All geek questions in one place

Active Directory Authentication ColdFusion 10

When ColdFusion was first released with the jRun engine, one of the questions at that time among many users was: How do we authenticate our Windows AD environment? At that time (if I remember correctly) cfc was freely available on Macromedia, which created a Java object using one or more Java class files that were available with jRun (the corresponding component function code appears at the end of this message without attribution) and executed "authentication process". I believe that our small employees were not the only developers who have used this code for many years.

We used this code for versions 6-9 of the CF server. The code worked fine, but with CF 10 and the removal of jRun as the main Java server, the code no longer functions as the class file is not part of the Tomcat server. Are there other people who are or are in a similar situation? If so, how did you influence the transition to CF 10 and continue authentication with Microsoft Active Directory?

In our specific business environment, LDAP is not configured for authentication, so authentication with LDAP is not an option for us, and LDAP management is beyond the scope of our small department (which is handled by a central IT specialist outside our sphere of influence). As for our local server (s), we are running Windows Server 2008 R2, IIS 7.5, JRE 1.7 64 bit and ColdFusion 10 SE 64 bit. If anyone has any ideas to share, I will be grateful for reading them.

NEXT NEXT CODES

<!--- Authenticates the user and outputs true on success and false on failure. ---> <CFFUNCTION NAME="authenticateUser" ACCESS="REMOTE" OUTPUT="yes" STATIC="yes" HINT="Authenticates the user."> <CFARGUMENT NAME="userid" TYPE="string" REQUIRED="true" /> <CFARGUMENT NAME="passwd" TYPE="string" REQUIRED="true" /> <CFARGUMENT NAME="domain" TYPE="string" REQUIRED="true" /> <CFTRY> <CFSCRIPT> ntauth = createObject("java", "jrun.security.NTAuth"); ntauth.init(arguments.domain); // authenticateUser throws an exception if it fails, // so we don't have anything specific here ntauth.authenticateUser(arguments.userid, arguments.passwd); auth = true; </CFSCRIPT> <CFCATCH> <CFSET auth = false> </CFCATCH> </CFTRY> <CFRETURN AUTH> </CFFUNCTION>
+6
source share
1 answer

cfldap can be used for authentication in Active Directory. There are probably better examples than this: http://www.sixfive.com.au/2005/01/cfldap-and-user-authentication-on-active-directory/

As pointed out in the comments, IIS can also authenticate against AD.

+2
source

Source: https://habr.com/ru/post/969408/

More articles:


All Articles