Authenticate using Active Directory

[pabowen]

I need to write a web app that performs a simple operation, but I am a little lost in how to go about it. If you can even just point me in the right direction I would appreciate.

I have a web application that I am working on, the desire is for users to enter their network domain userid and password and submit that to Active Directory. (not automatically pull it from the system as they may be on an external network).

The intent is to log them into Active directory using the submitted the submitted username and password, and if successful pass me back a specified AD field.

I am hoping I am explaining this correctly. Any help you may provide would be greatly appreciated. Even if it is just a link to an example.

Thanks,
Patrick

 

[mthakershi]

If I am getting it right, you need to set security mode to windows authentication type on IIS. This will authenticate people based on your active directory.

Malay

 

[pabowen]

mthakershi,

No this is not quite what I am wanting. The intent is for people to be able to log on to this web application from home, using their network login and password.

As it is from home, Windows authentication will not work.

What I want them to do is type in their domain user, and domain password into the web application. The web server which is on the correct domain will take those 2 values and pass them to Active Directory to validate that the user authenticates correctly. If they do, i want it to pass a 3rd Active directory field back to me.

Does that make more sense?

Thanks

 

[phinoppix]

Have a look on DirectoryServices namespace (you may need to add a Reference on assembly first). There is a class named DirectoryEntry which basically wraps the ADSI COM objects. You cant start from there. So, yes what you want is possible so long the ASP.NET impersonated account has sufficient rights to read ADS entries from the domain server.

my 2 cents