single sign on

Alain R. · Dec 11, 2007

Hi,

i'm looking for a tutorial about how to implement a user authentication
using the single sign on available in our company.

could someone help me please ?
i tried to google it but without success.

thx.

A.

DoB · Dec 11, 2007

i'm looking for a tutorial about how to implement a user authentication

using the single sign on available in our company.

I am also interested ;-)

DoB

Peter Bromberg [C# MVP] · Dec 11, 2007

Unless I missed something really obvious, I think you first have to tell us
*what* the SSO available at your company actually is, before you can expect
to get help.
-- Peter
Site: http://www.eggheadcafe.com
UnBlog: http://petesbloggerama.blogspot.com
MetaFinder: http://www.blogmetafinder.com

Alain R. · Dec 12, 2007

Hi Peter,

basically i try to do the same thing as under PHP.
when the user log on, i check if he is able to connect to network
resource (basically if LDAP is able to identify him).

if he is able to retrieve resources from LDAP, is get credentials to
continue to use application.

something like that i would like to perform.

basically in PHP, steps are :
- connect to LDAP
- try to bind using login and password of user
- if successful, so everything is ok and user can continue to use
application.

Alain

Chris Mullins [MVP - C#] · Dec 12, 2007

I've done a fair bit of SSO stuff under windows.

What environment are you using? A web site? A winforms app? A custom sockets
application? What are you authenticating against? That is, do you have a
client app authenticating against a server app? Are you running under AD?
LDAP? Do you need Kerberos, or is NTLM good enough?

Are you trying to have users not on the AD login via SSO? Are you using AD
Federation? Trust?

There are alot of variables here, and I need more detail if I'm going to say
anything meaningfull.

In the short term, you can go take a look at:
http://msdn2.microsoft.com/en-us/library/system.net.security.negotiatestream.aspx
http://win32.mvps.org/security/sspi.html

For the code I wrote, I ended up having to write Mixed Mode C++ and do
everything by hand, similar to the way the Platform SDK samples do. You can
go pull down the Soapbox Framework (available under LGPL), and look for the
Win32 library that has the SSPI code in it. It's very clear (well, relativly
speaking0, easily callable from C#, and (hopefully!) debugged.

Chris Mullins [MVP - C#] · Dec 12, 2007

Well, that's really easy. Just hit AD / LDAP. All the classes are there in
..Net to do this (System.DirectoryService).

As an easier approach, you can use:
http://www.codeplex.com/LINQtoAD

Single sign-on solution for .NET	3	Jul 1, 2008
Single Sign On with 802.1x wireless authentication	5	Jul 24, 2008
single sign on for windows applications or windows services	3	May 29, 2007
Forms Authentication on Virtual Directory -- How?	3	Nov 27, 2008
winforms authentication	5	Feb 3, 2009
Sign up for The Elder Scrolls Online beta	1	Jan 22, 2013
How do i write the percentage sign "%" to the event log?	3	Sep 19, 2008
How to support single sign on?	1	Dec 10, 2004

single sign on

Alain R.

DoB

Peter Bromberg [C# MVP]

Alain R.

Chris Mullins [MVP - C#]

Chris Mullins [MVP - C#]

Ask a Question

Similar Threads