.NET Tutorials, Forums, Interview Questions And Answers
Welcome :Guest
Sign In
Win Surprise Gifts!!!

Top 5 Contributors of the Month
david stephan
Gaurav Pal
Post New Web Links

Forms Based Authentication on Extranet Application

Posted By:      Posted Date: September 14, 2010    Points: 0   Category :SharePoint
I have a web application that is using classic authentication. I have extended it to my extranet so I can use https from the outside. All of this works, except I would like to have the extranet users not have to type domain\username. I am guessing I need to use claims based authentication with forms. It seems the only way to do this, would be to go back in time, and tell my original application to use claims based instead of windows. Is there a way I could have just my extended site use forms? I would really like to keep my extranet users out of active directory, as they are not part of my company.

View Complete Post

More Related Resource Links

Windows Forms: Give Your .NET-based Application a Fast and Responsive UI with Multiple Threads


If your application performs any non-UI processing on the thread that controls the user interface, it may make the app seem slow and sluggish, frustrating users. But writing multithreaded apps for Windows has long been restricted to C++ developers. Now with the .NET Framework, you can take advantage of multiple threads in C# to control the flow of instructions in your programs and isolate the UI thread for a fast and snappy user interface. This article shows you how. Also, it discusses the pitfalls of multiple threads and presents a framework for safe concurrent thread execution.

Ian Griffiths

MSDN Magazine February 2003

Forms based users being prompted for windows authentication login for My Sites photos in user lists

Here's an issue I didn't see coming for our forms based authentication users. 

We have a web application extended to an external url to handle forms based authentication for users outside of our domain. Our setup looks like this...

Internal Users/Windows Authentication - moss.domain.com
External Users/Forms Based - mossext.domain.com
My Site for Internal Users - mysites.domain.com

When our forms based users are accessing user lists, or discussion pages that display user pictures, they are getting a windows authentication login for our internal users (mysites.domain.com) who have populated their my site with personal photo.

How do we fix this? 

How do I use PowerShell to configure Web.Config for forms-based authentication for a Claims Based we

This TechNet article does a great job describing how to Configure forms-based authentication for a claims-based Web application using PowerShell. However, it glosses over editing the web.config file by just saying "Find the <Configuration> <system.web> section and add the following entry:" Is it possible to edit the web.config file using PowerShell using the IIS PowerShell snapin or can I just edit the web.config file as a xml document? This succeeds in adding the element, but only with the name and type. It does not add the connectionStringName or the applicationName import-module webadministration Add-WebConfiguration /system.web/membership/providers "IIS:\sites\[site name]" -value @{name="FBAMembershipProvider";` type="System.Web.Security.SqlMembershipProvider, System.Web, Version=, Culture= neutral, PublicKeyToken= b03f5f7f11d50a3a";` connectionStringName="FBAconn";` applicationName="/"} Does anyone any suggestions on a direction to go to add the membership providers and role providers in the web.config using PowerShell? This is very frustrating because I can do it manually, I can do it through the UI in IIS Manager, I can do it using appcmd, but no matter what I do, I can't get it to work using PowerShell.  

Cannot Login with Forms Based Authentication to SharePoint 2010 - Issue with the SecurityTokenServic

Please be advised I have followed the steps on http://donalconlon.wordpress.com/2010/02/23/configuring-forms-base-authentication-for-sharepoint-2010-using-iis7/. I have tried to fix the following issue for a week using different farms and SharePoint 2010 installations, however I am getting the following error when trying to authenticate using Forms Based into a Claims site: Cannot get Membership Provider with name FBARoleProvider The membership provider for this process was not properly configured. You must configure the membership provider in the .config file for every SharePoint process. 1. I am certain the membership provider is configured in the SecurityTokenServiceApplication webservice as I can manage users and roles in IIS7 using the SecurityTokenServiceApplication website. 2. I am certain that membership provider is configured in the both the Claims Web Application and Central Admin as I can manage users and roles in IIS7 using their websites. 3. I know the issue is the SecurityTokenServiceApplication service as I had to set <serviceDebug includeExceptionDetailInFaults="true" /> to get the error above. 4. I can log into the Claims Based Application using windows authentication, however I am unable to see the users on the people picker despite that I can see them from the application's site on IIS

Forms Based Authentication - problem with custom master page and login page



I have successfully enabled and set up FBA (Forms Based Authentication) on my SharePoint 2010 Foundation server. The thing is that I need to customize the look and feel of the login page. I have successfully customized the page (and master page) to look the way I want, however, when I try to log in, I get the following error/message on the page:
"Forms Based Authentication on classic Web applications has been deprecated".

