Single Sign On (SSO)
-
Hello All, Thank you for reading this post. Iam trying to build a single sign on, so that other applications in my company can be reached by just logging once. Here is how it is: 1. Lets say the site i build is called abc.com 2. I want the user to logon to abc.com, all my user info is in a SQL Server database 3.Once login is determined successful, we go to a welcome page in abc.com... From abc.com, there is a link called link1.abc.com which is a different application... here i dont want the application to ask for logon credentials again, it should give access to the user because user was validated in abc.com 4. Expanding this...how to I provide this service if i have more that 3 applications...??? My company cannot afford LDAP...all we have is a good SQL Server database, .NET 2005...what is the quickest and best way to acheive single sign on ??? Is there a free third party tool/ open source available? Sample code, articles explaining things are very very welcome !! Thank you RH
-
Hello All, Thank you for reading this post. Iam trying to build a single sign on, so that other applications in my company can be reached by just logging once. Here is how it is: 1. Lets say the site i build is called abc.com 2. I want the user to logon to abc.com, all my user info is in a SQL Server database 3.Once login is determined successful, we go to a welcome page in abc.com... From abc.com, there is a link called link1.abc.com which is a different application... here i dont want the application to ask for logon credentials again, it should give access to the user because user was validated in abc.com 4. Expanding this...how to I provide this service if i have more that 3 applications...??? My company cannot afford LDAP...all we have is a good SQL Server database, .NET 2005...what is the quickest and best way to acheive single sign on ??? Is there a free third party tool/ open source available? Sample code, articles explaining things are very very welcome !! Thank you RH
Hi, On the root add a config file with the following: /authentication authorization allow users="*" / /authorization in the protected areas (e.g. Apps) add a web.config file with the following: authorization deny users="?" / /authorization In the login form: Check your SQL database... IF it's OK - > FormsAuthentication.RedirectFromLoginPage(txtUsername.Text, False) Hope this helps ;)
NajiCo http://www.InsideVB.NET[^] It's nice 2b important, but it's more important 2b nice...