Products

Evoq Content Overview Content Creation Workflow Asset Management Mobile Responsive Personalization Content Analytics SEO Integrations Security Website PerformanceEvoq Engage Overview Community Management  Dashboard  Analytics  Member Profile Gamification Advocate Marketing Community Engagement  Ideas  Answers  Discussions  Groups  Wikis  Events Mobile ReadyDNN Support PackagesEvoq: CMS FeaturesEvoq OnDemandCompare DNN's CMS Products

Solutions

Content Management SystemMulti-Channel PublishingDigital MarketingOnline Community ManagementIntranet Software SolutionOur CustomersPrime

Resources

Test DrivesSchedule A DemoDocumentation CenterWebinarsWhite PapersProduct ManualsRequest PricingData SheetsCase StudiesEvoq Preferred Products Content Management Ecommerce Forms Identity Management and Authentication Site Management Social Themes

Partners

DNN Partners Partner Directory Become a DNN Partner Partner Program Overview  Hosting  Implementation  ISV  Training  Competencies

Community

Participate Ask a Question Forums Community Showcase DNN MVP  Program Overview  Lifetime MVPs  Honorary MVPs Subscribe to DNN Digest Advisory Groups  Awareness Advisory Group  Developer Advisory Group  Partner Advisory Group  Technology Advisory GroupLearn Documentation Wiki Community Blog Video Library Project History Development RoadmapDownload DNN Store Language Packs Manuals Nightly BuildsSecurity Policies Security Center

Blog

About

News Press Releases News Coverage Press KitCareersContact DNN

QA

Ideas Test

New Community Website

Ordinarily, you'd be at the right spot, but we've recently launched a brand new community website... For the community, by the community.

Yay... Take Me to the Community!

Welcome to the DNN Community Forums, your preferred source of online community support for all things related to DNN.
In order to participate you must be a registered DNNizen
HomeHomeDNN Open Source...DNN Open Source...Provider and Extension ForumsProvider and Extension ForumsAuthenticationAuthenticationAutologin?Autologin?
Previous
 
Next
New Post
5/31/2007 9:08 AM
 
Torbjörn

Joined: 2/7/2007
Posts: 19

Hello

I have got AD authentication to work on my testsite in this way:

AD users who place the site on the intranet get access to the portal without any login-box, but have to manually log into the site itself (with DNN login) with the AD credentials.

I have read a few posts in this forum and I got a bit confused as to what different people mean with autologin. Some seem to imply that if you get to where I am, that is automatic login, that is: the site is restricted to AD users and if they open the site on IE with the right credentials they get there without a login-box. To me it feels like I have one more step to go since I really want ppl to end up authenticated with the DNN site aswell.

Does anyone have any tips as to what I have missed?
I asked in another thread about how secure the query that DNN makes to the AD is, and I repeap it here: does username and password get sent from the DNN portal unencrypted and in plain-text, or through a secure channel?

Any pointers would be great.
Best regards
Torbjörn
 
New Post
5/31/2007 11:30 AM
 
Dan Ball

Joined: 1/31/2005
Posts: 771

Auto-Login refers to when you have Authentication to an Active Directory Domain configured and users can log into the DNN site without any login prompts. 

In true integrated mode, when people browse to the DNN site, it will automatically log them into DNN using the AD username with no prompts. 

In mixed-mode, it will allow the user to browse the DNN site without logging in, until they visit a specific URL, then they are automatically logged in without any prompting.

As for security, I believe that is all handled at the server level, meaning the webserver itself does the authentication just as it would any other user logging in.  So, that would be an encrypted request.

Hope that helps...
 
New Post
6/1/2007 4:56 AM
 
Torbjörn

Joined: 2/7/2007
Posts: 19

Thanx Dan for clearing that up abit.

I am stuck at the thing you call true integrated mode, which I cannot get to work. I have the site in local intranet and I have checked the IIS logs and seen that my domain\username was the user that requested the page. In the webconfig I have only changed the stuff that was mentioned in the "walkthrough" such as: uncommenting the reference to add Name="Authentication"............
I also have <identity impersonate = "true"/> uncommented.

However the line below is commented out ,ive seen no reference as to this line being uncommented but I assumed that that is what I want, if I uncomment it and remove the authenticate mode="forms" line the site comes into an endless loop and refreshes and redirects over and over.

<authentication mode="Windows"></authentication>

Do I need to change the webconfig so that the line above is uncommented and comment out the line with the forms reference? In that case what else do I need to change to not end up in an endless redirect-loop?

Thanx in advance
Torbjörn
 
New Post
6/1/2007 8:35 AM
 
Dan Ball

Joined: 1/31/2005
Posts: 771

Initially, you want to uncomment ONE thing in the web.config, and that is the <!-- add name="Authentication" type="DotNetNuke.HttpModules.AuthenticationModule, DotNetNuke.HttpModules.Authentication" / --> line.

Leave all other lines as-is initially.

Then, go into your Admin->Authentication menu, and enter your settings there.  If everything tests okay in that menu, give it a try with an actual user.  If you get errors there, try different ways of entering the information and/or uncomment the <identity line.

 
 
New Post
6/1/2007 9:22 AM
 
Torbjörn

Joined: 2/7/2007
Posts: 19

 

Regarding my question about this section below, it feels abit odd that the config should still be set to forms login, when there is an option for windows mode? What is the theoretical difference between theese two? (setting my portal to windows mode, gets me the lockup described in an earier post with endless redirects)

authentication mode="Forms">forms name=".DOTNETNUKE" protection="All" timeout="60" cookieless="UseCookies" />authentication>identity impersonate="true"/><authentication mode="Windows">-->

<

<

</

<

<!--

</authentication>

Best regards
Torbjörn

I have tried with the <identity> line commented but then the admin-->authentication wont work at all. With the <identity> line uncommented its works fine, and the dnn site authenticates AD user, but not with autologin, they have to manually login through the login link (which feels like a regular FORM login to me). So getting the DNN site to recognize AD users has never been an issue.
 
 Page 1 of 2
12Next 
Previous
 
Next
HomeHomeDNN Open Source...DNN Open Source...Provider and Extension ForumsProvider and Extension ForumsAuthenticationAuthenticationAutologin?Autologin?


These Forums are dedicated to discussion of DNN Platform and Evoq Solutions.

For the benefit of the community and to protect the integrity of the ecosystem, please observe the following posting guidelines:

  1. No Advertising. This includes promotion of commercial and non-commercial products or services which are not directly related to DNN.
  2. No vendor trolling / poaching. If someone posts about a vendor issue, allow the vendor or other customers to respond. Any post that looks like trolling / poaching will be removed.
  3. Discussion or promotion of DNN Platform product releases under a different brand name are strictly prohibited.
  4. No Flaming or Trolling.
  5. No Profanity, Racism, or Prejudice.
  6. Site Moderators have the final word on approving / removing a thread or post or comment.
  7. English language posting only, please.
What is Liquid Content?
Find Out
What is Liquid Content?
Find Out
What is Liquid Content?
Find Out