ASP.NET Core 2.0 LDAP Active Directory Authentication

by

Thanks to Win’s Answer for pointing out that I needed to use Windows Compatibility Pack, I was able to figure this out.

The first thing I had to do was install the Nuget package

Install-Package Microsoft.Windows.Compatibility

At the time, I needed a preview version, so I appended -Version 2.0.0-preview1-26216-02 on the end of this command

Then, add using statements for System.DirectoryServices and System.DirectoryServices.AccountManagement

Then, just plug this logic into my HandleAuthenticateAsync method:

const string LDAP_PATH = "EX://exldap.example.com:5555";
const string LDAP_DOMAIN = "exldap.example.com:5555";

using (var context = new PrincipalContext(ContextType.Domain, LDAP_DOMAIN, "service_acct_user", "service_acct_pswd")) {
    if (context.ValidateCredentials(username, password)) {
        using (var de = new DirectoryEntry(LDAP_PATH))
        using (var ds = new DirectorySearcher(de)) {
            // other logic to verify user has correct permissions

            // User authenticated and authorized
            var identities = new List<ClaimsIdentity> { new ClaimsIdentity("custom auth type") };
            var ticket = new AuthenticationTicket(new ClaimsPrincipal(identities), Options.Scheme);
            return Task.FromResult(AuthenticateResult.Success(ticket));
        }
    }
}

// User not authenticated
return Task.FromResult(AuthenticateResult.Fail("Invalid auth key."));

More Related Contents:

  1. Validate a username and password against Active Directory?
  2. Token Based Authentication in ASP.NET Core
  3. ASP.NET Core 2.0 authentication middleware
  4. Token Based Authentication in ASP.NET Core (refreshed)
  5. .NET Core Identity Server 4 Authentication VS Identity Authentication
  6. Custom Authentication in ASP.Net-Core
  7. Adding and removing users from Active Directory groups in .NET
  8. How to get all the AD groups for a particular user?
  9. ASP.NET Core 2.0 disable automatic challenge
  10. ASP.NET Core disable authentication in development environment
  11. Simple JWT authentication in ASP.NET Core 1.0 Web API
  12. Simple token based authentication/authorization in asp.net core for Mongodb datastore
  13. ASP.NET Core Web API Authentication
  14. Built-in helper to parse User.Identity.Name into Domain\Username
  15. .NET 4.5 Bug in UserPrincipal.FindByIdentity (System.DirectoryServices.AccountManagement)
  16. Active Directory (LDAP) – Check account locked out / Password expired
  17. How do I validate Active Directory creds over LDAP + SSL?
  18. Authenticating users using Active Directory in Client-Server Application
  19. Using C# to authenticate user against LDAP
  20. How to get the current user’s Active Directory details in C#
  21. Return View as String in .NET Core
  22. bypass invalid SSL certificate in .net core
  23. How do I get the kestrel web server to listen to non-localhost requests?
  24. ASP.NET Core Model Binding Error Messages Localization
  25. Kestrel shutdown function in Startup.cs in ASP.NET Core
  26. Proper way to register HostedService in ASP.NET Core. AddHostedService vs AddSingleton
  27. How do I serve static files only to authorized users?
  28. How do I transform appsettings.json in a .NET Core MVC project?
  29. Configure input/output formatters on controllers with ASP.NET Core 2.1
  30. ASP.NET 5 Authorize against two or more policies (OR-combined policy)

Leave a Comment