Janmejay
Reputation: 1053
Using Kerberos & LDAP
How do I implement Integrated windows authentication using ASP.Net kerberos protocol & LDAP in IIS?
Upvotes: 1
Views: 1041
Answers (1)
RailRhoad
Reputation: 2128
Here's a couple things off the top of my head:
- Make sure IIS isn't using anonymous access and that's selected for windows integration
- Make sure your client browser is set to allow windows integration
- Make sure you set your impersonation to true (don't use a username though!)
- In AD, make sure your IIS server is trusted for delegation
That should get you going. If you have other app pools that are not using Kerberos on IIS, you will probably have to set the identity of your application's app pool with a new user other than the default (whose user needs to be trusted for delegation as well). Then you will have to do a SPN against it and potentially even a new DNS for the site all together. I know it sounds complex but this is what we did to get things up and going...
Upvotes: 4
Related Questions
- Implement Kerberos authentication using C# on IIS
- asp.net via kerberos integrated windows authentication to sql server
- kerberos authentication over ldap
- IIS single sign on using Kerberos tickets
- Asp.net and Kerberos Authentication
- IIS: Using Kerberos with client computers that are not on the domain
- Set up Kerberos Authentication with Delegation on IIS 7 w/ Windows Server 2008
- kerberos in asp.net
- How to implement single sign-on using kerberos authentication?
- Active Directory and NTLM Authentication