I want to add one page on my sharepoint site which could be accessed without going through windows authentication login dialog.
Let me know.
Thanks
Raj
You will have to enable anonymous access for the Web Application and then set permission for this particular page.
You can also create a Anonymous Application Page.
Related
I am trying to understand how to create MVC5 website with Active Directory authentication. Also I want to manage users. So for this I created a simple project in VS2013 and selected "Windows Authentication". When I run the application I get authentication popup to enter AD username and password. After that it does says on top right "Hello AD/UserName!".
But I am not seeing logic where it actually calls for authentication. Also I want to save few AD users to database and allow only them to login to website. How can I do this? Also how will my other web pages know whether user is already authenticated. Thank You.
One Approach-
Instead of selecting 'Windows Authentication', you choose 'Anonymous' (doesn't remember exact word here)
Implement logic to Authenticate user against Active Directory. Once user is Authenticate, store that user object into 'User' property of Current Context. So that you can access it and authorised user in subsequent request.
As you are aware, AD can only authenticate user against it. Providing access to few of them is authorisation part which we need to handle as part of our application. Since you want to enable access to website for few people of AD, what you can do is add those users in your application's database and allow authorisation to those only.
I have about 10 controllers in my site, they all have the same authorization, [Authorize(Roles = "RoleName")], they all work fine except for one. When I try to browse to an action within that controller, I get this browser popup:
I've tried my windows password and website password with no success.
I've checked windows security settings for all files in the site and I've given full permission to NetworkService and even Everyone, and I still get the popup.
The controller is called Reports if that helps at all?
Are you using reporting services? Maybe it's asking for credentials do authenticate on SSRS not on your MVC site.
I hate the default looks of the Home Realm Discovery (Claims Provider Selection screen) page when multiple STS are added to the ADFS 2.0 Snapin. Below is the default
Can this be Customized. Such that it redirects to somepage.aspx where i can login with username and password. Then it returns the claims correctly ?
The problem is that ADFS doesn't know where you want to login to.
If you always want to login to the same site, there is a cookie that remembers this and won't ask you next time.
You can also use the "whr" parameter to tell ADFS where to go so it doesn't have to ask.
Yes you can customise the screen - refer AD FS 2.0 Sign-In Pages Customization Overview.
If you want to force FBA, move the Forms entry in
<localAuthenticationTypes>
in the web.config to the top.
Integrating WIF into regular ASP.NET 4.0 website.
I have STS setup and when I navigate to my RP website, it redirects me to STS Login page.
What I want to do is I have Home.aspx in my RP. It is a public page open to everyone. It has have a Login link. When the I click that link it takes me to the STS login page and upon logout I get redirected to Home.aspx again.
Issue:
I have set in RP's web.config to allow access to everyone to Home.aspx and Set up as the startup page. I also have it setup as Default document. But when I navigate to my site, it takes me to STS Login page.
Why doesn't it take me to home.aspx?
If I manually modify the url to go to home.aspx, it is allowing me.
Any ideas?
Update:
Found this: http://social.msdn.microsoft.com/Forums/en-US/Geneva/thread/71806907-393f-4782-9c30-971be94a2b62/
But that's really a weird workaround.
The link shows how to unprotect a page i.e. a page that can be accessed without a redirect to ADFS.
You could simply put a link on that page that goes to the ADFS login page.
I'm having a bit of an issue setting up our test site.
In IIS 7, our app pool for the site is running in integrated mode.
In Authentication, I have Anon enabled and Forms auth enabled.
In Authorization, I have Allow All users.
All pages allow anon users, EXCEPT the default (Home/Index.aspx). That page always forwards the user to the login screen. I want them to see the homepage.
I have tried adding authorization rules to the webconfig, but nothing changes it. Any ideas?
Make sure you haven't set the Authorize (C#) attribute on either the Home controller or the Index action.
The problem was in the NTFS security settings in IIS 7. I added the anon user accounts to have access and the site works fine now.