SharePoint - extranet with forms authentification

Asked By GeorgeGeorgie

16-Apr-07 10:52 PM

I want to enable people in the company to login from outside using forms
authentification. They can login fine, but it seems that they are not
recognized as the same users as when they login from inside using windows
authentification. Is it possible to use the same AD profiles in intranet and
extranet scenarios?

17-Apr-07 08:41 AM

I know that you can only use one authentication provider per web
application so you either have to go with Forms Auth or AD but I'm not
sure if that's your question.  It seems you might be asking if there's a
way to associate a Forms Auth ID with AD.
You might want to look at MIIS as a possible solution for that.

--
Thanks
C
Blog: http://www.cjvandyk.com/blog
RSS: http://feeds.feedburner.com/cjvandyk

17-Apr-07 09:11 AM

I don't think any identity integration will be required, as forms-
authenticating against AD appears like a quite common and supported
scenario.
See http://msdn2.microsoft.com/en-us/library/ms998360.aspx

17-Apr-07 11:18 AM

Thanks for your replies. Sezel, I can authenticate fine with AD, using form
authentication, but sharepoint does not recognize the user as one that is
imported to the sharepoint profile store from Active Directory. Essentially,
I want to allow my Active Directory users to access the External URL, but
using their Active Directory login and maintaining their internal rights.

Can you recommend a way to allow our employees to access the intranet portal
from outside without using VPN? We are using ISA server and our admin is
telling me that we have to use forms authentication if we want to access the
network from outside.

Thanks

17-Apr-07 11:18 AM

Thanks for your replies. Sezel, I can authenticate fine with AD, using form
authentication, but sharepoint does not recognize the user as one that is
imported to the sharepoint profile store from Active Directory. Essentially,
I want to allow my Active Directory users to access the External URL, but
using their Active Directory login and maintaining their internal rights.

Can you recommend a way to allow our employees to access the intranet portal
from outside without using VPN? We are using ISA server and our admin is
telling me that we have to use forms authentication if we want to access the
network from outside.

Thanks

18-Apr-07 04:25 AM

George,

I have to say I don't think your admin is being honest with you. If
you are using ISA and want to use AD for authentication there's
nothing that should prevent you from using Basic authentication +
HTTPS for extranet access.

There's a good article on TechNet about this configuration, I don't
have the URL handy but it should be easy to find.

Good luck!

18-Apr-07 08:10 AM

I am not an expert in ISA server, but in WSS you can use Windows
Authentication over the Internet -- in fact we do it all the time
(with or without VPN).

I believe that is the way to go if you want users to use their AD
profiles.

I believe Forms authentication is for where your users don't have AD
accounts (for whatever reason -- perhaps they are external partners).