What I've done:
Made copies of /_layouts/simple.master and /_layouts/login.aspx and renamed the copies. The markup in the master page is MUCH simpler than the original, but I've kept all the ContentPlaceholders that I don't use (most of them) in a hidden <asp:Panel at the bottom of the page.

I've changed the web.config file:
<authentication mode="Forms">
      <forms loginUrl="/_layouts/loginCustom.aspx" />

So, I'm not getting any errors on the page until I try to log in. When I use the default settings (login.aspx and simple.master) it works just fine (but damn that page looks ugly!).

Does anyone know what I might be missing?

Update: I believe the reason it doesn't work is because my custom login aspx is not part of the Claims Based Web Application (because it's sitting

Forms Based Authentication in SharePoint 2010



I'm trying to figure out how to setup FBA in SharePoint 2010.  I know that FBA is now just a subset of Claims Based Authentication, but I'm confused by some of the different approaches that I've seen on some technet blogs:



Having seen the two, one doesn't setup a SQL while one does.  Both are vague in the user account that is used to manage the FBA users.  I'd like to get some clarification if that's possible.  Thanks in advance!

Forms based authentication allow only specific users from database table


I have the following implementation and I'm sure there is an easy way to do what I want to do but I can't figure it out. 

1. I use forms based authentication to authenticate to my site

2.  I use active directory to authenticate the users

3.  I use the Allow Users="xxx" tag to authorize the users limited to the list that can access my site. (e.g.. even though Mary is an AD user she can't access my site unless I put her credentials in the allow users tag in the web.config file)

All is working well but I want to move the users access list (e.g.. <allow users="john" />" from the web.config to a database table so that I can create a user maintenance page for my admins to add and delete user access.   For the life of me I can't figure out how to do this and I can't seem to find an article on it either.  I'm sure I'm just not looking for the right thing, so help is greatly appreciated. 

Here is my web.config file..

        <add name="DBConnectionString" connectionString="Data Source=PRIMSRV;Initial Catalog=MAINDB;Persist Security Info=True;User ID=svc.Test;Password=password

Extending Web Application using Claims Based Authentication


Hello SharePoint saviors, I'm trying to extend a web application that uses claims based authentication to utilize FBA.  I'm following this TechNet article http://technet.microsoft.com/en-us/library/ee806890.aspx which seems fairly straight forward, the only difference being that it seems to be geared towards a new web application whereas I'm extending an existing web app (is this the problem?). However, after following the instructions my web application fails...both the default web application and the extended web application. 

My application uses a default zone with Windows Authentication using NTLM.  I'm attempting to extend the web app using FBA as an extranet zone which will use LDAP for authentication.  I suspect I'm missing a key element to the web.config file for SecurityTokenServiceApplication.  Here's the modified section of web.config for SecurityTokenServiceApplication with the actual server name replaced.  I know there is a problem with this particular service because the health and monitor analyzer tells me the service is unavailable in central administration.   Help!



migrate from windows to forms in claims based authentication


Hi friends,

               I am using sharepoint2010 forms based authenticaion (claims based) configure all the web.config files and its working fine.Now I want to change this applicaion to windows authentication (claims) what are the things to follow to change the application to windows and vice versa.I refer few links but they are referring from  classic to claims and many other things not my req..!



Trying to implement Forms-based authentication



I have a web-application that is set to windows-authentication and is created as anonymous. This is at default zone. I want to change this to forms based authentication.

