[FAQ]Achieving Single-Sign-On

APGvNext Sam
vNext Dev
  • Total Posts : 13240
  • Joined: 2001/05/23 00:00:00
  • Status: offline
2008/08/04 17:43:13 (permalink) Authentication

Achieving Single-Sign-On

You need to enable cookie based forms authentication for your site, as the forum uses forms authentication cookie to recognize logged in users. Single Sign On depends on the presence of forms authentication cookie.
In addition, you need to make sure that in both web.config files:
  1. forms authentication cookie's name, protection, path are the identical.
  2. you have identical machine key (validationKey, validation, decryptionKey)
    1. Get your machine key if you don't have one yet.
That's it. It shouldn't take more than 5 min to do the above.

Alternatively, you can read this article on creating a custom Forms Authentication Cookie for forum if your site configuration does not allow the above.
Sharing Forms Authentication Cookie is tricky among app/sites on different ASP.NET frameworks (specifically between .NET 4.5 and any earlier version). A surefire way is to specify machine key compatibility mode in web.config:
<machineKey compatibilityMode="Framework20SP1" />

More info: http://blogs.msdn.com/b/w...-asp-net-4-5-pt-2.aspx

post edited by APGvNext (Sam) - 2013/04/22 14:44:55
Jump to:
© 2021 APG vNext Commercial Version 5.5