Integrating LDAP with MySQL Configuration in ASP.NET



Similar documents
Lab 12A Configuring Single Sign On Service

Copyright 2013, SafeNet, Inc. All rights reserved. We have attempted to make these documents complete, accurate, and

X7500 Series, X4500 Scanner Series MFPs: LDAP Address Book and Authentication Configuration and Basic Troubleshooting Tips

Helpdesk Support Tickets & Knowledgebase

E-Biz Web Hosting Control Panel

SharePoint 2010 General Introduction Introduction to SharePoint SharePoint Installation and Administration SharePoint Site Hierarchy Website

Connecting to

Getting started with Android

MaaS360 Cloud Extender

Picture Menu Web Part. AMREIN ENGINEERING AG Version 1.0

Remote Setup and Configuration of the Outlook Program Information Technology Group

Emulation Tech Note 12 Testing XDS560V2 STM Emulator s Ethernet Port on Wi-Fi

iphone Mobile Application Guide Version 2.2.2

Alexsys Team 2 Service Desk

Webalo Pro Appliance Setup

INUVIKA OPEN VIRTUAL DESKTOP ENTERPRISE

AvePoint Privacy Impact Assessment 1

Implementing ifolder Server in the DMZ with ifolder Data inside the Firewall

Zimbra Professional Services Portfolio, Purchasing Guide & Price List

Kaltura MediaSpace Setup Guide. Version: 5.0

Optimal Payments Extension. Supporting Documentation for the Extension Package v1.1

Introduction LIVE MAPS UNITY PORTAL / INSTALLATION GUIDE Savision B.V. savision.com All rights reserved.

CallRex 4.2 Installation Guide

ISAM TO SQL MIGRATION IN SYSPRO

Installation Guide Marshal Reporting Console

The user authentication process varies from client to client depending on internal resource capabilities, and client processes and procedures.

EWS Calendar List Web Part Sharepoint 2010 Installation Instructions

Application Advisories for Data Integrator for Non- EDI location

CenterPoint Accounting for Agriculture Network (Domain) Installation Instructions

Montana Acquisition & Contracting System (emacs) emacs Handbook. Vendor Registration and Data Management

Installation Guide Marshal Reporting Console

PBX Remote Line Extension using Mediatrix 4104 and 1204 June 22, 2011

Telelink 6. Installation Manual

Learn More Cloud Extender Requirements Cheat Sheet

IT Quick Reference Guides Resetting Your Password

Wireless Light-Level Monitoring

User Guide. Excel Data Management Pack (EDM-Pack) OnCommand Workflow Automation (WFA) Abstract PROFESSIONAL SERVICES. Date: December 2015

Server 2008 R2 - Generic - Case

CSC IT practix Recommendations

Interaction Manager OFT 605 (Part1)

Durango Merchant Services QuickBooks SyncPay

ATL: Atlas Transformation Language. ATL Installation Guide

Adobe Sign. Enabling Single Sign-On with SAML Reference Guide

Getting Started Guide

Simmons GMAIL Client Setup

Pexip Infinity and Cisco UCM Deployment Guide

Readme File. Purpose. Introduction to Data Integration Management. Oracle s Hyperion Data Integration Management Release 9.2.

STIOffice Integration Installation, FAQ and Troubleshooting

Best Practice - Pentaho BA for High Availability

Configuring BMC AREA LDAP Using AD domain credentials for the BMC Windows User Tool

HOWTO: How to configure SSL VPN tunnel gateway (office) to gateway

Security Guidance ArcGIS Server 9.3 Windows Security Requirements

Pronestor Room & Catering

HR Management Information (HRS)

SpiraPlan & SpiraTeam Version Control Integration User Guide Inflectra Corporation

MedNetwork Systems Impulse Database Management

Enrollee Health Assessment Program Implementation Guide and Best Practices

Uninstalling and Reinstalling on a Server Computer. Medical Director / PracSoft

WatchDox for Windows User Guide

Exercise 5 Server Configuration, Web and FTP Instructions and preparatory questions Administration of Computer Systems, Fall 2008

