Products

Evoq Content Overview Content Creation Workflow Asset Management Mobile Responsive Personalization Content Analytics SEO Integrations Security Website PerformanceEvoq Engage Overview Community Management  Dashboard  Analytics  Member Profile Gamification Advocate Marketing Community Engagement  Ideas  Answers  Discussions  Groups  Wikis  Events Mobile ReadyDNN Support PackagesEvoq: CMS FeaturesEvoq OnDemandCompare DNN's CMS Products

Solutions

Content Management SystemMulti-Channel PublishingDigital MarketingOnline Community ManagementIntranet Software SolutionOur CustomersPrime

Resources

Test DrivesSchedule A DemoDocumentation CenterWebinarsWhite PapersProduct ManualsRequest PricingData SheetsCase StudiesEvoq Preferred Products Content Management Ecommerce Forms Identity Management and Authentication Site Management Social Themes

Partners

DNN Partners Partner Directory Become a DNN Partner Partner Program Overview  Hosting  Implementation  ISV  Training  Competencies

Community

Participate Ask a Question Forums Community Showcase DNN MVP  Program Overview  Lifetime MVPs  Honorary MVPs Subscribe to DNN Digest Advisory Groups  Awareness Advisory Group  Developer Advisory Group  Partner Advisory Group  Technology Advisory GroupLearn Documentation Wiki Community Blog Video Library Project History Development RoadmapDownload DNN Store Language Packs Manuals Nightly BuildsSecurity Policies Security Center

Blog

About

News Press Releases News Coverage Press KitCareersContact DNN

QA

Ideas Test

New Community Website

Ordinarily, you'd be at the right spot, but we've recently launched a brand new community website... For the community, by the community.

Yay... Take Me to the Community!

Welcome to the DNN Community Forums, your preferred source of online community support for all things related to DNN.
In order to participate you must be a registered DNNizen
HomeHomeDNN Open Source...DNN Open Source...Provider and Extension ForumsProvider and Extension ForumsAuthenticationAuthenticationIntro to Active Directory and DNNIntro to Active Directory and DNN
Previous
 
Next
New Post
5/31/2006 3:47 PM
 
Marc Calder

Joined: 4/24/2003
Posts: 46

I actually got AD/DNN group synchronization working (wonder of wonders).  I had to ensure that the DNN role name EXACTLY matched the AD group name *including the domain*.  So rather than having a DNN role called Developers, I needed to create a role called MYDOMAIN\Developers.  I came across this when I saw that all new AD-sourced DNN accounts were being created with the domain name prefixed to the user name. 

Hope that helps.

Marc Calder
www.worxoft.com
 
New Post
6/4/2006 5:06 PM
 
Edward Beck

Joined: 2/1/2006
Posts: 190

Interesting that you had to include the domain name.  I did not in mine, and am worried about cross-domain overlap if any objects are named the same (only 1-2 are for me). 

The exact full name was the key for me to get this to work (security groups and OU's - I haven't tested DL's). 

 
New Post
6/6/2006 9:14 AM
 
Joseph Hamilton

Joined: 5/30/2006
Posts: 29

I have a question...I went through all the steps up to un-commenting the web.config line, and I had set up a "Windows Logon" link on the main page...it's been working beautifully, but I wanted the auto-login now.  I uncommented the line, saved the file, and re-loaded, but we can't get the auto-login now.  It'll just act exactly the same as before.

Any ideas?
 
New Post
6/6/2006 6:10 PM
 
Edward Beck

Joined: 2/1/2006
Posts: 190

for auto login, you'd need the IIS settings to use integrated windows, and remove anon from the windowssignin.aspx - this is for vers 4.x I believe and previous versions used a different setup (WinLogin.aspx).  I am finding out the hard way that many tips do not apply to 4.x based on .net 2.0 (such as RDudley's mixed mode fixes and others posted here). 

Once you have these set, basically forcing hte NTLM dialog, then add the site to the "Local Intranet Sites" (not trusted).  It should then auto-login when using a machine on the domain.  I had to undo this, because it kept logging me off as host and giving me errors on permissions (since my domain account only has admin rights, not host). 

Hope this helps.  I did not have to touch the webconfig file at all to get this working, so you may have to re-comment the settings you changed.  Tam has a post earlier that details the settings.

 
New Post
6/6/2006 7:15 PM
 
Edward Beck

Joined: 2/1/2006
Posts: 190

I have noticed that between portals if the roles are not replicated, rights will not function properly.  I'm not sure if this is an issue with DNN rights controls or with AD synch. 

Case:

  • Both portal A & B use AD with Role Synch. 
  • User is in both portals
  • User is not admin in either site
  • Portal B has Role "Blogger" with Blog module on one page, and rights to edit (create blogs) set for role "Blogger" only (admin defaults in of course)
  • User signes in on portal A with AD credentials, then navigates to portal B
  • Portal B is already synched with AD and user, so he does not have to log in again, but continues working
  • On blog module, user can not create his blog - despite role assignment
  • User checks membership and blogger role does not show (not sure if it should if not public)
  • User logs off
  • User logs back on to Portal B directly
  • User then goes to blog page with module and can now edit/create his blog
  • user logs off and returns back to Portal A to log in there
  • User logs in portal A then navigates to Portal B
  • again - user remains logged in as expected, but now does not have rights to blog

This implies that rights follow based on the portal logged into first (session). Not sure if this is by design with the new membership in 4.x, but this is what I observe.  Once I replicate the role of "Blogger" to Portal A, then everything works on teh blog module for his rights as expected, regardless of where he first logged in.  

This is an issue only in the fact that different portals will provide different roles for each user (I assume).  I am thinking of turning off the role synch - since it doesn't really provide much in my case, and I have seen reported issues of non-AD roles getting stripped, but I have not seen that so far. 

Hope this helps. 

 
 Page 3 of 6
Previous1234...6Next 
Previous
 
Next
HomeHomeDNN Open Source...DNN Open Source...Provider and Extension ForumsProvider and Extension ForumsAuthenticationAuthenticationIntro to Active Directory and DNNIntro to Active Directory and DNN


These Forums are dedicated to discussion of DNN Platform and Evoq Solutions.

For the benefit of the community and to protect the integrity of the ecosystem, please observe the following posting guidelines:

  1. No Advertising. This includes promotion of commercial and non-commercial products or services which are not directly related to DNN.
  2. No vendor trolling / poaching. If someone posts about a vendor issue, allow the vendor or other customers to respond. Any post that looks like trolling / poaching will be removed.
  3. Discussion or promotion of DNN Platform product releases under a different brand name are strictly prohibited.
  4. No Flaming or Trolling.
  5. No Profanity, Racism, or Prejudice.
  6. Site Moderators have the final word on approving / removing a thread or post or comment.
  7. English language posting only, please.
What is Liquid Content?
Find Out
What is Liquid Content?
Find Out
What is Liquid Content?
Find Out