Well, it is for the same company.
Company has its intranet which runs has domain say
"user.com" while the
application is deployed on another domain say
"validated.com" behind the
firewall. Now end user from the intranet want to use this
application and we
need to authenticate the user. Since there is no end user
information
available on the "validated.com" server, so we
want to first authenticate
user by the user's credential on "user.com"
(intranet -which has LDAP). Hope
this will clarify the problem.
Thanks.
On 9/13/06, Rob Karatzas <tutor ebiz-developer.com>
wrote:
>
> been alot of years since I played seriously in this
arena, here are some
> questions:
>
> 1. is your scenario a 'federated' approach (ie. you
are company 'A' and
> you have formed some sort of a working partnership with
company 'B' and 'C'.
> for instance, you are an automotive manufacturer and
suppliers (B & C) need
> access to applications that give them part (delivery)
schedules?
>
> -OR- is your scenario something where you have
different divisions in your
> company?
>
> -OR- is your scenario something else?
>
>
> 2. tools: if you are connecting to somebody else's
LDAP directory, you are
> going to need the '101' tools for ensuring access and
inspection of what
> structures you are dealing with.
> although this is kind of an 'ancient' tool, it still
worked for me today
> when I lit it up (after having not looked at it for
years now):
> http://www-u
nix.mcs.anl.gov/~gawor/ldap/
>
> rob
> PS give us a little more info and maybe I can make a
better recommendation
> ---------- Original Message
----------------------------------
> From: "Ejaz Nasser" <ejazangmail.com>
> Reply-To: aspnet-architectureaspadvice.com
> Date: Wed, 13 Sep 2006 09:33:55 -0400
>
> >Hi All,
> >
> >I have developed an asp.net application which is
deployed( say validated
> >serve) behind the firewall. All the end user are
outside this domain,
> which
> >means I can't authenticate and authorize end user,
as the LDAP is on
> other
> >domain. Now my manager want me to authenticate the
user via LDAP.
> >I am able to authenticate the end user via LDAP
when both end user and
> >application is on the same domain, but not for this
problem when end user
> >and application is running on different domain
(behind the firewall). I
> know
> >of one way to authenticate a user by sending his
information via web
> >services. I do know a radius server concept exist
but unfortunately I am
> not
> >able to find any example how to use it. Any idea or
suggestion regarding
> how
> >to tackle this security issue would be great.
> >
> >Thanks
> >Ejaz
> >
> >
> >
> >Need SQL Advice? http://sqladvice.com
> >Need RegEx Advice? http://regexadvice.com
> >Need XML Advice? http://xmladvice.com
> >
>
>
>
>
>
>
____________________________________________________________
____
> Sent via the WebMail system at ebiz-developer.com
>
>
>
>
>
> Need SQL Advice? http://sqladvice.com
> Need RegEx Advice? http://regexadvice.com
> Need XML Advice? http://xmladvice.com
>
Need SQL Advice? http://sqladvice.com
Need RegEx Advice? http://regexadvice.com
Need XML Advice? http://xmladvice.com
|