|
Home > Archive > Microsoft Content Management Server > December 2005 > Windows Authentication plus anonymous on MCMS2002 internet site
You are viewing an archived Text-only version of the thread.
To view this thread in it's original format and/or if you want to reply to
this thread please [click here]
| Author |
Windows Authentication plus anonymous on MCMS2002 internet site
|
|
| Martin 2005-12-15, 7:48 am |
| Hi,
I know the general consensus seems to be that you have to use forms
authentication if you also want anonymous access on a MCMS internet site,
but I was wondering if the following would work.
1) Configure all pages by default to allow anonymous access and use an MCMS
guest account as the anonymous account.
2) Have a dummy login page that does not allow anonymous access.
This way when *any* user initially goes to the site they won't be
authenicated and will get guest access.
If they click to go to the logon page they will require authentication, and
internal users will be able to provide appropriate details.
Thereafter those users that have now authenticated will be recognised as
such on the rest of the site and consequently get the authoring console (if
appropriate).
I had read somewhere that IE doesn't remember the authenication token very
well and might forget the user has authenticated when browsing the rest of
the site, but I don't know what version of IE that applies to or if it still
holds.
Before I can test this for myself, I have to resolve a 403.1 error accessing
the login.aspx dummy page which I think is related to
http://support.microsoft.com/defaul...kb;en-us;294382
But I'm not sure if I'm using Kerberos or not - I just have a standard Win
Server 2003 installation with IIS6. (Any hints?)
Thanks
Martin
| |
| Stefan [MSFT] 2005-12-15, 7:48 am |
| Hi Martin,
this method will not work reliable.
See here for an explanation:
http://download.microsoft.com/downl...6a/MCMS+2002+-+(complete)+FAQ.htm#CA7CCD8E-CD8D-4630-A756-A6EAB1DB1E32
Cheers,
Stefan
--
This posting is provided "AS IS" with no warranties, and confers no rights
New to MCMS?
Check out this book: Building Websites Using MCMS: http://tinyurl.com/6zj44
Check out the new book as well: Advanced MCMS development:
http://tinyurl.com/8ugwj
----------------------
"Martin" <x@y.z> wrote in message
news:uk3P$LXAGHA.2080@TK2MSFTNGP10.phx.gbl...
> Hi,
>
> I know the general consensus seems to be that you have to use forms
> authentication if you also want anonymous access on a MCMS internet site,
> but I was wondering if the following would work.
>
> 1) Configure all pages by default to allow anonymous access and use an
> MCMS guest account as the anonymous account.
> 2) Have a dummy login page that does not allow anonymous access.
>
> This way when *any* user initially goes to the site they won't be
> authenicated and will get guest access.
> If they click to go to the logon page they will require authentication,
> and internal users will be able to provide appropriate details.
> Thereafter those users that have now authenticated will be recognised as
> such on the rest of the site and consequently get the authoring console
> (if appropriate).
>
> I had read somewhere that IE doesn't remember the authenication token very
> well and might forget the user has authenticated when browsing the rest of
> the site, but I don't know what version of IE that applies to or if it
> still holds.
>
>
> Before I can test this for myself, I have to resolve a 403.1 error
> accessing the login.aspx dummy page which I think is related to
> http://support.microsoft.com/defaul...kb;en-us;294382
> But I'm not sure if I'm using Kerberos or not - I just have a standard Win
> Server 2003 installation with IIS6. (Any hints?)
>
> Thanks
> Martin
>
| |
| Martin 2005-12-15, 7:48 am |
| Thanks Stefan,
I'll have to see if I can still authenticate windows accounts through
windows forms authentication as I don't want the overhead of having another
set of accounts to adminstrate.
Thanks
Martin
"Stefan [MSFT]" <stefang@online.microsoft.com> wrote in message
news:eKgQQoXAGHA.1296@TK2MSFTNGP12.phx.gbl...
> Hi Martin,
>
> this method will not work reliable.
> See here for an explanation:
> http://download.microsoft.com/downl...6a/MCMS+2002+-+(complete)+FAQ.htm#CA7CCD8E-CD8D-4630-A756-A6EAB1DB1E32
>
> Cheers,
> Stefan
>
> --
> This posting is provided "AS IS" with no warranties, and confers no rights
>
> New to MCMS?
> Check out this book: Building Websites Using MCMS:
> http://tinyurl.com/6zj44
> Check out the new book as well: Advanced MCMS development:
> http://tinyurl.com/8ugwj
> ----------------------
>
>
> "Martin" <x@y.z> wrote in message
> news:uk3P$LXAGHA.2080@TK2MSFTNGP10.phx.gbl...
>
>
| |
| Stefan [MSFT] 2005-12-15, 5:58 pm |
| Hi Martin,
there is no need for another set of accounts.
In addition for MCMS to work forms authentication needs to map to real
windows accounts as MCMS does only support NT or AD accounts for
authorization.
Cheers,
Stefan
--
This posting is provided "AS IS" with no warranties, and confers no rights
New to MCMS?
Check out this book: Building Websites Using MCMS: http://tinyurl.com/6zj44
Check out the new book as well: Advanced MCMS development:
http://tinyurl.com/8ugwj
----------------------
"Martin" <x@y.z> wrote in message
news:evZD42XAGHA.3840@TK2MSFTNGP15.phx.gbl...
> Thanks Stefan,
>
> I'll have to see if I can still authenticate windows accounts through
> windows forms authentication as I don't want the overhead of having
> another set of accounts to adminstrate.
>
> Thanks
> Martin
>
> "Stefan [MSFT]" <stefang@online.microsoft.com> wrote in message
> news:eKgQQoXAGHA.1296@TK2MSFTNGP12.phx.gbl...
>
>
| |
| Martin 2005-12-15, 5:58 pm |
| Thanks again Stefan.
I'll research CmsFormsAuthentication.
Thanks
Martin
Is there a good example of this you can point me at?
"Stefan [MSFT]" <stefang@online.microsoft.com> wrote in message
news:OAI84DZAGHA.912@TK2MSFTNGP11.phx.gbl...
> Hi Martin,
>
> there is no need for another set of accounts.
> In addition for MCMS to work forms authentication needs to map to real
> windows accounts as MCMS does only support NT or AD accounts for
> authorization.
>
> Cheers,
> Stefan
>
> --
> This posting is provided "AS IS" with no warranties, and confers no rights
>
> New to MCMS?
> Check out this book: Building Websites Using MCMS:
> http://tinyurl.com/6zj44
> Check out the new book as well: Advanced MCMS development:
> http://tinyurl.com/8ugwj
> ----------------------
>
>
> "Martin" <x@y.z> wrote in message
> news:evZD42XAGHA.3840@TK2MSFTNGP15.phx.gbl...
>
>
|
|
|
|
|