Reputation: 155
Store Active Directory Users in a SQL Database
I need to set a server that creates self-signed certificate when a user register in. So i thought to create a new AD account every time a new users register to the server. BUT, I need to store the user information into a sql server and i can't find a way to do this.
Any idea?
Upvotes: 1
Views: 1708
Answers (2)
Reputation: 212
Based on what you describe and your comment:
My problem is that i think that store "public users" (that can register from the web) information into AD is insicure, so i'm trying to find another way to do that "mapping", – Stefano
What you seem to need is an AD domain with a one-way trust:
- Your public users are in domain A.
- Domain A trusts your internal private domain B.
- Your app does AD authentication against domain domain A, and your internal users can authenticate using their full domain credentials (the request gets passed to domain B, which says yay or nay).
Note that this is coming from a guy who hasn't used Windows in a very long time.
I could be giving you terrible advice (and if I am I'm sure one of our Windows folks will clobber me for it).
Upvotes: 2
Reputation: 65
If you're going to be storing external users for an application, you should be using AD LDS (formerly ADAM) instead of real AD. Or any other generic LDAP, really, but AD LDS is a lot like AD and might fit your needs better.
Upvotes: 1
Related Questions
- How to make relation from SQL Server tables directly to Active Directory data?
- How to manage users in ASP.NET core with AD / LDAP? Do I store the users in a database?
- Active Directory data into SQL table
- Using Active Directory user info with SQL
- How best to map AD user groups and permissions in SQL Server database?
- Store LDAP users and passwords in SQL
- Importing Active Directory Users and Groups into SQL Server (possibly via c#)
- How could I have one column store an arbitrary number of "users"
- Storing users in a database
- Store SID or Username in database for AD Accounts?