current community

your communities

more stack exchange communities

Stack Exchange
tour help
Take the 2-minute tour ×
Programmers Stack Exchange is a question and answer site for professional programmers interested in conceptual questions about software development. It's 100% free, no registration required.
up vote 1 down vote favorite

I am about to start a new ASP.NET MVC5 project and I am planning the authentication / authorization requirements at present.

The client wants Windows authentication, to prevent their users having to remember another new password. The site is web facing, so the downside would be an ugly pop up box asking for their credentials when they are accessing it offsite. Worse yet, on mobile, this box would be a problem.

The Active Directory Authentication options from out of the box are new to me, but after some reading appear to be more about controlling roles and authorization through your AD groups. I intend to keep all authorization concerns internal to the application.

Ideally, users will have Window authentication but with a nice login page where they can select their domain from a dropdown box and enter their domain login credentials. From some reading I thought possibly ActiveDirectoryMembershipProvider is the answer. However with the new available options I want to be sure there is not other options before blindly taking this route.

share|improve this question
    
If you are going to downvote, at least say why so the question can be improved (assuming it's salvageable). –  James Apr 22 at 8:53
    
I didn't downvote but per my reading, your question reads like asking to recommend a tool / library, off-topic here: meta.programmers.stackexchange.com/questions/6483/… –  gnat Apr 22 at 9:17
    
Maybe needs reworded then as that isn't the case. I will re-think wording. ActiveDirectoryMembershipProvider could do what I need, but I am unsure if an OOTB options is a better fit –  James Apr 22 at 9:20

1 Answer 1

up vote 0 down vote accepted

Well, I found This which is cleanest i've found. I have confirmed the new OOTB options are not suited. This is just showig switching out form membership to use the AD Membership instead. You can then just clear out all the ApplicationUser stuff.

share|improve this answer
    
Active Directory? Yikes. What if it's just a mom and pop store? What does "not suited" mean? –  Robert Harvey Apr 22 at 16:19
    
@RobertHarvey The requirement I am needing to fill is Active Directory. I wanted to avoid just using windows authentication though as the gray pop up box if accessed remotely is ugly. the link gives an overview, I would be moving the auth stuff to an auth class and injecting it in to the controller. The "not suited" refers to the new ASP.NET authentication options added in VS2013 –  James Apr 22 at 20:02

Your Answer

 
discard

By posting your answer, you agree to the privacy policy and terms of service.

Not the answer you're looking for? Browse other questions tagged or ask your own question.