IIS网站具有双重登录选项
[英]IIS website with double login option
问题描述
I need to allow users to login website either with their Active Directory accounts if they are in local network (Sitecore's single sign-on functionality) or with their credentials (email and social security number) if they access site being outside local network. 
我需要允许用户使用其Active Directory帐户(如果它们在本地网络中(Sitecore的单点登录功能))或使用其凭据(电子邮件和社会安全号码)来登录网站(如果他们访问的站点不在本地网络之外)。
First option could be achieved by enabling Windows Authentication mode in IIS and second - by using Anonymous mode. 第一种选择可以通过在IIS中启用Windows身份验证模式来实现,第二种选择是使用匿名模式。 But it is impossible to enable these two modes at the same time for one site. 但是,不可能在一个站点上同时启用这两种模式。 So the question is how to configure website in IIS to allow both groups of users login it with appropriate option and do not create different site for each option? 因此,问题是如何在IIS中配置网站,以允许两组用户使用适当的选项登录该网站,而不为每个选项创建不同的网站?
Any good ideas are appreciated. 任何好的想法都值得赞赏。
2 个解决方案
解决方案1
3 已采纳 2015-02-07 20:41:17
Assuming you are talking about the Sitecore interface, you can disable Windows Authentication and your AD users can still log in by specifying the domain as part of their username, eg <AD-Domain>\\AD-username and then supplying their AD password. 假设您正在谈论Sitecore界面,则可以禁用Windows身份验证,并且AD用户仍可以通过将域指定为用户名的一部分(例如<AD-Domain>\\AD-username并提供其AD密码来登录。 If you have followed the Sitecore Active Directory Module Guide then domain in this instance should be ad but you can change this to whatever you like, just make sure the rest of the config and references to "ad" have been changed to match. 如果您已遵循《 Sitecore Active Directory模块指南》,则该实例中的域应为ad但您可以将其更改为任意名称,只需确保配置的其余部分和对“ ad”的引用均已更改为匹配。
In order to still allow Single Sign On without the user having to type in their domain/username/password you need to remove Anonymous and enable Windows Authentication for the login file only located at /sitecore/admin/ldaplogin.aspx . 为了仍然允许单点登录而无需用户输入域/用户名/密码,您需要删除“匿名”并仅对位于/sitecore/admin/ldaplogin.aspx的登录文件启用Windows身份验证。 See section 4.3.1 of the documentation. 请参阅文档的4.3.1节。
In order to use this Single Sign On page and login, your AD users need to browser to http://<your-site>/sitecore/admin/ldaplogin.aspx . 为了使用此Single Sign On页面并登录,您的AD用户需要浏览到http://<your-site>/sitecore/admin/ldaplogin.aspx 。 I provided a link on Sitecore login page by creating an HTML page with a link to this page: 我通过创建带有此页面链接的HTML页面,在Sitecore登录页面上提供了一个链接:
<html>
<body>
<a href="/sitecore/admin/ldaplogin.aspx">Login with your Windows account</a>
</body>
<html>
And then updating the Login.SitecoreUrl setting to the html page: 然后将Login.SitecoreUrl设置更新为html页面:
<!-- LOGIN SITECORE URL
Specifies the Url of the Sitecore pane on the login startpage.
-->
<setting name="Login.SitecoreUrl" value="/sitecore/admin/ldaplogin.html" />
Your users will then be provided with a link in the pane on the right side of the login page for Sitecore 7.5 and earlier. 然后,将在登录页面右侧窗格中为Sitecore 7.5及更早版本的用户提供一个链接。
解决方案2
2 2015-02-07 13:47:33
Sitecore does have its own Active Directory module that its worth investigating. Sitecore确实有其自己的Active Directory模块,值得研究。 The links to documents are broken currently so can't find the exact answer to help you. 文档链接目前已断开,因此无法找到确切的答案来帮助您。
Here is the link to the main page and download - sdn.sitecore.net/Products/AD.aspx 这是指向主页并下载的链接-sdn.sitecore.net/Products/AD.aspx
It's their own Module so if you do have any questions or issues you can raise a support ticket with them. 这是他们自己的模块,因此,如果您有任何疑问或问题,可以向他们提出支持要求。
声明:本站的技术帖子网页,遵循CC BY-SA 4.0协议,如果您需要转载,请注明本站网址或者原文地址。任何问题请咨询:yoyou2525@163.com.