Products

Evoq Content Overview Content Creation Workflow Asset Management Mobile Responsive Personalization Content Analytics SEO Integrations Security Website PerformanceEvoq Engage Overview Community Management  Dashboard  Analytics  Member Profile Gamification Advocate Marketing Community Engagement  Ideas  Answers  Discussions  Groups  Wikis  Events Mobile ReadyDNN Support PackagesEvoq: CMS FeaturesEvoq OnDemandCompare DNN's CMS Products

Solutions

Content Management SystemMulti-Channel PublishingDigital MarketingOnline Community ManagementIntranet Software SolutionOur CustomersPrime

Resources

Test DrivesSchedule A DemoDocumentation CenterWebinarsWhite PapersProduct ManualsRequest PricingData SheetsCase StudiesEvoq Preferred Products Content Management Ecommerce Forms Identity Management and Authentication Site Management Social Themes

Partners

DNN Partners Partner Directory Become a DNN Partner Partner Program Overview  Hosting  Implementation  ISV  Training  Competencies

Community

Participate Ask a Question Forums Community Showcase DNN MVP  Program Overview  Lifetime MVPs  Honorary MVPs Subscribe to DNN Digest Advisory Groups  Awareness Advisory Group  Developer Advisory Group  Partner Advisory Group  Technology Advisory GroupLearn Documentation Wiki Community Blog Video Library Project History Development RoadmapDownload DNN Store Language Packs Manuals Nightly BuildsSecurity Policies Security Center

Blog

About

News Press Releases News Coverage Press KitCareersContact DNN

QA

Ideas Test

New Community Website

Ordinarily, you'd be at the right spot, but we've recently launched a brand new community website... For the community, by the community.

Yay... Take Me to the Community!

Welcome to the DNN Community Forums, your preferred source of online community support for all things related to DNN.
In order to participate you must be a registered DNNizen
HomeHomeDNN Open Source...DNN Open Source...Provider and Extension ForumsProvider and Extension ForumsAuthenticationAuthenticationAD authentication on public portal preventing search engine indexingAD authentication on public portal preventing search engine indexing
Previous
 
Next
New Post
3/2/2012 1:06 PM
 
aye-jay


Joined: 2/23/2012
Posts: 5
Hi Mike,

yes, Google Webmaster Tools has a feature in the diagnostics "Fetch as Googlebot", which lets you see the way that Google views the site.

The normal report (and what I get when I turn _off_ the the AD authentication) is a "200 OK" report followed by the code view of the page.

With AD authentication turned _on_ the report returns a "302 Redirect" and the page code is is basically "This page has moved to http://yourdomain.com/default.aspx" (I can source the entire snippet if you think it will help) It doesn't seem to matter if i fetch the home page or any other, the Googlebot sees everything as a redirect...

It seems clear, as the error goes away when I turn it off, that it is redirecting to the AD authenticator.

Is there a way to set AD authentication _only_ for a portion of the site, and have the authentication only when our users link into that area...? I'm not keen on Google indexing our intranet anyway.... or would i need to set up a child portal?

thanks,
aye-jay
 
New Post
3/2/2012 3:52 PM
 
Mike Horton


Joined: 7/16/2003
Posts: 4865
Thanks aye-jay. I didn't realize until just now that I could click on the Success link and actually see what status code was returned. I was expecting a Failed or some other indication that it was redirecting or whatever.

Anyway, when I looked at my test AD site at home.... It's showing a 302 Found designation but is also saying that it's trying to go to WindowsSignin.aspx. On that site I have trying to authenticate everyone. However, on our school site I've set it up so that only if the IP is from within the local network does it try to authenticate. On those reports I'm still getting the 302 Found designation but links are exactly the same.

So I think turned off the provider on my home site. And got the same results that you did (200 OK).

At this point, I don't think there's anything I can do to solve the problem and still have automatic logons. When the provider is enabled it uses an httpModule (the line in the web.config is what loads it). There has to code somewhere in the core that does the check if the provider is enabled or not and if it is then it loads the module. And that must be where Googlebot (and other site indexers) must be picking up the redirect and there's nothing I can do about that as it would require a core code change.

