S
SpaceMarine
hello,
my ASP.NET apps use Windows Server 2003, and Integrated Windows
authentication in the web.config:
<authentication mode="Windows"/>
....our windows users are assigned to Groups in Active Directory, which
i can usually lock down like so:
<authorization>
<allow roles="Foo"/>
<deny users="*"/>
<deny users="?"/>
</authorization>
however, something has stopped working. the above stopped working, and
doing some tests in code behind i determined the app can see who you
are and retrieve your Windows name like this:
string name = User.Identity.Name; // "DOMAIN\SomeUser"
....but it doesnt seem able to recognize what AD Group youre in, like
this:
bool isInRole = User.IsInRole("Foo"); //false everytime
....yet if i check in Windows, the user *is* in that group.
any idea what could be happening!? this used to work, but im not sure
whats changed since then. any ideas would be appreciated.
thanks,
sm
my ASP.NET apps use Windows Server 2003, and Integrated Windows
authentication in the web.config:
<authentication mode="Windows"/>
....our windows users are assigned to Groups in Active Directory, which
i can usually lock down like so:
<authorization>
<allow roles="Foo"/>
<deny users="*"/>
<deny users="?"/>
</authorization>
however, something has stopped working. the above stopped working, and
doing some tests in code behind i determined the app can see who you
are and retrieve your Windows name like this:
string name = User.Identity.Name; // "DOMAIN\SomeUser"
....but it doesnt seem able to recognize what AD Group youre in, like
this:
bool isInRole = User.IsInRole("Foo"); //false everytime
....yet if i check in Windows, the user *is* in that group.
any idea what could be happening!? this used to work, but im not sure
whats changed since then. any ideas would be appreciated.
thanks,
sm