Gemini Community Support Site

This Gemini community support site can be used to find solutions to product issues. You can log in using Open Id, Google Profile and even Facebook. Feel free to ask a question or browse FAQs and documentation. Product tour videos are also available along with how-to videos demonstrating key Gemini capabilities.




Can I mix both Windows authentication and Database [forms] authentication?

web-app

A requirement for my installation would be to first attempt to authenticate the user against Windows Active Directory users database, then in case of failure to authenticate user against SQL Server database (users table).

Can Gemini handle this type of workflow on user login?
FredZimmerman
· 1 		FredZimmerman
Tuesday, May 9, 2006, 2:50:13 PM
Replies (8)
helpful
0
not helpful

This is not possible out of the box.

However, you could customise Gemini and put an initial page that will use Gemini sso.aspx page to log on known windows users.
Mark Wing
· 9108 		Mark Wing
Tuesday, May 9, 2006, 5:58:08 PM
helpful
0
not helpful

Can you explain the sso.aspx page, I did not see this in the application.  My requirement (as stated by my manager) is to have the user who fails Active Directory Authentication, given a 2nd chance to login against a user authentication data store.  Can Gemini do this, with customization?
FredZimmerman
· 1 		FredZimmerman
Wednesday, May 10, 2006, 9:42:59 PM
helpful
0
not helpful

The sso.aspx page is there to login people automatically. See http://community.countersoft.com/forums/thread/583.aspx

Basically, the site will run with Forms authentication but you will have to write a new app / page that will check if a user has got windows credentials and if they are valid locate that user and send the correct user name and password to the sso page so the user is logged on automatically.

If you do not find the user then redirect to default.aspx that will allow the user to log on.

 
Saar Cohen
· 5000 		Saar Cohen
Wednesday, May 10, 2006, 10:24:15 PM
helpful
0
not helpful

Has anyone got this working successfully? I was hoping we could automatically log domain users in but prompt non-domain users (or domain users temporarily using non-domain machines, e.g. employees working from hom using their own PCs) for their credentials and log in accordingly.

The developer has been trying to achieve this but we seem to be stuck with either fixing domain users' Gemini passwords (I believe you are working on this by adding AD integration in v4?) or having a prompt  for Windows credentials before reaching the new login page.


nharris
· 1 		nharris
Friday, December 4, 2009, 4:18:13 PM
helpful
0
not helpful

You should be able to do this with 2 sites pointing to the same database.
One site will use windows authentication and will only work for these users and one will use forms for non domain users.
Mark Wing
· 9108 		Mark Wing
Friday, December 4, 2009, 4:31:15 PM
helpful
0
not helpful

nharris,

We are automatically logging domain users in here without any issues. And if a user uses a non domain computer it prompts them for their domain username and password. Where are you getting stuck? Is this even what you are looking for? Thanks.

/paul
pvangundy
· 1 		pvangundy
Wednesday, December 9, 2009, 4:42:45 PM
helpful
0
not helpful

Paul,

Yes, there doesn't seem to be a problem using Windows authentication or Forms authentication - the problems start when you try to use both at the same time. As we have a lot of domain users (our staff) and a smaller number of non-domain users (external people, e.g. customers) who all access our Gemini instance, we need to cater for both types of authentication. Have you managed to get such a setup working?

Thanks,
Nigel.
nharris
· 1 		nharris
Wednesday, December 9, 2009, 4:55:52 PM
helpful
0
not helpful

No, we don't have that setup here. Only Windows auth.

/paul
pvangundy
· 1 		pvangundy
Thursday, December 10, 2009, 8:40:51 PM