Products

Evoq Content Overview Content Creation Workflow Asset Management Mobile Responsive Personalization Content Analytics SEO Integrations Security Website PerformanceEvoq Engage Overview Community Management  Dashboard  Analytics  Member Profile Gamification Advocate Marketing Community Engagement  Ideas  Answers  Discussions  Groups  Wikis  Events Mobile ReadyDNN Support PackagesEvoq: CMS FeaturesEvoq OnDemandCompare DNN's CMS Products

Solutions

Content Management SystemMulti-Channel PublishingDigital MarketingOnline Community ManagementIntranet Software SolutionOur CustomersPrime

Resources

Test DrivesSchedule A DemoDocumentation CenterWebinarsWhite PapersProduct ManualsRequest PricingData SheetsCase StudiesEvoq Preferred Products Content Management Ecommerce Forms Identity Management and Authentication Site Management Social Themes

Partners

DNN Partners Partner Directory Become a DNN Partner Partner Program Overview  Hosting  Implementation  ISV  Training  Competencies

Community

Participate Ask a Question Forums Community Showcase DNN MVP  Program Overview  Lifetime MVPs  Honorary MVPs Subscribe to DNN Digest Advisory Groups  Awareness Advisory Group  Developer Advisory Group  Partner Advisory Group  Technology Advisory GroupLearn Documentation Wiki Community Blog Video Library Project History Development RoadmapDownload DNN Store Language Packs Manuals Nightly BuildsSecurity Policies Security Center

Blog

About

News Press Releases News Coverage Press KitCareersContact DNN

QA

Ideas Test

New Community Website

Ordinarily, you'd be at the right spot, but we've recently launched a brand new community website... For the community, by the community.

Yay... Take Me to the Community!

Welcome to the DNN Community Forums, your preferred source of online community support for all things related to DNN.
In order to participate you must be a registered DNNizen
HomeHomeOur CommunityOur CommunityGeneral Discuss...General Discuss...Single Sign on for DNN and SharePointSingle Sign on for DNN and SharePoint
Previous
 
Next
New Post
6/22/2007 1:36 PM
 
BradG

Joined: 5/29/2007
Posts: 15
Hello. Can anyone give me some advice? My organization is using SharePoint (WSS 3.0/2007) as our intranet, and we are going to be converting our main website from Cold Fusion to DNN 4.x over the next year (same domain, different server). I'd like to have a single sign on solution for intranet/extranet/interet across DNN and SharePoint. From what I can tell, these are my options:

Option 1:
-Configure both DNN and SharePoint for forms authentication
-Point the DNN SQLMemberShipProvider to the SharePoint SQLMembershipProvider database to share users/groups (is this a problem?)
-Modify the web.config to share forms authentication across applications (same machine key, forms attributes, etc.)

Option 2:
-Use Windows authentication for SharePoint, store users in Active Directory
-Use forms authentication for DNN main portal (public internet)
-Create a child portal in DNN using Windows authentication (for members only security with active directory)
-Members and internal staff could get SSO using Windows Authentication between the DNN child portal and SharePoint

The bottom line is getting DNN and SharePoint to share a data store for users/groups (either AD or SQLMembershipProvider) and to allow single sign on. Does anyone see any problems or drawbacks to the options above? Has anyone done this yet?

Thanks!
 
New Post
6/24/2007 10:59 AM
 
Garrettf

Joined: 5/15/2007
Posts: 2

I'm just getting myself into the same position.  I have just started development on our companies website in DNN and while I am planning on continuing to use Sharepoint for our employees I will have some users that will need to log into both.  If you find a good path to follow for a single sign on, please post.

 
 
New Post
6/25/2007 10:11 AM
 
Jon Seeley

www.seeleyware.com
Joined: 8/8/2006
Posts: 597

You might consider SW.AutoLogon, a module I recently finished up.  It allows an AD approach where if you had the users in your DNN instance, they would be automatically logged in, or it also allows an SSO approach where you can have a querystring (or HTTP POST) log them in to the DNN site.

At my "regular" job, we are using the AD mode to have all corporate users (roughly 800 employees) log in to our intranet.

-- Jon Seeley
DotNetNuke Modules
Custom DotNetNuke and .NET Development
http://www.seeleyware.com
 
New Post
6/29/2007 6:31 PM
 
BradG

Joined: 5/29/2007
Posts: 15
After some more testing and painful experimentation, it has become clear that (1) using Active Directory and Integrated Windows Authentication for DNN and SharePoint is impossible, because DNN can't handle true integrated Windows Authentication. It just checks credentials, then uses Forms Authentication to run. (2) Creating separate sites with mixed authentication doesn't work, because DNN is a single web application with a single web.config and single authentication method. (3) DNN must use its own SQL security tables for a completely unknown reason (they look like standard SQLMembershipProvider tables, but there are a few things missing). So, after a week and a half of painful revelations, I've decided to share our plan. If anyone else needs this solution, you can try this as well. If I'm successful, I'll post instructions on how to do this for real.

THE PLAN:

1) Existing SharePoint intranet. Use integrated windows authentication for a seamless experiece for staff. Build a module (or buy the SW.AutoLogon) to allow staff to be automatically logged into DNN. Voila, single sign-on for internal staff. Of course, its one-way only, but this shouldn't be a real problem.

2) New public site on DNN. Nothing special here, just the plain vanilla DNN public site.

3) New members-only site on DNN. Use Forms Authentication and the DNN database for member credentials.

4.a.) New extranet for members/staff on DNN. The combination of #1 and #3 should give single sign-on for everyone involved.
--OR--
4.b.) Extranet on SharePoint. This may or may not be a problem. First, SharePoint and DNN have to be on the same domain and both have to run in Forms Authentication for member sites, although they could be on different sub-domains and still share cookies for Forms Authentication (with some customization). Next, member user information will have to be synchronized between the DNN and SP databases, or SharePoint would have to somehow use the DNN "aspnet_" user tables. I've had limited success with some testing, but it hasn't totally worked yet (I'll let you know).

Eventually, I'll get SSO for everyone, and I'll share the results. I'd like anyone else who is attempting this to also share ideas. Thanks!
 
New Post
6/30/2007 6:09 AM
 
Guy Jascht

Joined: 7/26/2006
Posts: 262

I would prefer an AD authentication solution too but so far I know is that the AD authentication project is completely under 'redesignment'. Maybe you should wait till this is finished (no to invest too much work on the old code). 
 
 Page 1 of 1
Previous
 
Next
HomeHomeOur CommunityOur CommunityGeneral Discuss...General Discuss...Single Sign on for DNN and SharePointSingle Sign on for DNN and SharePoint


These Forums are dedicated to discussion of DNN Platform and Evoq Solutions.

For the benefit of the community and to protect the integrity of the ecosystem, please observe the following posting guidelines:

  1. No Advertising. This includes promotion of commercial and non-commercial products or services which are not directly related to DNN.
  2. No vendor trolling / poaching. If someone posts about a vendor issue, allow the vendor or other customers to respond. Any post that looks like trolling / poaching will be removed.
  3. Discussion or promotion of DNN Platform product releases under a different brand name are strictly prohibited.
  4. No Flaming or Trolling.
  5. No Profanity, Racism, or Prejudice.
  6. Site Moderators have the final word on approving / removing a thread or post or comment.
  7. English language posting only, please.
What is Liquid Content?
Find Out
What is Liquid Content?
Find Out
What is Liquid Content?
Find Out