So what can you do? It depends on how much work you want to do and how big your site is. What I've done (on parts of my portal) is made all pages visible to all users but on pages that are going to contain information that I only want users to see I've put a link to WindowsSignin.aspx. If they happen to be on campus but have logged out of the site for some reason they can click the link and it'll automatically log them in. If they're off site they have to log in manually using the DNN Login link. You can see what I mean @ http://www.bus.nait.ca/Resources/IDrive.aspx. The module that contains the text to login is visible only to UnAuthenticated Users while the rest of the modules are visible only to Authenticated users.

In the meantime I'll try to dig through the core code this weekend to see if I can find where it's doing the redirect to the HttpModule and maybe I'll see something I can take forward to the Core Engineers.
 
New Post
3/2/2012 7:07 PM
 
aye-jay


Joined: 2/23/2012
Posts: 5
Thanks Mike, I had hoped there was something I was missing in my setup, but that doesn't seem to be the case.

I'm intrigued with the set up you have in place at "http://www.bus.nait.ca/Resources/IDrive.aspx" and I am hopeful we can set up a similar system for ourselves, or something like it. This is a Regional District government site (and while not thrilled to have to be posting to this forum, at least it is moderated by a fellow Canadian!) so any changes will need to go through the corner offices.

To be clear, your _pages_ are visible to all, but the _modules_ on the page just to authenticated users? If users are off-campus and use the DNN login, they use their AD credentials ? (without, i'm guessing, the "domain\" prefix)

I have had no luck getting AD users (with corresponding DNN user accounts) logged in through the DNN login, and saw this as a bit of a step backward, not to mention an administrative pain.... but maybe I should revisit this...

I will test some more early next week and see what I can come up with in the way of a workaround.

Thanks again

aye-jay
 
New Post
3/7/2012 7:27 PM
 
aye-jay


Joined: 2/23/2012
Posts: 5
Ok, I`m clearly missing _something_ here... Would be happy, I think, with the set up you use in the link above, Mike, but can`t get it to work here, unless I am misunderstanding what is happening... Does your page (http://www.bus.nait.ca/Resources/IDrive.aspx) not have the Googlebot redirect error?

As the link you have for un-authenticated user links to "http://www.bus.nait.ca/DesktopModules/AuthenticationServices/ActiveDirectory/WindowsSignin.aspx" it seems to me that you _must_ have the active directory authentication enabled. (disabled, if I link to WindowsSignin.aspx, I get Windows authentication errors regardless, it seems, of what I set in IIS).

And it doesn't seem possible to use the AD authentication on just certain pages/areas, it's all or nothing.

Basically:
active directory authentication "on" - redirect error
active directory authentication "off" - no redirect error but no authentication

Burned a lot of cycles on this, think I'm giving up... can _not_ tolerate the re-direct, so will either use the DNN login and provide a single set of credentials for the intranet area or maybe look at a separate portal for the intranet side...

Thanks for your time, Mike, anything else you can think of I should try I'm all ears.

aye-jay
 
 Page 2 of 2
Previous12 
Previous
 
Next
HomeHomeDNN Open Source...DNN Open Source...Provider and Extension ForumsProvider and Extension ForumsAuthenticationAuthenticationAD authentication on public portal preventing search engine indexingAD authentication on public portal preventing search engine indexing


These Forums are dedicated to discussion of DNN Platform and Evoq Solutions.

For the benefit of the community and to protect the integrity of the ecosystem, please observe the following posting guidelines:

  1. No Advertising. This includes promotion of commercial and non-commercial products or services which are not directly related to DNN.
  2. No vendor trolling / poaching. If someone posts about a vendor issue, allow the vendor or other customers to respond. Any post that looks like trolling / poaching will be removed.
  3. Discussion or promotion of DNN Platform product releases under a different brand name are strictly prohibited.
  4. No Flaming or Trolling.
  5. No Profanity, Racism, or Prejudice.
  6. Site Moderators have the final word on approving / removing a thread or post or comment.
  7. English language posting only, please.
What is Liquid Content?
Find Out
What is Liquid Content?
Find Out
What is Liquid Content?
Find Out