Products

Evoq Content Overview Content Creation Workflow Asset Management Mobile Responsive Personalization Content Analytics SEO Integrations Security Website PerformanceEvoq Engage Overview Community Management  Dashboard  Analytics  Member Profile Gamification Advocate Marketing Community Engagement  Ideas  Answers  Discussions  Groups  Wikis  Events Mobile ReadyDNN Support PackagesEvoq: CMS FeaturesEvoq OnDemandCompare DNN's CMS Products

Solutions

Content Management SystemMulti-Channel PublishingDigital MarketingOnline Community ManagementIntranet Software SolutionOur CustomersPrime

Resources

Test DrivesSchedule A DemoDocumentation CenterWebinarsWhite PapersProduct ManualsRequest PricingData SheetsCase StudiesEvoq Preferred Products Content Management Ecommerce Forms Identity Management and Authentication Site Management Social Themes

Partners

DNN Partners Partner Directory Become a DNN Partner Partner Program Overview  Hosting  Implementation  ISV  Training  Competencies

Community

Participate Ask a Question Forums Community Showcase DNN MVP  Program Overview  Lifetime MVPs  Honorary MVPs Subscribe to DNN Digest Advisory Groups  Awareness Advisory Group  Developer Advisory Group  Partner Advisory Group  Technology Advisory GroupLearn Documentation Wiki Community Blog Video Library Project History Development RoadmapDownload DNN Store Language Packs Manuals Nightly BuildsSecurity Policies Security Center

Blog

About

News Press Releases News Coverage Press KitCareersContact DNN

QA

Ideas Test

New Community Website

Ordinarily, you'd be at the right spot, but we've recently launched a brand new community website... For the community, by the community.

Yay... Take Me to the Community!

Welcome to the DNN Community Forums, your preferred source of online community support for all things related to DNN.
In order to participate you must be a registered DNNizen
HomeHomeDNN Open Source...DNN Open Source...Provider and Extension ForumsProvider and Extension ForumsAuthenticationAuthenticationOnly AD Authentication Only AD Authentication
Previous
 
Next
New Post
5/25/2011 7:49 AM
 
Marc Fritsch

Joined: 3/11/2010
Posts: 4
Hello everbody,



we are trying for about 3 days to implement the ad-provider. Till now, we do not have any success.......



Our plan is simple: Just install DNN with ONLY AD-Authention. No Forms, No Live-ID. Just AD. This means that only Domain-Members should have access to the site

and automaticly logged in with their windows user credentials. We read every document and every article. Nothing helps.



Questions:



Which settings/changes should i have to do in the web.config?

How to set the security setting in the web tree?

Which setting/changes should i have to do in the IIS?

How the set up the Application-Pool?

Which settings should we make in the admin/host Default Authentication-Settings (Default enabled true or false?)

Which settings should we make in the admin/host ActiveDirectoryAuthentication Extension Settings?



Our Environment: 1-Web Server 2008 IIS7.0 and 1-DB Server MSSQL 2008



DNN:05.06.02

AD: 5.0.2 or 5.0.3



Is there anybody who solved this problem by now?



Thanks for yout help,



Marc
 
New Post
5/25/2011 12:01 PM
 
Mike Horton


Joined: 7/16/2003
Posts: 4865
Did you go through the user's guide? http://www.dotnetnuke.com/Community/ExtensionsForge/ProviderAuthentication/tabid/840/Default.aspx
 
New Post
5/26/2011 3:23 AM
 
Marc Fritsch

Joined: 3/11/2010
Posts: 4
Hallo Mike,



yes, we read the manual. Twice.



What we didn't find anywhere is, if DNN could make the authentication only through AD. We don't want to give the user the possibility to LogOn or LogOff.

I my oppinion it is only way to do this, is to enable only Windows-Authentication in the IIS. This works fine for some administrative users. They still see the logoff button, when you click the button you're still logged in.



For other users (normal, non-administrative) it doesn't work. When the user open the Website the will we endless redirected (302).



Any ideas to solve this?



Marc
 
New Post
5/26/2011 10:53 AM
 
Mike Horton


Joined: 7/16/2003
Posts: 4865
What you're wanting to do you don't need the AD provider as it's meant as a way for AD users to be able to login on a Forms authentication site. I'm not 100% sure on the setup as I've never done it but if you look in your web.config you'll see a section for Windows Authentication that's commented out. If you comment out the Forms Authentication and uncomment the Windows authentication it should work. At this point it's really outside of the DNN realm and into the IIS realm for setting up a site for Windows Authentication. You may have to give your users read rights on the directory (and sub-directories). That's my guess on why your admin users have no problems but your normal users go into a redirect loop.

So in the end, what I'd do to set it up the way you're looking to is to uninstall the AD provider (since it's not going to be used) and comment out the Forms Authentication section in your web.config and uncomment the Windows Authentication section. If it still doesn't work for normal users then I'd look at giving Read permissions for your users. If that doesn't work then I'd start looking on Google or http://iis.net on how to setup a .NET website for Windows Authentication.
 
New Post
5/27/2011 5:07 AM
 
Marc Fritsch

Joined: 3/11/2010
Posts: 4
Hi Mike,



thanks for your hints.



I made a complete fresh custom installation with a new database (db with username and password, not integrated).

I don't install the AD provider. Then I changed the web.config the way you suggested. In the ISS (APP Pool 2.0 and classic)

I only activated windows authentication.



Finally I can't access the whole site. I got redirected sometimes from default.aspx (Get/302) to default.aspx.



Any other ideas? Maybe another CMS?



Marc
 
 Page 1 of 2
12Next 
Previous
 
Next
HomeHomeDNN Open Source...DNN Open Source...Provider and Extension ForumsProvider and Extension ForumsAuthenticationAuthenticationOnly AD Authentication Only AD Authentication


These Forums are dedicated to discussion of DNN Platform and Evoq Solutions.

For the benefit of the community and to protect the integrity of the ecosystem, please observe the following posting guidelines:

  1. No Advertising. This includes promotion of commercial and non-commercial products or services which are not directly related to DNN.
  2. No vendor trolling / poaching. If someone posts about a vendor issue, allow the vendor or other customers to respond. Any post that looks like trolling / poaching will be removed.
  3. Discussion or promotion of DNN Platform product releases under a different brand name are strictly prohibited.
  4. No Flaming or Trolling.
  5. No Profanity, Racism, or Prejudice.
  6. Site Moderators have the final word on approving / removing a thread or post or comment.
  7. English language posting only, please.
What is Liquid Content?
Find Out
What is Liquid Content?
Find Out
What is Liquid Content?
Find Out