I tried extending web-application and creating new zone as Extranet but it is asking me to specify the url (within load-balanced url) that should not be same as the url of the default zone url. Dont' know why. Please suggest.

But for now, I had a question. If I modify the default zone to be forms based, will it cause any problems? I am assuming that this will be default for any type of user (internal, external etc) ? Please let me know.  

Also as far as web.config changes (considering changes to default zone ),  is it fine if I modify web.config of this site plus the central admin web.config? If there are another 5 web-applications (that are totally different but reside in same farm), do I need web.config of those web-application also?


Please suggest.


Our goal is that this website (even when accessed internally) will be through form-based authentication only. So 

Form based authentication on current web application SharePoint 2010



I have question about creating form based authentication. I want to have different authentication in the same web application in the same time. For now I have windows authentication and I want to extend it to Form base authentication. I follow procedure on link http://blog.summitcloud.com/2009/11/forms-based-authentication-sharepoint-2010-fb/ step by step but it doesn't work. Also when I try to change authentication in Central administration to Forms it is not possible because that option is disable. Is there any setup for overcome this issue.

Thank in advice.


Assuming identity of other logged in users in web application using Forms Authentication and Singlet



I have a web application with a login form. A user enters a user name and password. If they exist in the database the user is authenticated using these two lines:

FormsAuthentication.SetAuthCookie(userName, false);
FormsAuthentication.RedirectFromLoginPage(userName, false);

The problem is that when a user logs in at first he is logged in as himself. When navigating on the web application for a while the user assumes the identity of another logged in user. This happens all the time.

In my web.config the authentication mode looks like this:

<authentication mode="Forms">
  <forms loginUrl="LogOn.aspx" name=".ASPXFORMSAUTH">
  <deny users="?" />

The site does not use ASP.NET session variables. Instead each page initializes a Singleton class, which stores itself in a static class variable, always accessing the users data already read from the database.

The Singleton implementation is:

static readonly WebSession instance = new WebSession();


public static WebSession GetSingletonInstance
  get { return instance; }

Could the problem with assuming anoth

Claims Walkthrough: Creating Forms-Based Authentication for Claims-Based SharePont 2010 Web Applicat

Learn how to create forms-based authentication for claims-based web applications by using a custom membership and role provider.

unable to log on/browse the users after configuring forms based authentication in WSS 3.0


Hi all,

I have a strange problem, I have configured the forms based authentication using WSS 3.0 in server 2008 m/c connected with one of the sql server in the farm and i am using iis 7.0.

During this i omitted any role provide options since i dont need it.

I placed the connection string and configured the web application with the forms mode and also provided the membership provider.

As soon as i refreshed the page, i got the log on screen where i entered the credentials that i have configured using the asp.net configuration tool.

Here i could not log on to the share point site even i enabled the anonymous access.

To set the site collection administrator,i have modified the machine.config with the changed connection string.still no use i could not browse the users from the FBA store to add.

please share your ideas why i was not able to browse and add the users to the share point even though i have modified the machine.config file to point the FBA database.I havent seen any error logs relavant to this.

sample connection string:



Logged in Username in Sharepoint 2010 Forms Based Authentication



When using forms based authentication in Sharepoint 2010, suppose user is logged in with username "admin" and our custom membership provider name is "FBAProvider"... After logging in with this account, logged in user name is displayed like "i:0#.|FBAProvider|admin". How can make it display as it should be like just "admin"?

Thanks in advance,


Sample: Creating Claims Providers for Forms-Based Authentication Web Applications for SharePoint 201

Explore the code as you learn how to create a claims provider for a Microsoft SharePoint 2010 forms-based authentication web application.

Claims Walkthrough: Creating Forms-Based Authentication for Claims-Based Web Applications Using ASP.

Learn how to create forms-based authentication for claims-based web applications by using ASP.NET SQL membership and role providers.
ASP.NetWindows Application  .NET Framework  C#  VB.Net  ADO.Net  
Sql Server  SharePoint  Silverlight  Others  All   

Hall of Fame    Twitter   Terms of Service    Privacy Policy    Contact Us    Archives   Tell A Friend