Hello,
I have an application with its own database and authentication scheme logion (form authentication)
now appeared a need for integration with Active Directory.
I did some research on the subject and saw that first have to store the GUID of the User's account from AD. I need to do is sync between AD and my application.
I saw that I need to use a CLR library within sql server and a sql job to periodically sync accounts between AD and the user database.
also i could use a group, which the clr library can look for, pull in all the members, and then automatically sync - that is update/create/deactive accounts according to their ownership of the AD group. Then the admin will only need to create the user in AD, give them access to the group, and wait for the job to kick off. (or go kick it off manually)
but I do not know how to solve this problem. I would like some guidance on this subject, where to start, if there is already a tutorial where I should start.
Note:i'm using the database of asp.net (membership) along with my database to work with users and provide them with the roles, permissions, among others.
Submit an article or tip