如何使用kerberos身份验证实现单点登录? [英] How to implement single sign-on using kerberos authentication?

问题描述

我正在使用c#在asp.net中的单点登录上实现一个项目.我需要使用kerberos实现身份验证.我在互联网上搜索了很多，但没有得到任何帮助.我是新手，请帮忙撰写任何不错的文章或教程.

I am implementing a project on single sign-on in asp.net using c#. I need to implement the authentication using kerberos. I searched the internet a lot but i am not getting any help. I am a newbie, please help me with any good post or tutorial on this.

推荐答案

在已注册到ActiveDirectory域的Windows服务器上的IIS中部署应用程序时，几乎

When deploying your application in IIS on a Windows server registered into an ActiveDirectory domain, almost all the job is already done by default.

在标准情况下:IE浏览器也在域中注册的Windows工作站上运行，并且用户也在域中登录，默认情况下会进行HTTP SPNEGO协商(IE选项为 Windows集成身份验证).

In a standard context: IE browsers running on a Windows workstation registered in the domain with the user logged in the domain too, HTTP SPNEGO negotiation happens by default (IE option is Windows integrated authentication).

然后，您在ASP.NET中的代码只需从User.Identity.Name获取用户名

Then your code in ASP.NET just have to get username from User.Identity.Name

这篇关于如何使用kerberos身份验证实现单点登录?的文章就介绍到这了，希望我们推荐的答案对大家有所帮助，也希望大家多多支持IT屋！