Passport authentication is a Microsoft-centralized authentication service. Passport provides a way to authenticate users coming across all the sites that participate in the initiative. Users need to do a single logon and, if successfully authenticated, they can then
ASP.NET provides the PassportAuthenticationModule to set up authentication for Web applications hosted by Passport member sites.
In a certain sense, the Passport authentication mode is the Web-wide
The .NET Passport SDK is required to implement the .NET Passport single sign-in and other profile-
ASP.NET has built-in support for Passport, which saves you from having to interact with the Passport SDK to activate the authentication service and then implement single sign-in.
In the .NET Framework, the PassportAuthenticationModule class carries out the Passport authentication. Passport authentication is enabled by the following text in the application's configuration file:
<configuration> <system.web> <authentication mode="Passport" /> </system.web> </configuration>
When an HTTP request hits a Passport-enabled Web site, the HTTP module verifies whether or not the request contains a valid Passport ticket. If not, the Web server returns the status code 302 and redirects the client to the Passport Logon service. The query string contains properly encrypted information about the original request. The client issues a
request to the logon server and
The logon server utilizes the form information to authenticate the user and, if successful, creates a Passport ticket. Next, the user is redirected to the original URL and the ticket is passed, encrypted, in the query string. Finally, the browser
Passport utilizes the Triple DES encryption algorithm. Each member site receives its own encryption key upon registration. In ASP.NET, an identity recognized by Passport is represented by a
object. The class contains ad hoc
The Passport SDK version 2.1 can be downloaded from the Microsoft Web site at
. Older versions are supported but not recommended. Note that Windows XP supports only Passport 2.0 and