Products

Evoq Content Overview Content Creation Workflow Asset Management Mobile Responsive Personalization Content Analytics SEO Integrations Security Website PerformanceEvoq Engage Overview Community Management  Dashboard  Analytics  Member Profile Gamification Advocate Marketing Community Engagement  Ideas  Answers  Discussions  Groups  Wikis  Events Mobile ReadyDNN Support PackagesEvoq: CMS FeaturesEvoq OnDemandCompare DNN's CMS Products

Solutions

Content Management SystemMulti-Channel PublishingDigital MarketingOnline Community ManagementIntranet Software SolutionOur CustomersPrime

Resources

Test DrivesSchedule A DemoDocumentation CenterWebinarsWhite PapersProduct ManualsRequest PricingData SheetsCase StudiesEvoq Preferred Products Content Management Ecommerce Forms Identity Management and Authentication Site Management Social Themes

Partners

DNN Partners Partner Directory Become a DNN Partner Partner Program Overview  Hosting  Implementation  ISV  Training  Competencies

Community

Participate Ask a Question Forums Community Showcase DNN MVP  Program Overview  Lifetime MVPs  Honorary MVPs Subscribe to DNN Digest Advisory Groups  Awareness Advisory Group  Developer Advisory Group  Partner Advisory Group  Technology Advisory GroupLearn Documentation Wiki Community Blog Video Library Project History Development RoadmapDownload DNN Store Language Packs Manuals Nightly BuildsSecurity Policies Security Center

Blog

About

News Press Releases News Coverage Press KitCareersContact DNN

QA

Ideas Test

New Community Website

Ordinarily, you'd be at the right spot, but we've recently launched a brand new community website... For the community, by the community.

Yay... Take Me to the Community!

Welcome to the DNN Community Forums, your preferred source of online community support for all things related to DNN.
In order to participate you must be a registered DNNizen
HomeHomeDNN Open Source...DNN Open Source...Provider and Extension ForumsProvider and Extension ForumsAuthenticationAuthenticationConfiguration ErrorConfiguration Error
Previous
 
Next
New Post
3/19/2012 12:22 PM
 
Vicenç Masanas


Vicenç Masanas's Avatar

Vicenç Masanas's Avatar

www.disgrafic.com
Joined: 9/16/2003
Posts: 1974
One step close... I did #3 and the error is gone. But I still cannot connect with any new users.
Then this was working, some users were able to login so now all users that logged-in in a previous version can also login.
But if I try using a new user (one that not exists on the dnn web) I cannot login.
Vicenç Masanas
Banyoles, Girona - Spain

Disgrafic.com    PSD to DNN
 
New Post
3/20/2012 7:36 AM
 
Michael Tobisch


Michael Tobisch's Avatar

https://www.dnnwerk.at
Joined: 6/27/2005
Posts: 2083
Vicenç,

I think 2 and 3 are not necessary. It worked fine at my place after disabling UAC and granting modify control to the account the app pool runs under in the Temporary ASP.Net Files folder.

Best wishes
Michael

Michael Tobisch
DNN★MVP

dnn-Connect.org - The most vibrant community around the DNN-platform
 
New Post
3/20/2012 8:37 AM
 
Vicenç Masanas


Vicenç Masanas's Avatar

Vicenç Masanas's Avatar

www.disgrafic.com
Joined: 9/16/2003
Posts: 1974
Michael, I think I already tried this but I'll try again.
Vicenç Masanas
Banyoles, Girona - Spain

Disgrafic.com    PSD to DNN
 
New Post
3/20/2012 6:05 PM
 
Vicenç Masanas


Vicenç Masanas's Avatar

Vicenç Masanas's Avatar

www.disgrafic.com
Joined: 9/16/2003
Posts: 1974
I've finally managed to get this working (thanks to the great support from Sacha Trauwaen).
My current setup to make DNN AD work on Windows Server 2008 SP2:

0.IIS Apppol
- running in classic mode
- apppool identity is network service

 1.web.config

- Add the Authentication module in and
- Using impersonation:
- Forms authentication:
- Full trust

2.Made the user used in the impersonation a member of the local Administrators for the webserver

EDIT: 2.1. Disabled UAC on the server

3.Configured permissions for the user used in impersonation at the dnn root folder and ASP.NET temp folder. Also for the Network Service

4.At the root of the web site configure authentication as:
- Enabled: anonymous, windows, forms, impersonation
- Disabled: basic

5.At the WindowsSignin.aspx page configure authentication as:
- Enabled: windows, forms, impersonation
- Disabled: basic, anonymous


So this setup works for me and the behaviour I get is:
a/ On first access to the site users get automatically loggein when they are on the domain
b/ On first access to the site users get the windows authentication when not on the domain
c/ Users can logout and then they get the DNN User login screen where they can login with any account
d/ If users close the browser they will continue to be logged in when they come again to the site
e/ One you have logged in once, the windows popup auth will never appear again (on my tests) UNLESS you clear the browser history (temp files) and cookies


Things I don't like
#2 User member of the local administrators group in the web server. Isn't there any other option?
c/ Users get the DNN login control when they logout. Is there a way to get the windows auth popup instead?
e/ Clearing browser history solves c/. Isn't there any other option?

Questions:
-do you see anything wrong on this setup?
-the user used on the AD configuration screen needs to be the same used for impersonation? I don't think so, even I'm using the same here.

I appreciate the help from everyone here and I hope the summary can help others too.
Vicenç Masanas
Banyoles, Girona - Spain

Disgrafic.com    PSD to DNN
 
New Post
3/20/2012 6:17 PM
 
Mike Horton


Joined: 7/16/2003
Posts: 4865
Glad you got it working Vicenç. Apologies for not getting back to your email yesterday. I was just slammed at work and then had to teach last night.

A couple of things.... on Step 4 you shouldn't need Windows enabled.

On things you don't like....
#2 Switch to 2008 R2? It sucks but I've found it's not required under that version of the OS.
c/ I think that may be part of you having windows authentication enabled for the whole site.The only time I've seen something like that is when the site is running under integrated on the 5.0.2 and older versions of the provider

No the user in the configuration screen and the user used for impersonation don't have to be the same user though I also tend to do the same.
 
 Page 3 of 4
Previous1234Next 
Previous
 
Next
HomeHomeDNN Open Source...DNN Open Source...Provider and Extension ForumsProvider and Extension ForumsAuthenticationAuthenticationConfiguration ErrorConfiguration Error


These Forums are dedicated to discussion of DNN Platform and Evoq Solutions.

For the benefit of the community and to protect the integrity of the ecosystem, please observe the following posting guidelines:

  1. No Advertising. This includes promotion of commercial and non-commercial products or services which are not directly related to DNN.
  2. No vendor trolling / poaching. If someone posts about a vendor issue, allow the vendor or other customers to respond. Any post that looks like trolling / poaching will be removed.
  3. Discussion or promotion of DNN Platform product releases under a different brand name are strictly prohibited.
  4. No Flaming or Trolling.
  5. No Profanity, Racism, or Prejudice.
  6. Site Moderators have the final word on approving / removing a thread or post or comment.
  7. English language posting only, please.
What is Liquid Content?
Find Out
What is Liquid Content?
Find Out
What is Liquid Content?
Find Out