Active Directory Authentication in ASP

M

Michael B. Murdock

I have been attempting to find a script that works in a variety of AD
implementations to authenticate a user from a form in ASP. After many failed
attempts I developed the following test script that seems to work in a
majority of environments I have tested it in.

I am posting it for the benefit of other developers trying to solve the same
problem.

Best regards,

Mike Murdock
www.starphire.com
Web Content Management Solutions
mmurdock (at) starphire (d0t) com


-----------------------------

I have updated the script to make it more generic and work in multiple
domain environments and am posting it here as a resource for other users.

Mike Murdock
http://www.starphire.com
Web Content Management Solutions
mmurdock (at) starphire (d0t) com

<!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 4.0 Transitional//EN">

<html>
<head>
<title>LDAP Authentication Test</title>
</head>

<body>

<%
dim submit
dim UserName
dim Password

UserName = "domain\JohnDoe"
Password = ""
Domain = "subdomain.domain.com"

submit = request.form("submit")

if submit = "Authenticate" then
UserName = request.form("UserName")
Password = request.form("Password")
Domain = request.form("Domain")
result = AuthenticateUser(UserName, Password, Domain)
if result then
response.write "<h3>Authentication Succeeded!</h3>"
else
response.write "<h3>Authentication Failed!</h3>"
end if
end if

response.write "<hr><form method=post>"
response.write "<table>"
response.write "<tr>"
response.write "<td><b>Username:&nbsp;</b></td><td><input type=""text""
name=""UserName"" value=""" & UserName & """ size=""30""><br><small>Enter as
""DOMAIN\UserName"" or ""(e-mail address removed)"" or ""\UserName"" in a
single domain environment</small></td>"
response.write "</tr>"
response.write "<tr>"
response.write "<td><b>Password:&nbsp;</b></td><td><input
type=""password"" name=""Password"" value=""" & Password & """
size=""30""></td>"
response.write "</tr>"
response.write "<tr>"
response.write "<td><b>AD Domain:&nbsp;</b></td><td><input type=""text""
name=""Domain"" value=""" & Domain & """ size=""30""><br><small>Enter the AD
Server FQDN, IP Address, or DN<br>Examples: ""adserver1.ourdomain.com"" or
""192.168.1.150"" or
""192.168.1.150/dc=adserver1,dc=ourdomain,dc=com""</small></td>"
response.write "</tr>"
response.write "<tr>"
response.write "<td>&nbsp;</td><td><input name=""submit""
type=""submit"" value=""Authenticate""></td>"
response.write "</tr>"
response.write "</table>"
response.write "</form>"
response.end

function AuthenticateUser(UserName, Password, Domain)
dim strUser
' assume failure
AuthenticateUser = false

strUser = UserName
strPassword = Password

strQuery = "SELECT cn FROM 'LDAP://" & Domain & "' WHERE objectClass='*' "
set oConn = server.CreateObject("ADODB.Connection")
oConn.Provider = "ADsDSOOBJECT"
oConn.Properties("User ID") = strUser
oConn.Properties("Password") = strPassword
oConn.Properties("Encrypt Password") = true
oConn.open "DS Query", strUser, strPassword

set cmd = server.CreateObject("ADODB.Command")
set cmd.ActiveConnection = oConn
cmd.CommandText = strQuery
on error resume next
set oRS = cmd.Execute
if oRS.bof or oRS.eof then
AuthenticateUser = false
else
AuthenticateUser = true
end if
set oRS = nothing
set oConn = nothing

end function

%>

</body>
</html>
 

Ask a Question

Want to reply to this thread or ask your own question?

You'll need to choose a username for the site, which only take a couple of moments. After that, you can post your question and our members will help you out.

Ask a Question

Similar Threads

classi asp 0
Object required error 0
ASP & Active Directory 3
ADSI Authentication Problem in ASP 0
ASP Authentication to Active Directory 2
Windows NT authentication and asp??? 3
Could someone help with my ASP code below 2
Authentication via Active Directory unsuccessfull 0

Members online

No members online now.
Total: 30 (members: 0, guests: 30)
Robots: 268

Forum statistics

Threads
473,756
Messages
2,569,535
Members
45,008
Latest member
obedient dusk

Latest Threads

Top