General Chat Thread, AD & external webside authentication (Sorry not sure where to put this!) in General; Hi, long shot.. and probably can't be done but is there a way to...
Basically i would like to be ...
19th March 2009, 11:18 AM #1
- Rep Power
AD & external webside authentication (Sorry not sure where to put this!)
Hi, long shot.. and probably can't be done but is there a way to...
Basically i would like to be able to allow students access to a website (possibly our learning platform) but to avoid the logging in on the website. Is there a way to use AD to make this happen?
I'm guessing not as the website is external, just wondered, or maybe a script of some kind could be run at start up giveing the website login credentials, read from the AD login?
Hope this makes a little sense?
Oh, currently we've server 2003, but about to up to 2008 if that makes any difference.
Cheers for any advice :-)
19th March 2009, 11:21 AM #2
If they're accessing externally (via their home computer etc) then they'll have to log in and authenticate somehow.
In school you can get around it as you know they're accessing via station and know they're logged on as themselves. Outside the only way of authenticating would be via typing a username and password of via VPN etc (which obviously would still require some for of login!)
19th March 2009, 11:50 AM #3
- Rep Power
When they're home they will need to log in to the site, that's cool.. but what i really would like to be able to do is to enable their network login to login to the website for them.. so when they visit the website they're automatically logged in.
I know this will only work in school, but would be good here.
19th March 2009, 11:57 AM #4
If your talking about a locally hosted LP like Moodle, then it's possible yes.
Use LDAP and Windows Authentication via IIS (if you go down the MS route instead of Linux - if it's Linux I can't help - can't use it!!)
19th March 2009, 11:58 AM #5
If you go the unix route, there's a PHP class called ADLDAP which you can use. Works very nicely.
19th March 2009, 12:47 PM #6
the website is external? so hosted and controlled by someone else..?
Originally Posted by klop
if so there's really no way to do this....
19th March 2009, 12:53 PM #7
I'd missed the external bit when making my previous posts!
Originally Posted by Domino
It's technically still possible to get LDAP authentication via an external site, but you would have to have a very good relationship with the hosting company! If it's an LEA hosted site (i.e. by your schools ISP) then it might well be still possible with some Firewall changes at both ends to allow that kind of traffic. I'm not sure I'd want to go down that avenue myself.
19th March 2009, 01:36 PM #8
- Rep Power
Afraid yes it is external.. and there's not really that close a relationship so i'm guessing it's not really going to happen.
New we should have investigated moodle a little more thoroughly!
ho hum, thanks for all advice anyways.. was the answer i expected.. but if you don't ask n all that
19th March 2009, 01:37 PM #9
Out of interest, what LP is it, and who's hosting it?
19th March 2009, 01:55 PM #10
I'm gonna guess at uniservity.....
19th March 2009, 02:01 PM #11
The only way you could have this work is if there was a VPN between your AD server(s) and the external web site. Thus allowing the two to communicate authentication information.
19th March 2009, 03:23 PM #12
- Rep Power
20th March 2009, 05:10 PM #13
I could think of at least one other way in the general case, but unfortunately it won't work for Uniservity. Generally speaking you could set up a lookup database which would act as an intermediary between AD and the website.
Originally Posted by Geoff
Your user would click on a link which would take them to an ASP page on a local IIS server. The page would take their AD username as a variable, look it up in the database, then redirect them to the VLE login with the VLE username and VLE password embedded into the URL.
You could put it into an IFRAME or something similar so that the username and password don't show up in the address bar for all to see. Once the page has had time to load, redirect the parent window to the VLEs homepage without credentials - it will still be logged in thanks to the site's cookies.
If the user had access to change their own password you would find that those users who did would have to log in manually.
Why won't it work with Uniservity? The Uniservity login page:
...will only accept txtusername and txtpassword when passed via POST rather than GET. I will be generous to them and suggest this was done for security reasons
By alan-d in forum Virtual Learning Platforms
Last Post: 15th December 2009, 02:19 PM
By ranj in forum Wireless Networks
Last Post: 14th March 2008, 06:26 PM
By rusty155 in forum Windows
Last Post: 23rd January 2008, 12:18 AM
By FN-GM in forum How do you do....it?
Last Post: 31st October 2007, 05:30 PM
Users Browsing this Thread
There are currently 1 users browsing this thread. (0 members and 1 guests)