By Chan - 12/7/2008
Hi,
Shall anyone give me some idea how to implement single sign on feature for web environment?
I was thinking to retrieve userName and domainName from WindowsIdentity.Name, to check against ActiveDirectory for authentication using DirectoryEntry.Guid.
However, I found that, DirectoryEntry required password in this case. How could I identify user by using userName and domainName only?
Beside, by using this approach might not secure as hacker can setup same user account with same user and domain name.
Any other way to authenticate user by using other property such as WindowsIdentity.Owner.Token ?
Please advice.
Thank you
|
|