Configure ASP.NET MVC for authentication against AD

by

Forms Authentication

You can use the normal forms authentication to authenticate a user against an Active Directory, for that you just need you AD connection string:

<connectionStrings>
  <add name="ADConn" connectionString="LDAP://YourConnection" />
</connectionStrings>

and add the Membership Provider to use this connection:

<membership defaultProvider="ADMembership">
  <providers>
    <add name="ADMembership"
         type="System.Web.Security.ActiveDirectoryMembershipProvider,
               System.Web,
               Version=2.0.0.0, 
               Culture=neutral,
               PublicToken=b03f5f7f11d50a3a"
         connectionStringName="ADConn"
         connectionUsername="domain/user"
         connectionPassword="pwd" />
  </providers>
</membership>

you will need to use username@domain to successfully authenticate the user.

Here is something to get you started

Windows Authentication

If you start your project new, you can always select Intranet application from the template and all is taken care for you

enter image description here

If you want to do it manually, you need to change:

  1. Enable Windows Authentication
  2. Disable Anonymous authentication

for detailed info on doing this on IIS7/8 and IISExpress:

IIS 7 & IIS 8

  1. Open IIS Manager and navigate to your website.
  2. In Features View, double-click Authentication.

  3. On the Authentication page, select Windows authentication. If Windows
    authentication is not an option, you’ll need to make sure Windows authentication
    is installed on the server.

    To enable Windows authentication on Windows:
    a) In Control Panel open “Programs and Features”.
    b) Select “Turn Windows features on or off”.
    c) Navigate to Internet Information Services > World Wide Web Services > Security
    and make sure the Windows authentication node is checked.

    To enable Windows authentication on Windows Server:
    a) In Server Manager, select Web Server (IIS) and click Add Role Services
    b) Navigate to Web Server > Security
    and make sure the Windows authentication node is checked.

  4. In the Actions pane, click Enable to use Windows authentication.

  5. On the Authentication page, select Anonymous authentication.
  6. In the Actions pane, click Disable to disable anonymous authentication.

IIS Express

  1. Right click on the project in Visual Studio and select Use IIS Express.
  2. Click on your project in the Solution Explorer to select the project.
  3. If the Properties pane is not open, open it (F4).
  4. In the Properties pane for your project:
    a) Set “Anonymous Authentication” to “Disabled”.
    b) Set “Windows Authentication” to “Enabled”.

In your web.config have something like

<system.web>
  <authentication mode="Windows" />

  <authorization>
    <deny users="?" />
  </authorization>
</system.web>

and that’s it!

Now, when you want the user identity, just call

@User.Identity.Name

and this will show you the Domain\Username like for me :

enter image description here

Here is something to get you started

More Related Contents:

  1. using windows authentication with active directory groups as roles
  2. How to determine if using MVC4 vs MVC5 vs MVC6? [closed]
  3. How to render an ASP.NET MVC view as a string?
  4. MVC5 – How to set “selectedValue” in DropDownListFor Html helper
  5. Why does Html.ActionLink render “?Length=4”
  6. jqgrid + EF + MVC: How to export in excel? Which method you suggest?
  7. Replace line break characters with in ASP.NET MVC Razor view
  8. Add CSS or JavaScript files to layout head from views or partial views
  9. Implementing Profile Provider in ASP.NET MVC
  10. Plug-in architecture for ASP.NET MVC
  11. What’s the difference between the four File Results in ASP.NET MVC
  12. Error Handling in ASP.NET MVC
  13. Html5 Placeholders with .NET MVC 3 Razor EditorFor extension?
  14. How to keep input type=file field value after failed validation in ASP.NET MVC?
  15. How to use ASP.NET MVC and AngularJS routing?
  16. How can I disable session state in ASP.NET MVC?
  17. What is the right time for ViewData, ViewBag, Session, TempData
  18. ASP.NET MVC unit test controller with HttpContext
  19. Validate object based on external factors (ie. data store uniqueness)
  20. ASP.NET Core : Synchronous operations are disallowed. Call WriteAsync or set AllowSynchronousIO to true instead
  21. SelectListItem with data-attributes
  22. Fat model / thin controller vs. Service layer [closed]
  23. Customizing authorization in ASP.NET MVC
  24. MVC Razor view Intellisense broken in VS 2013/2015/2017
  25. Are ActionFilterAttributes reused across threads? How does that work?
  26. ASP.NET Remote Validation only on blur?
  27. ASP.NET MVC rendering partial view with jQuery ajax
  28. Repository Pattern vs DAL
  29. Razor ViewEngine HTML.Checkbox method creates a hidden input. Why? [duplicate]
  30. Routing with and without controller name in ASP.NET MVC 4

Leave a Comment