Products

Evoq Content Overview Content Creation Workflow Asset Management Mobile Responsive Personalization Content Analytics SEO Integrations Security Website PerformanceEvoq Engage Overview Community Management  Dashboard  Analytics  Member Profile Gamification Advocate Marketing Community Engagement  Ideas  Answers  Discussions  Groups  Wikis  Events Mobile ReadyDNN Support PackagesEvoq: CMS FeaturesEvoq OnDemandCompare DNN's CMS Products

Solutions

Content Management SystemMulti-Channel PublishingDigital MarketingOnline Community ManagementIntranet Software SolutionOur CustomersPrime

Resources

Test DrivesSchedule A DemoDocumentation CenterWebinarsWhite PapersProduct ManualsRequest PricingData SheetsCase StudiesEvoq Preferred Products Content Management Ecommerce Forms Identity Management and Authentication Site Management Social Themes

Partners

DNN Partners Partner Directory Become a DNN Partner Partner Program Overview  Hosting  Implementation  ISV  Training  Competencies

Community

Participate Ask a Question Forums Community Showcase DNN MVP  Program Overview  Lifetime MVPs  Honorary MVPs Subscribe to DNN Digest Advisory Groups  Awareness Advisory Group  Developer Advisory Group  Partner Advisory Group  Technology Advisory GroupLearn Documentation Wiki Community Blog Video Library Project History Development RoadmapDownload DNN Store Language Packs Manuals Nightly BuildsSecurity Policies Security Center

Blog

About

News Press Releases News Coverage Press KitCareersContact DNN

QA

Ideas Test

New Community Website

Ordinarily, you'd be at the right spot, but we've recently launched a brand new community website... For the community, by the community.

Yay... Take Me to the Community!

Welcome to the DNN Community Forums, your preferred source of online community support for all things related to DNN.
In order to participate you must be a registered DNNizen
HomeHomeDNN Open Source...DNN Open Source...Provider and Extension ForumsProvider and Extension ForumsAuthenticationAuthenticationCouple of issues with AD AuthenticationCouple of issues with AD Authentication
Previous
 
Next
New Post
4/15/2008 3:35 PM
 
Mike Horton


Joined: 7/16/2003
Posts: 4865

You're right it should be interchangeable but that's not how the DNN process looks at it. When a user logs in (either manually or automatically) it checks if the username exists already in the database and adds them if it doesn't. So "domain\user" and user@domain are considered different users. What I need to do is add a setting for administrators to choose how they want their users stored in the database which is easy enough but then I need to be able to change all the current users in the database. I'm going on memory but I don't think the current package installer will handle sql scripts being added but that will change with the release of DNN 5.

You're right that automatically logged in users have a random password generated for their account but if they use the Windows Login option and manually login through that one it checks the password against the AD and updates the password in the DNN database. If they try to login with "Domain\User" under the standard DNN login against the random password then, yes, it will fail.
 
New Post
4/15/2008 4:51 PM
 
Afrim Kacaj

Joined: 11/19/2003
Posts: 12

Maybe I missunderstand the role of the AD provider here but couldnt you just accept both usernames and store it in the database any way you like?  In other words, convert to the prefered form as soon as the user hits submit.  Similar to what you did with the sample script.  That way DNN will always get one form of the username and it should not be a problem.  Since the Autologin generates the domain\user form then just convert everything else to that.  This can at least be a temporary fix.

The only problem i see with storing everything in domain\user form is sorting in the user list.  All users will be sorted by domain name first so they all appear under the same letter.  Huge pain when browsing lots of users in the list.

I tried both standard and windows login with the Domain\User form and both fail when the account has been created as a result of autologin.
 
New Post
4/15/2008 6:24 PM
 
Mike Horton


Joined: 7/16/2003
Posts: 4865

Yes I could but there's more to it than that. If I put an drop down box in the settings page for "Store Usernames In Which Format?:" and put the following options in:

1. Domain\Username
2. Username@domain.com
3. Just username

I have to account/program for user's that are already in the database. I don't think the package installer, in the state that is in DNN 4, installs SQL procedures into the database so I haven't been able to make add those options but that will change with DNN 5 as the package installer that's currently used just for authentication providers will be used for all modules/skins/etc.

Now when logging in fails under Windows login, is there anything significant posted to the Event Viewer in your DNN install? I really can't understand why that's not working for you but entering your email account does. It's just the code authenticating the username entered against the AD.
 
New Post
4/15/2008 6:37 PM
 
Afrim Kacaj

Joined: 11/19/2003
Posts: 12

I eventualy got to log in, problem is that i was entering domain.com/myuser instead of domain/myuser.  It does not like the .com part which is also a bug I guess.

I wouldnt give the users the option.  Just store it in the database in the email form, then convert to the email form at the user interface level if they enter something different.  Also instead of just username i would give the option of default domain name.  Because a scenario can occur where two users exist with the same name in a multi domain environment.

Also if I disable standard login, there does not seem to be a way to promote an AD user to host superuser?

By the way thank you for getting back to me so quickly on this!

 
 
New Post
4/15/2008 7:46 PM
 
Mike Horton


Joined: 7/16/2003
Posts: 4865

Check your actual AD. I'd be willing to bet that at the top of the tree it's listed as just domain and not domain.com.

I wasn't talking about giving the users the option of how their username is stored but the administrators of the site. Like you mentioned, all your users connect to network resources using user@domain.com but mine all connect using domain\username so I would want to give the administrator the option of how the username is stored. Your scenario of the same username across multi domains is one of the reasons why I haven't implemented the ability to strip the domain from the account (also have to consider portals that allow regular registrations). The code to strip the domain from the username is actually there already but is hidden until I find a suitable solution.

If you open the Users table and find your user account you can change the IsSuperUser flag to a 1 or True (depending on what version of SQL you're using) to promote your user to Host status.
 
 Page 2 of 4
Previous1234Next 
Previous
 
Next
HomeHomeDNN Open Source...DNN Open Source...Provider and Extension ForumsProvider and Extension ForumsAuthenticationAuthenticationCouple of issues with AD AuthenticationCouple of issues with AD Authentication


These Forums are dedicated to discussion of DNN Platform and Evoq Solutions.

For the benefit of the community and to protect the integrity of the ecosystem, please observe the following posting guidelines:

  1. No Advertising. This includes promotion of commercial and non-commercial products or services which are not directly related to DNN.
  2. No vendor trolling / poaching. If someone posts about a vendor issue, allow the vendor or other customers to respond. Any post that looks like trolling / poaching will be removed.
  3. Discussion or promotion of DNN Platform product releases under a different brand name are strictly prohibited.
  4. No Flaming or Trolling.
  5. No Profanity, Racism, or Prejudice.
  6. Site Moderators have the final word on approving / removing a thread or post or comment.
  7. English language posting only, please.
What is Liquid Content?
Find Out
What is Liquid Content?
Find Out
What is Liquid Content?
Find Out