Chalkable Classroom For Students

LeadStreet Broker Guide

Exercise 5 Server Configuration, Web and FTP Instructions and preparatory questions Administration of Computer Systems, Fall 2008

Creating automated reports using VBS AN 44

Valley Transcription Service I-Phone/I-Pod App User s Guide

MITEL INTEROP CERTIFICATION OVERVIEW FOR MSA DEVELOPER PARTNERS AND SIP SERVICE PROVIDERS

Emulated Single-Sign-On in LISTSERV Rev: 15 Jan 2010

Archiving IVTVision Video (Linux)

PS+ Assurance. User Guide Version: 1.0. Page 1

Call Detail Record Download Service

GETTING STARTED With the Control Panel Table of Contents

Instant Chime for IBM Sametime Quick Start Guide

PIC Online Application Help Document

CSAT Account Management

Aladdin HASP SRM Key Problem Resolution

User s Guide. Moduc Elements MagiCAD plugin

Dreamweaver MX Templates

Using PayPal Website Payments Pro UK with ProductCart

ScaleIO Security Configuration Guide

LogMeIn Rescue Web SSO via SAML 2.0 Configuration Guide

Preparing to Deploy Reflection : A Guide for System Administrators. Version 14.1

Mobile Deployment Guide For Apple ios

What's New. Sitecore CMS 6.6 & DMS 6.6. A quick guide to the new features in Sitecore 6.6. Sitecore CMS 6.6 & DMS 6.6 What's New Rev:

Diagnosis and Troubleshooting

Setup Instructions Glion Online

Regions File Transmission

Hi-Tech will not be responsible if your hardware fails and you lose your residents medical record documentation and/or MDS records.

Click Studios. Passwordstate. SafeNet Two-Factor Configuration

Transcription:

Jisc Embedding Benefits Prgramme P3 Packaging the Placements Prtal Integrating LDAP with MySQL Cnfiguratin in ASP.NET Dcumentatin and cde samples drawn frm experiences encuntered while develping the Placements Prtal P3 First the disclaimer: Managing security in ASP.NET is a huge and cmplex area in its entirety and is beynd the scpe f this dcument. Please refer t http://msdn.micrsft.cm/enus/library/cc668194%28v=vs.100%29.aspx as a starting pint fr cnfiguring the applicatin t yur wn requirements. The three elements f ASP.NET security tuched n by this dcument are (1) Authenticatin (2) Authrisatin (3) Rle Management Specific requirements between installatins will bviusly vary but a typical scenari, and the ne in place at the University f Nttingham is t use Active Directry fr user authenticatin and MySQL fr Rle Management. As the P3 Placements app relies (fr the time being at least) n the OPUS mysql database, it makes sense t manage user rles with MySQL rather than use Active Directry fr applicatin-specific rle management. The web.cnfig fllwing entry cnfigures ActiveDirectry as the Membership Prvider which takes care f Authenticatin <membership defaultprvider="aspnetactivedirectrymembershipprvider"> <prviders> <clear/> <add name="aspnetactivedirectrymembershipprvider" type="system.web.security.activedirectrymembershipprvider, System.Web, Versin=4.0.0.0, Culture=neutral, PublicKeyTken=b03f5f7f11d50a3a" enablesearchmethds="true" cnnectinstringname="adcnnectinstring" Authr: Mike Leam P3 Prject, CIePD, University f Nttingham

cnnectinprtectin="secure" attributemapusername="samaccuntname" applicatinname="/"/> </prviders> </membership> This in turn depends n <cnnectinstrings> <add name="adcnnectinstring" cnnectinstring="ldap://frestdnsznes.intdir.nttingham.ac.uk:389"/> <add name="mysqlcnnectinstring" cnnectinstring="server=pustest.nttingham.ac.uk; Prt=3306; Database=pus; Uid=rt; Pwd=pus123;" prvidername="mysql.data.mysqlclient="/> </cnnectinstrings> Similarly the fllwing entry cnfigures MySQL as the Rle Prvider <rlemanager enabled="true" defaultprvider="mysqlrleprvider"> <prviders> <clear/> <remve name="lcalmysqlserver"/> <add name="mysqlrleprvider" type="mysql.web.security.mysqlrleprvider, MySql.Web, Versin=6.4.4.0, Culture=neutral, PublicKeyTken=c5687fc88969c44d" cnnectinstringname="mysqlcnnectinstring" autgenerateschema="true" Authr: Mike Leam P3 Prject, CIePD, University f Nttingham

