authenticate Active Directory Users

wajeeh_r · #1 (**permalink**) 10-06-05, 05:59 PM

Hello all!

I have a domain ‘test’ created on win 2003 server. 5 users are created in the Active directory. I want to know how I can authenticate active directory users through ASP code.

I want something like this that when a user enters IP in browser to use intranet he should be presented with a screen in which he has to enter his username and password as created in active directory. This entered information is to be authenticated by ASP code by contacting Active directory that whether the user with this name exists or not. If yes then the user should be presented with a welcome screen.

Regards,
Wajeeh ur rahman

permalink · #2 (**permalink**) 10-07-05, 11:56 AM

you will need to look into ldap. i do not know much about using that from asp, but it will be comming up in a project soon.....

chuck59 · #3 (**permalink**) 10-12-05, 08:33 AM

You can not accomplish it with ASP. As ASP is a scripting language and no system progrmming could be done with it (system interaction), however if you want to do some operations with WinAPI, you'll need to build an ActiveX DLL and call it's public function from your ASP code.
In current scenario, where you need to authenticate a user with Active Directory, you'll need to develop an ISAPI filter for IIS. This filter shall be activated on whole of the IIS or on a site, where you need to enable this functionality.

Important: An ISAPI filter could not be programmed in VB6, but you'll have to develop it with VC++ or .NET.

Following are some URL, which will give a brief overview of ISAPI filters...

. ISAPI authentication filter
. ISAPI filter to allow access only to hosts with selected IP addresses

You can also search for "ISAPI filter" at http://www.codeproject.com to find more examples.

toth · #4 (**permalink**) 10-26-05, 08:00 AM

I know how to do this with an Acces database, donno how to do it with an active directory

elm_st · #5 (**permalink**) 10-31-05, 04:19 PM

Here is the function I use to validate our Active Directory Credentials via an ASP Page. It's a bit crude, but it works...

if validateuser("domainname\aduser","x")=0 then 'User/Password is correct.

Code:

function validateuser(username,password)
    dim ad_con
    dim ad_Com
    dim ad_rs
 
    on error resume next
    domainname=mid(username,1,instr(username,"\")-1)' "
 
    err.clear
 
    Set ad_con = Server.CreateObject("ADODB.Connection")
 
    ad_con.provider ="ADsDSOObject"
    ad_con.properties("user id")=username
    ad_con.properties("password")=password
    ad_con.open "Active Directory Provider"
    Set ad_Com = CreateObject("ADODB.Command")
    Set ad_Com.ActiveConnection = ad_con 
 
    ad_Com.CommandText = "select sn from 'LDAP://"&domainname&"' WHERE objectCategory='user' "
    Set ad_rs = ad_Com.Execute 
 
    validateuser=err
 
    ad_rs.close
    ad_con.close
 
    set ad_rs=nothing
    set ad_com=nothing
    set ad_con=nothing
end function

ateris · #6 (**permalink**) 04-27-09, 12:36 PM

Hi,
I seem to be getting a permission error on Set ad_rs = ad_Com.Execute. Could anyone help me why I am getting that.

Thanks