Products

Evoq Content Overview Content Creation Workflow Asset Management Mobile Responsive Personalization Content Analytics SEO Integrations Security Website PerformanceEvoq Engage Overview Community Management  Dashboard  Analytics  Member Profile Gamification Advocate Marketing Community Engagement  Ideas  Answers  Discussions  Groups  Wikis  Events Mobile ReadyDNN Support PackagesEvoq: CMS FeaturesEvoq OnDemandCompare DNN's CMS Products

Solutions

Content Management SystemMulti-Channel PublishingDigital MarketingOnline Community ManagementIntranet Software SolutionOur CustomersPrime

Resources

Test DrivesSchedule A DemoDocumentation CenterWebinarsWhite PapersProduct ManualsRequest PricingData SheetsCase StudiesEvoq Preferred Products Content Management Ecommerce Forms Identity Management and Authentication Site Management Social Themes

Partners

DNN Partners Partner Directory Become a DNN Partner Partner Program Overview  Hosting  Implementation  ISV  Training  Competencies

Community

Participate Ask a Question Forums Community Showcase DNN MVP  Program Overview  Lifetime MVPs  Honorary MVPs Subscribe to DNN Digest Advisory Groups  Awareness Advisory Group  Developer Advisory Group  Partner Advisory Group  Technology Advisory GroupLearn Documentation Wiki Community Blog Video Library Project History Development RoadmapDownload DNN Store Language Packs Manuals Nightly BuildsSecurity Policies Security Center

Blog

About

News Press Releases News Coverage Press KitCareersContact DNN

QA

Ideas Test

New Community Website

Ordinarily, you'd be at the right spot, but we've recently launched a brand new community website... For the community, by the community.

Yay... Take Me to the Community!

Welcome to the DNN Community Forums, your preferred source of online community support for all things related to DNN.
In order to participate you must be a registered DNNizen
HomeHomeDNN Open Source...DNN Open Source...Provider and Extension ForumsProvider and Extension ForumsAuthenticationAuthenticationActive Directory Authentication in DNN.Active Directory Authentication in DNN.
Previous
 
Next
New Post
8/4/2009 2:22 AM
 
sanjeevt

Joined: 7/13/2009
Posts: 8

Hi all -

We are planning to have AD authentication for the portal we are internally developing.  I tried to configure the 'Authentication System' using Extensions would appreciate clarifications on my understanding.

My approach: I only enabled the 'DNN_ActiveDirectoryAuthentication' (the other 3 were disabled).

1) Though I enabled the 'HIDE LOGIN' option, it is forcing me to enter my network credentials (part of Active directory).  I was expecting the portal to automatically log me into the portal. Is there a way to avoid entering credentials (LOGIN)?  How do I do it?

2) I was able to successfully login using my AD credentials.  But then in the SQL SERVER database, I notice that the information is being captured in the user table (similar to what I would expect in 'Default Authentication'.  Why is this being done?  Does DNN then validate the credentials against the database after the user logs-in once?  More clarity would be greatly appreciated.

3)  Just having  'DNN_ActiveDirectoryAuthentication' enabled, does restrict the usage of  'admin' and 'host' userid (since they are set up using the 'Default Authentication' (maintained in the database).  I then changed my network userid entry in the database to 'superuser' role and able to work around.  Am I right in this approach?  Can I never use the HOST userid then?

4) We have a 2 DOMAIN setup at my workplace. These are TRUSTED Domains.  Say, Domain-A and Domain-B. I am told there are internal applications that allows users of both these Domains to access (not DNN applications).  But when I try out the DNN portal, I notice, we are only able to validate only users against the primary domain (Say, Domain-A).   It is not able to sense the users of the other domain, though they are in a Trusted domain.  How do I address this issue?

5) I have some issues in my setup of 'DotNetNuke_Community_05.01.00_Source'.  When I open the VS2008 solution, I get an error 'Unable to open the web site DotNetNuke_Community' (related to no access to IIS metabase).  I know I am an adminstrator in my development machine.

Anyways, I decided to create a WEBSITE (so that I can run this in CASSINI) and pointed to the files I extracted.   I was then able to setup the portal in CASSINI and work.  Today I then tried out to create a virtual folder in IIS (and point to the website related files) with my files and I am getting strange errors (page not found).  Is there some config settings I need to modify (not sure if CASSINI set-up changed some URL settings).  I tried the regular ASP.NET way of working in CASSINI and then move them to IIS. 

Appreciate any help!

Regards!

