MSPSS: is there life after the helpdesk?

sharing solutions to uncommon IT problems

Dotnetnuke 7 + ActiveDirectory module: login prompt

with 3 comments


Hello,

we are setting up an evolutionary prototype of Dotnetnuke which will eventually replace our current extranet portal.

I’ve setup the new, out-of-the-box DNNPro_ActiveDirectoryAuthentication module.

Everything works as expected (ie: AD users can login successfully) but often, the first time you open the website you are presented with a login prompt.

Untitled

If you hit cancel, the system shows that /DesktopModules/AuthenticationServices/DNNPro_ActiveDirectory/WindowsSignin.aspx is asking for credentials.

In other words, DNN is trying to get you to automatically sign-in using your system credentials, then, when the login fails, it prompts you with a login box.

you may say: but I never asked to be logged in automatically! Neither did I and I struggled to find a reason and a solution.

In the module there’s no way to enable/disable this feature, but you can limit the automatic sign in to a range of IPs:

I simply limited the range of “allowed” IP to an unused internal ip (e.g.: 192.168.200.10) and that did the trick

Untitled

UPDATE: The solution I provided above was also causing a runtime error: “Index and length must refer to a location within the string. Parameter name: length”. In the end, in order to fix the problem, I had to disable auto-login altogether by commenting out the following line in the <modules> section of the web.config:

<add name=”Authentication” type=”DotNetNuke.Professional.Authentication.ActiveDirectory.HttpModules.AuthenticationModule, DotNetNuke.Professional.Authentication.ActiveDirectory” />

Advertisements

Written by zantoro

June 12, 2013 at 12:51 pm

Posted in DotNetNuke, IIS

Tagged with , ,

3 Responses

Subscribe to comments with RSS.

  1. Greetings! Quick question that’s entirely off topic. Do you know how to make
    your site mobile friendly? My web site looks weird when browsing from my iphone4.
    I’m trying to find a template or plugin that might be able to fix this problem.
    If you have any recommendations, please share.
    Appreciate it!

    webpage

    October 11, 2013 at 7:24 pm

  2. Thanks for the article. In my case i can have the user autologin but all the css/pcitures are not showing up. It looks like they have no access to those files. What do i need to do for the dotnetnuke website to show up correctly for all the AD users?

    Thanks.

    Am

    June 9, 2014 at 5:30 pm

    • Hey,
      I’m almost sure that yours is a file access issue. You have probably configured the website to run under Anonymous user (look at the configuration of Anonymous access in the security settings of your website).
      Personally I like to configure the website to run under the application pool identity and then grant read access to the whole website to IIS APPPOOL\nameOfThePool
      I suggest you download process monitor (a tool by sysinternals) and filter “area of sniffing” to your website root. This tool will tell you exactly which user is getting an access denied.

      Good luck,
      Roberto.

      zantoro

      June 9, 2014 at 6:24 pm


Leave a Reply

Fill in your details below or click an icon to log in:

WordPress.com Logo

You are commenting using your WordPress.com account. Log Out / Change )

Twitter picture

You are commenting using your Twitter account. Log Out / Change )

Facebook photo

You are commenting using your Facebook account. Log Out / Change )

Google+ photo

You are commenting using your Google+ account. Log Out / Change )

Connecting to %s

%d bloggers like this: