Buy or Renew
Buy or Renew
Duo Security forums now LIVE! Get answers to all your Duo Security questions. Learn more
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
1732
Views
1
Helpful
2
Replies

SharePoint 2016 FBA onprem .NET WebSDK

Casey2
Level 1
Level 1

‎09-04-2020 04:49 PM

Looking for tips from anyone that’s configured SharePoint with the DUO WebSDK. We’ve configured SharePoint 2016 FBA with the DUO WebSDK and its works well except for one aspect regarding FBA authentication.

login page 1.) authenticate the username and password using FBA-LDAP.
login page 2.) load the duo web iframe

The method that authenticates the username and password on login page 1 is the SPClaimsUtility.AuthenticateFormsUser which persists a cookie to the site.

If the user fails the DUO authentication on login page 2, they still have an authenticated session to the site. We can force a signout and clear session cookies, but I was hoping for a cleaner approach. Please assist.

Thanks!

0 Helpful
2 Replies 2

Casey2
Level 1
Level 1

‎09-08-2020 10:53 PM

We resolved this by validating credentials on the first login page with Membership.ValidateUser which validates against the user store without creating a persisted cookie. On the second page once the user has successfully passed DUO authentication we used the SPClaimsUtility.AuthenticateFormsUser. Hope this helps anyone out there! Have a good one.

Amy2
Level 5
Level 5
In response to Casey2

‎09-11-2020 06:11 AM

Thank you, Casey, for following up to share the answer with the community! Glad you found the solution you needed.

0 Helpful
Quick Links
     
                  Duo Release Notes   Duo Discussion Forums      
 
 
Customers Also Viewed These Support Documents