 

 

 
 
New Post
8/4/2009 6:06 PM
 
Mike Horton


Joined: 7/16/2003
Posts: 4865

1. Is it the IIS popup that's asking for credentials or are you ending up on the DNN login page?

2. You don't say which version of DNN you're running or which version of the provider but the long and short of it is quite often modules and the core code are looking for a userid (module/page/portal permissions is an example). This can't happen if there's no user in the database. In the latest versions of the AD provider the user's password is not stored (I generate a random password to be stored after the user authenticates).

3. You're correct.

4. Unfortunately I don't have a multi domain setup so I can't answer that question. I do know some users have set it up on multi-domains and all we can do is hope one answers.

5. I'm guessing your IIS site for the source code isn't called DotNetNuke_Community. If you open the .sln in notepad you should be able to change the URL it's pointing to to your URL.
 
New Post
8/5/2009 2:04 AM
 
sanjeevt

Joined: 7/13/2009
Posts: 8

Hi Mike -

Thanks for your esponse! 

1) It is the DNN Login control/module!  I want to setup AD authentication and the user need not have to enter credentials.  Even if I give HIDE LOGIN CONTROLS (checkbox enabled), it is showing in my site.  I see links/articles where people have instructed how to do it in IIS.  Unfortunately, I am not able to setup DNN 5.1.0 (the version i tried - community edition) in IIS ('ScriptModule already defined error', which I have hit a road-block). 

So, I tried to setup it up in CASSINI (website) and am proceeding.  My colleague setup the same in his IIS (same download from www.dotnetnuke.com site) and it is fine on his machine (virtual folder in default web site).  I followed the links to include 'remove' in the config files to address the 'ScriptModule already defined" error, but to no avail.  I am hoping, I continue exploring in CASSINI and then setup the modified code in IIS. 

2) The DNN version is 5.1.0 (I also tried 5.1.1).  User authentication is being done against AD, but immediately, I notice the network userid/password information is being saved in the database (like the default authentication DNN has).  The Password may not be stored (When I do a FORGET password against my network id, it sends a mail with just ***** in the pwd.   But why is the user information stored?

5) Here, I am having difficulty setting up Installation in IIS (due to 'Script module error).  I am aware of changing the path in the .sln file to point to my virtual folder in IIS, but I could not get the IIS setup going.   The same download file works on my colleague's development box (in his IIS).

Thanks once again!

Sanjeev
 
New Post
8/5/2009 10:04 AM
 
Mike Horton


Joined: 7/16/2003
Posts: 4865

I'm guessing you're running IIS7 on Vista then? If so you have to change the application pool the site runs under to use Classic ASP.NET instead of the Default AppPool. I'm not sure how to do this under Cassini.

The user information is stored for the reason I mentioned above. There are times that DNN needs a userid # (the primary key in the Users table). The idea behind the provider is to be just an entry way into the DNN system. Once the account is authenticated (and the necessary information injected into the database) DNN runs as if the user was any other DNN user (except for occasional checks back against the AD for updated information).

I'm going to guess as I haven't searched for your error but I suspect it may be an AJAX problem that you're seeing on your system.
 
New Post
8/17/2009 2:11 AM
 
sanjeevt

Joined: 7/13/2009
Posts: 8

Hi Mike -

Thanks for your help! 

This may sound pretty obvious for some, but just to help the community, for the automatic login against Active Directory, the end-user should be provided the URL to the WindowsSignin.aspx page (yoururl/DesktopModules/AuthenticationServices/ActiveDirectory/WindowsSignin.aspx).

This will ensure their credentials against the AD are picked up automatically and they don't have to sign-in manually.

Regards

 

 

 

 

 
 
 Page 1 of 1
Previous
 
Next
HomeHomeDNN Open Source...DNN Open Source...Provider and Extension ForumsProvider and Extension ForumsAuthenticationAuthenticationActive Directory Authentication in DNN.Active Directory Authentication in DNN.


These Forums are dedicated to discussion of DNN Platform and Evoq Solutions.

For the benefit of the community and to protect the integrity of the ecosystem, please observe the following posting guidelines:

  1. No Advertising. This includes promotion of commercial and non-commercial products or services which are not directly related to DNN.
  2. No vendor trolling / poaching. If someone posts about a vendor issue, allow the vendor or other customers to respond. Any post that looks like trolling / poaching will be removed.
  3. Discussion or promotion of DNN Platform product releases under a different brand name are strictly prohibited.
  4. No Flaming or Trolling.
  5. No Profanity, Racism, or Prejudice.
  6. Site Moderators have the final word on approving / removing a thread or post or comment.
  7. English language posting only, please.
What is Liquid Content?
Find Out
What is Liquid Content?
Find Out
What is Liquid Content?
Find Out