首先,问题是:
我们有一个带有 Flash 前端的 Web 应用程序,它通过 SOAP 与我们的 ASP.NET Web 服务进行通信,然后处理我们所有的服务器端代码 (C#)。
现在,我们在应用程序中实现了简单的用户登录,并将信息存储在 MSSQL 数据库中。
客户已请求使用当前登录的用户通过我们的应用程序进行 Windows 身份验证。
因此,我受命调查此事。没有人,包括我自己,在这方面有任何经验。
我一直在阅读一些基本的 Active Directory 信息和一些简单的教程。我了解如何通过代码使用 ADSI 访问该目录。我真正感兴趣的是整个事情应该如何构建。我不想拼凑出一个古怪的解决方案。
有谁知道此类事情的好教程或对入门有任何建议吗?更重要的是,这听起来可行吗?
我知道我没有提供太多信息,但请随时询问,我会提供答案。
谢谢。
编辑:
威尔,为了让您了解其范围,网络将包括大型医院中的每台计算机。所以是的,这是巨大的。显然我需要从小事做起。我想首先想出一些适合我办公室的东西。单个域中可能有大约 10 台 Windows 计算机。一台域控制器。
我也愿意阅读有关该主题的任何好书。
First off, The Problem:
We have a Web App with a Flash front-end that talks to our ASP.NET web service via SOAP which then deals with all of our server side code (C#).
Right now, we implement a simple user sign on in our application, storing the info in our MSSQL DB.
A client has requested what I understand to be Windows authentication through our application using the currently logged in user.
So, I have been tasked with investigating this. Nobody, including myself, has any experience in this area.
I have been reading up on some basic Active Directory information, and some simple tutorials. I understand how to get access to the directory using ADSI through code. What I'm really interested in seeing is how the entire thing should be architected. I don't want to throw together a hacky solution.
Does anyone know of a good tutorial for this kind of thing or have any advice on getting started? More importantly, does this even sound viable?
I know I haven't given much information, but feel free to ask and I will provide answers.
Thanks.
Edit:
Will, to give you an idea of the scope of this, the network will include every computer in a large hospital. So yes, this is huge. Clearly I need to start small. I would like to come up with something that will work at my office first. Maybe ~10 Windows computers on a single domain. One Domain Controller.
I am also open to any good books on the subject.
发布评论
评论(1)
如果您要绑定到 Active Directory,您需要查看 System.DirectoryServices 命名空间。根据您的系统架构,实现可能会有很大差异,但这应该为您提供一个良好的起点。
享受!
If you are going to tie into Active Directory you will want to take a look at the System.DirectoryServices namespace. The implementations can vary wildly depending on your system architecture, but this should give you a good starting point.
Enjoy!