Skip to end of metadata
Go to start of metadata

You are viewing an old version of this page. View the current version.

Compare with Current View Page History

« Previous Version 10 Next »

This section describes how to enable the ASP.NET Identity feature in the configuration for Admin App. Admin App has historically supported only Active Directory authentication, which has proven problematic under some deployment scenarios.  Although existing users may wish to continue using AD for authentication, we wish to offer an alternative authentication method using web forms (ASP.NET Identity), which is expected to work seamlessly within different deployment environments, especially in cloud environments.  As Data Import uses ASP.NET Identity for similar authentication and used here in Admin App as a model.  This feature is a preview feature for v3.3 and disabled by default with a new installation of the Admin App. Based on usage and field reports, we intend to publish a production-ready version in Admin App v1.9 for ODS / API v3.5 and beyond. To enable this preview using ASP.NET Identity, Admin App has a feature flag which can be turned on.

Overview

Admin App users may choose to enable the ASP.NET Identity to provide web-form authentication. For more information on enabling the identity feature set for the Admin App, please see below:

Admin App Configuration

Admin App requires a single configuration change in the Web.config file in order to enable the ASP.NET Identity feature.

Step 1. Locate the Web.config file

To find the Web.config file, open IIS Manager and navigate to the AdminApp web application. Right-click and select the "Explore" option. This will open the installation directory of Admin App where you will find Web.config.


Step 2. Configure for ASP.NET Identity Login

  1. In Web.config, to enable ASP.NET Identity functionality inside Admin App, change the AspNetIdentityEnabled item to have a value of true as shown below in the AppSettings node in Web.config:
  2. Open IIS Manager and navigate to the AdminApp web application. Double click on the Authentication button under IIS Settings. Set "Anonymous Authentication" under Authentication settings to "Enabled".

ASP.NET Identity Login

After the above configuration change, the Identity feature is enabled on the Admin App.

  1. The login flow is initiated.
  2. Click on the Sign In button to go to the Login page. A new user can be created on first time setup by clicking on the 'Register as a new user' button on the bottom right. 

  3. Login with the created user. Following is the expected home page after logging in with the Identity feature enabled. Notice the newly created "test123@test.com" user in the top right corner.

Common Errors

If you encounter an issue where a redirect loop creates a too-long URL, as if the browser is repeatedly attempting and failing to arrive at the login screen, please check that the IIS Anonymous Authentication settings are properly set (as mentioned in Step 2 item 2). This issue is usually seen when the Identity feature's appSetting is enabled and the IIS Anonymous Authentication is disabled. 

Reporting Issues

If you encounter issues related to configuration of the Admin App, please create a ticket in the Ed-Fi Tracker system (in the EDFI project).




  • No labels