Question

6
Replies
818
Views
Ravi Ramineni (RaviR054)
ConEdison

ConEdison
US
RaviR054 Member since 2016 15 posts
ConEdison
Posted: May 18, 2016
Last activity: June 23, 2016
Posted: 18 May 2016 9:44 EDT
Last activity: 23 Jun 2016 15:44 EDT
Closed

IAC authentication for external application using .NET Forms Authentication

Hi all,

I'm working on a project to expose Pega gadget to an internet facing ASP.NET application.

About .NET application:

Internet facing

Uses ASP.NET Forms authentication

Stores user id and password in internal sql database in encrypted format.

How to handle the authentication mechanism for this use case? There is no central data store to verify credentials. Auth cookies generated by ASP.NET are not useful to verify authentication in Pega. The only way I can think of is sharing user name/password in a secure way between .NET, Pega applications and  verify them against internal sql data store.

Any other thoughts?

Also, what's the best  platform independent way to encrypt/decrypt username/password for transmitting over http ? Of course, it will be over https and POST.

Thanks!

Data Integration Security
Moderation Team has archived post, This thread is closed to future replies. Content and links will no longer be updated. If you have the same/similar Question, please write a new Question.