What membership/role providres should I use?

D

David Thielen

1. I assume the two options I should use is Windows authentication if all
users are in Active Directory and all users use Internet Explorer. And option
2 is to use the ASP.NET SqlServerExpress standard user/role manager for all
other cases? I assume that the ActiveDirectory role manager still does not
support IsInRole() on ActiveDirectory groups.

2. While there can be multiple membership/role providers, this strikes me as
asking for trouble. For a portal where we are trying to keep things simple,
is there any reason to go with both providers being available?
 
L

Luke Zhang [MSFT]

Hello,

Even isinrole can't work with AD, We can still query AD to check role
information with windows authentication. For example:

http://support.microsoft.com/?id=326340

Regards,

Luke Zhang
Microsoft Online Community Support

==================================================
When responding to posts, please "Reply to Group" via your newsreader so
that others may learn and benefit from your issue.
==================================================

(This posting is provided "AS IS", with no warranties, and confers no
rights.)
 
D

David Thielen

Hi;

I may not be understanding something right. I set my system as follows:'
<roleManager enabled="false"/>
<authentication mode="Windows">
</authentication>
<identity impersonate="true"/>
<authorization>
<deny users="?"/>
</authorization>

And IsInRole works when I pass it an AD group. I have no code for this, just
the above Web.Config setting.
 
L

Luke Zhang [MSFT]

I think this only work with local user, not a AD account.

Reagrds,

Luke Zhang
Microsoft Online Community Support

==================================================
When responding to posts, please "Reply to Group" via your newsreader so
that others may learn and benefit from your issue.
==================================================

(This posting is provided "AS IS", with no warranties, and confers no
rights.)
 
D

David Thielen

My WindowsIdentity is WINDWARD\dave and IsInRole works for both local and
domain groups.

??? - dave
 
L

Luke Zhang [MSFT]

My mistake, You are correct at this. Anyway, there is still some limitation
which lead me a wrong answer in my test:

http://support.microsoft.com/default.aspx?scid=kb;en-us;842794

Hope this help,

Luke Zhang
Microsoft Online Community Support

==================================================
When responding to posts, please "Reply to Group" via your newsreader so
that others may learn and benefit from your issue.
==================================================

(This posting is provided "AS IS", with no warranties, and confers no
rights.)
 
D

David Thielen

Yeah - I learned the log out/in about a year ago on another project - big PITA.
 

Ask a Question

Want to reply to this thread or ask your own question?

You'll need to choose a username for the site, which only take a couple of moments. After that, you can post your question and our members will help you out.

Ask a Question

Similar Threads

Membership and Role Provider Discussion 0
Should I use .net's membership, role systems for authentication andauthorization? 2
I feel it makes sense NOT to use custom membership & role providers 5
role-based security and ActiveDirectory 18
Membership & Roles ApplicationName 0
Should I use Membership and Roles in ASP.NET 2.0 1
Profiles & Membership 0
Using AD and a Table for Membership and Roles 1

Members online

Total: 94 (members: 3, guests: 91)
Robots: 206

Forum statistics

Threads
473,995
Messages
2,570,235
Members
46,821
Latest member
AleidaSchi

Latest Threads

Top