| Author |
Message |
mhunsaker@usi.edu
Guest
|
 Posted:
Thu Oct 20, 2005 4:51 pm Post subject:
Authentication and Authorization |
|
|
I recently took the MCMS 2002 class in Chicago and I walked away with several
questions. Most of the questions I have been able to figure out so far in
testing but there is one concept that I am fuzzy on.
Throughout the class, we used the WoodgroveNet example, which was a nice
example but we never talked about how the login process works. The example
site has a login page that always appears for the user to login but what if I
don't want a login site except for certain people? This may be a pretty big
question but I am very confused.
We are a university so our entire web site will be open for everyone.
However, I am a channel manager for Admissions, when I go to the web site, I
want the ability of managing the content. I've been playing around with this
issue for the last week and I can get the Web Authoring Control to appear all
of the time or none of the time depending on the security that I establish in
IIS.
The main question I have is what authentication is best for my situation?
My guess is probably Forms Authentication. So if I load the Admissions web
site in CMS, how will it know if I am a student wanting more information or
the channel manager needing to make changes?
Sorry for asking such high-level questions but it was never covered in the
training and it's going to be a big issue if I don't figure it out!
Thanks much.
Mike |
|
| Back to top |
|
 |
Stefan [MSFT]
Guest
|
| Posted:
Thu Oct 20, 2005 4:51 pm Post subject:
Re: Authentication and Authorization |
|
|
Hi Mike,
you are asking the question about who was first: the hen or the egg?
Actually authentication is the process to identify the user sitting at the
browser.
Before authentication has happend the server does not know anything about
you.
So it can't do any logic based on who is sitting at the screen before the
authentication has happend.
usually you would add a login link somewhere on your homepage or - if you
would like to hide this - give the URL to the login page directly to the
users that should authenticate.
Cheers,
Stefan
--
This posting is provided "AS IS" with no warranties, and confers no rights
New to MCMS?
Check out this book: Building Websites Using MCMS: http://tinyurl.com/6zj44
----------------------
"mhunsaker@usi.edu" <mhunsakerusiedu@discussions.microsoft.com> wrote in
message news:18A16A9B-38DA-4777-AE29-BF10178DFB88@microsoft.com...
| Quote: | I recently took the MCMS 2002 class in Chicago and I walked away with
several
questions. Most of the questions I have been able to figure out so far in
testing but there is one concept that I am fuzzy on.
Throughout the class, we used the WoodgroveNet example, which was a nice
example but we never talked about how the login process works. The
example
site has a login page that always appears for the user to login but what
if I
don't want a login site except for certain people? This may be a pretty
big
question but I am very confused.
We are a university so our entire web site will be open for everyone.
However, I am a channel manager for Admissions, when I go to the web site,
I
want the ability of managing the content. I've been playing around with
this
issue for the last week and I can get the Web Authoring Control to appear
all
of the time or none of the time depending on the security that I establish
in
IIS.
The main question I have is what authentication is best for my situation?
My guess is probably Forms Authentication. So if I load the Admissions
web
site in CMS, how will it know if I am a student wanting more information
or
the channel manager needing to make changes?
Sorry for asking such high-level questions but it was never covered in the
training and it's going to be a big issue if I don't figure it out!
Thanks much.
Mike |
|
|
| Back to top |
|
|
mhunsaker@usi.edu
Guest
|
| Posted:
Thu Oct 20, 2005 4:51 pm Post subject:
Re: Authentication and Authorization |
|
|
Stefan,
I appreciate your quick response! It was very helpful. Now I can research
how to create a customized entry page and I'll be on my way.
Sorry for asking such a simple question but the training I had filled my
head with complex thoughts about CMS and some of the simple things were
untouched.
Thanks again,
Mike
"Stefan [MSFT]" wrote:
| Quote: | Hi Mike,
you are asking the question about who was first: the hen or the egg?
Actually authentication is the process to identify the user sitting at the
browser.
Before authentication has happend the server does not know anything about
you.
So it can't do any logic based on who is sitting at the screen before the
authentication has happend.
usually you would add a login link somewhere on your homepage or - if you
would like to hide this - give the URL to the login page directly to the
users that should authenticate.
Cheers,
Stefan
--
This posting is provided "AS IS" with no warranties, and confers no rights
New to MCMS?
Check out this book: Building Websites Using MCMS: http://tinyurl.com/6zj44
----------------------
"mhunsaker@usi.edu" <mhunsakerusiedu@discussions.microsoft.com> wrote in
message news:18A16A9B-38DA-4777-AE29-BF10178DFB88@microsoft.com...
I recently took the MCMS 2002 class in Chicago and I walked away with
several
questions. Most of the questions I have been able to figure out so far in
testing but there is one concept that I am fuzzy on.
Throughout the class, we used the WoodgroveNet example, which was a nice
example but we never talked about how the login process works. The
example
site has a login page that always appears for the user to login but what
if I
don't want a login site except for certain people? This may be a pretty
big
question but I am very confused.
We are a university so our entire web site will be open for everyone.
However, I am a channel manager for Admissions, when I go to the web site,
I
want the ability of managing the content. I've been playing around with
this
issue for the last week and I can get the Web Authoring Control to appear
all
of the time or none of the time depending on the security that I establish
in
IIS.
The main question I have is what authentication is best for my situation?
My guess is probably Forms Authentication. So if I load the Admissions
web
site in CMS, how will it know if I am a student wanting more information
or
the channel manager needing to make changes?
Sorry for asking such high-level questions but it was never covered in the
training and it's going to be a big issue if I don't figure it out!
Thanks much.
Mike
|
|
|
| Back to top |
|
|
|
|
|
|
FAQ
Memberlist
Register
Profile
Log in to check your private messages
Log in