|
Home > Archive > IIS Server Security > January 2004 > Redirecting to custom .aspx error page?
You are viewing an archived Text-only version of the thread.
To view this thread in it's original format and/or if you want to reply to
this thread please [click here]
| Author |
Redirecting to custom .aspx error page?
|
|
| Shawn Wheatley 2004-01-24, 2:01 am |
| I found the following posting,
http://groups.google.com/groups?hl=...%40cpmsftngxa07
which loosely explains how to do a joint NTLM/Passport authenticated
site, with a database for roles. I have been able to modify this
slightly to work for my own form authentication (actually using
<authentication="None"> though) Basically I have to manage a cookie
or session object that lets the system know the user is logged in.
I'm trying to follow the example in 5A of that posting. It has an
NTLM authenticated page which errors out to a form for logging in if
the user can't authenticate. Thus, the entire site has no .NET
managed authentication, and all but this one NTLM authenticated page
are anonymous.
Example:
ntlm.aspx - NTLM authenticated, if not, redirect to
forms.aspx
forms.aspx - form, anonymous access
Page3.aspx - once authenticated go here
anyotherpage.aspx - redirect to ntlm.aspx if not authenticated.
The problem is that whenever the ntlm.aspx fails authenticating, it
can't successfully redirect to the forms.aspx as the IIS properties
specify.
Any ideas?
Shawn
| |
| David Wang [Msft] 2004-01-24, 2:02 am |
| Hmm...
How are you actually configuring your custom error such that it does not
work?
--
//David
IIS
This posting is provided "AS IS" with no warranties, and confers no rights.
//
"Shawn Wheatley" <swheatley22@yahoo.com> wrote in message
news:50b4861f.0401201219.512ec272@posting.google.com...
I found the following posting,
http://groups.google.com/groups?hl=...%40cpmsftngxa07
which loosely explains how to do a joint NTLM/Passport authenticated
site, with a database for roles. I have been able to modify this
slightly to work for my own form authentication (actually using
<authentication="None"> though) Basically I have to manage a cookie
or session object that lets the system know the user is logged in.
I'm trying to follow the example in 5A of that posting. It has an
NTLM authenticated page which errors out to a form for logging in if
the user can't authenticate. Thus, the entire site has no .NET
managed authentication, and all but this one NTLM authenticated page
are anonymous.
Example:
ntlm.aspx - NTLM authenticated, if not, redirect to
forms.aspx
forms.aspx - form, anonymous access
Page3.aspx - once authenticated go here
anyotherpage.aspx - redirect to ntlm.aspx if not authenticated.
The problem is that whenever the ntlm.aspx fails authenticating, it
can't successfully redirect to the forms.aspx as the IIS properties
specify.
Any ideas?
Shawn
| |
| David Wang [Msft] 2004-01-24, 2:02 am |
| How are you actually configuring your custom error such that it does not
work?
--
//David
IIS
This posting is provided "AS IS" with no warranties, and confers no rights.
//
"Shawn Wheatley" <swheatley22@yahoo.com> wrote in message
news:50b4861f.0401201219.512ec272@posting.google.com...
I found the following posting,
http://groups.google.com/groups?hl=...%40cpmsftngxa07
which loosely explains how to do a joint NTLM/Passport authenticated
site, with a database for roles. I have been able to modify this
slightly to work for my own form authentication (actually using
<authentication="None"> though) Basically I have to manage a cookie
or session object that lets the system know the user is logged in.
I'm trying to follow the example in 5A of that posting. It has an
NTLM authenticated page which errors out to a form for logging in if
the user can't authenticate. Thus, the entire site has no .NET
managed authentication, and all but this one NTLM authenticated page
are anonymous.
Example:
ntlm.aspx - NTLM authenticated, if not, redirect to
forms.aspx
forms.aspx - form, anonymous access
Page3.aspx - once authenticated go here
anyotherpage.aspx - redirect to ntlm.aspx if not authenticated.
The problem is that whenever the ntlm.aspx fails authenticating, it
can't successfully redirect to the forms.aspx as the IIS properties
specify.
Any ideas?
Shawn
|
|
|
|
|