applicatinname=" MySQLRlePrvider " /> </prviders> </rlemanager> This similarly relies upn <cnnectinstrings> <add name="adcnnectinstring" cnnectinstring="ldap://frestdnsznes.intdir.nttingham.ac.uk:389"/> <add name="mysqlcnnectinstring" cnnectinstring="server=pustest.nttingham.ac.uk; Prt=3306; Database=pus; Uid=rt; Pwd=pus123;" prvidername="mysql.data.mysqlclient="/> </cnnectinstrings> As lng as autgenerateschema="true" is set t true in the rlemanager cnfig, ASP.NET autmatically creates the necessary tables t manage rles in the MySQL Database specified at mysqlcnnectinstring ASP.NET will create the fllwing tables in the Databases my_aspnet_applicatins my_aspnet_membership my_aspnet_prfiles my_aspnet_rles my_aspnet_schemaversin my_aspnet_sessincleanup my_aspnet_sessins my_aspnet_users my_aspnet_usersinrles Rles can be created, and users then assigned t them, either manually r by using the ASP.NET Web Site Administratin Tl. It can be tricky t get this wrking prperly and it appears t be smewhat flaky but n ur cnfiguratin, the fllwing steps allwed the cnfiguratin tl t run prperly. (1) Launch Visual Studi (2) Launch yur Web Applicatin prject in Debug mde ( (3) Click n the ASP.NET Cnfiguratin ptin n the Prject Menu (4) Make sure yu skip past any break pints set up in yur prject Authr: Mike Leam P3 Prject, CIePD, University f Nttingham

(5) Click n the Security Tab and then the Rles Create r Manage rles ptin t create new rles and then assign users t them. Nte if yu are using frms based authrizatin, the rles created shuld match this in the lcatin sectin f the Web.cnfig file as shwn in the fllwing example <lcatin path="admin.aspx"> <authrizatin> <allw rles="admin"/> <deny users="*" /> </authrizatin> </lcatin> <lcatin path="accunt.aspx"> <authrizatin> <deny users="?" /> </authrizatin> </lcatin> <lcatin path="pre-register.aspx"> <authrizatin> <allw users="?"/> <deny users="*"/> </authrizatin> </lcatin> Authr: Mike Leam P3 Prject, CIePD, University f Nttingham

If yu want t create Rles manually in the MySQL database (e.g. if yu re having issues with the ASP.NET Web Site Administratin Tl like I did, yu need t create the fllwing recrds in yur MySQL database my_aspnet_applicatins ID = [AUTO generated] name = [as specified fr applicatinname in MySQLRlePrvider abve] descriptin [as specified fr defaultprvider="mysqlrleprvider abe] my_aspnet_membership ( Nt used here as Active Directry is being used as the Membership Prvider my_aspnet_prfiles (again this is fr smething else the prfile prvider_) my_aspnet_rles ID = [AUTO generated] applicatin Id =[the ID f the recrd createdin my_aspnet_applicatins abve - this is a freign key] name = [the same names as in the lcatin sectin f the web.cnfig] my_aspnet_schemaversin (this is autmatically ppulated by ASP.NET) my_aspnet_users applicatin Id =[the ID f the recrd created in my_aspnet_applicatins abve - this is a freign key] name = [the user ID f each user than will have specific rles assigned t them as recrded in Active Directry is Annymus = 0 last Activity Date=(n need t ppulate manually) my_aspnet_usersinrles user Id = [the IDs r the recrds created in my_aspnet_users abve - this is a freign key] rle id = [the IDs r the recrds created in my_aspnet_rles - this is a freign key] Authr: Mike Leam P3 Prject, CIePD, University f Nttingham

2026 © DocPlayer.net Privacy Policy | Terms of Service | Feedback  | Do Not Sell My Personal Information