« Previous Next »

• 10-30-2008, 2:39 PM

  mybestguess Joined on 10-13-2008, 2:38 PM Posts 8

  Authentication drops after redirect away from main site Reply Contact I am sorry if the title is a little confusing.  This is the problem.  I have a site that has a user aspect and an admin aspect.  The user and admin parts were developed as seperate projects but are nested sites in IIS.  The user aspect uses Formsauthentication and works fine when I navigate away from the root site and then back.  This works as it should keeping the authentication active as long as the user hasn't closed out of the browser or logged off. The admin aspect uses Windows authentication.  The authentication is based on folder permissions defined by our Active Directory. When you navigate from the user to the admin part it works fine and doesn't ask the user to log in after doing so the initial time.  The problem is going from the admin aspect back to the user part.  Every time I navigate from www.mysite.com/admin back to www.mysite.com/user the system makes the user log in every time.  I haven't been able to figure out a way for the authentication to stick.  It seems like the Windows authentication overrides the Forms authentication.  What do you think?  Thank you for any help.

• 11-06-2008, 1:19 AM

  In reply to

  Andrew Zhu - MSFT Joined on 08-25-2008, 3:37 AM Microsoft,ShangHai,China Posts 369

  Re: Authentication drops after redirect away from main site Reply Contact mybestguess: The authentication is based on folder permissions defined by our Active Directory. Things you can try:  set user aspect and admin aspect in seperate website. and set authenticatin based on website. Thanks   Sincerely Microsoft Online Community Support Andrew Zhu - MSFT “Please remember to click “Mark as Answer” on the post that helps you, and to click “Unmark as Answer” if a marked post does not actually answer your question. This can be beneficial to other community members reading the thread. ”

• 11-06-2008, 10:53 AM

  In reply to

  tomkmvp Joined on 03-20-2003, 10:27 AM Central NJ Posts 6,171

  Re: Authentication drops after redirect away from main site Reply Contact What's happening is that as a user, the browser is acting anonymously as far as IIS is concerned.  Once the user goes into admin and authenticates, the browser now has the user's Windows credentials cached and no longer browses anonymously, so when they go back to the user section, the browser attempts to access the content as that authenticated user. This is standard/normal behavior. The solution would be to give those authenticated users NTFS permissions to the user content areas, or just stick with .NET Forms authentication for the entire site, both user and admin areas. Tom Kaminski IIS MVP http://mvp.support.microsoft.com/ http://blogs.iis.net/tomkmvp/ http://www.linkedin.com/pub/8/690/408 http://www.bluesrepublic.org/

• 11-07-2008, 11:53 AM

  In reply to

  mybestguess Joined on 10-13-2008, 2:38 PM Posts 8

  Re: Authentication drops after redirect away from main site Reply Contact Thank you both for the information.  I didn't think there was a logical way to resolve the issue.  I proposed the option of the same authentication methods but was denied as the AD serves as the easy final say in access according to those above.  Once they get tired of continuously entering in their information, they might change their mind.  I again thank you both for taking the time to respond to my question.