecosystem and I'm surprised that the community hasn't progressed this further.
 
 Page 2 of 2
Previous12 
Previous
 
Next
HomeHomeDNN Open Source...DNN Open Source...Provider and Extension ForumsProvider and Extension ForumsAuthenticationAuthenticationAnyone using the Multifactor Membership Provider from Brandon Haynes?Anyone using the Multifactor Membership Provider from Brandon Haynes?


These Forums are dedicated to discussion of DNN Platform and Evoq Solutions.

For the benefit of the community and to protect the integrity of the ecosystem, please observe the following posting guidelines:

  1. No Advertising. This includes promotion of commercial and non-commercial products or services which are not directly related to DNN.
  2. No vendor trolling / poaching. If someone posts about a vendor issue, allow the vendor or other customers to respond. Any post that looks like trolling / poaching will be removed.
  3. Discussion or promotion of DNN Platform product releases under a different brand name are strictly prohibited.
  4. No Flaming or Trolling.
  5. No Profanity, Racism, or Prejudice.
  6. Site Moderators have the final word on approving / removing a thread or post or comment.
  7. English language posting only, please.
What is Liquid Content?
Find Out
What is Liquid Content?
Find Out
What is Liquid Content?
Find Out