A Look at Cookie Authentication in Katana

Katana provides cookie middleware to serialize user principal into an encrypted cookie and the cookie is used to validate the authenticated user in subsequent request. This post will take a look at Katana’s cookie authentication implementation and see the machine key’s role in this procedure. The sample used in this post is one ASP.NET MVC5…

1

Kerberos Constrained Delegation with ASP.NET

Some security issue may involve kerberos delegation, I have to capture network monitor to check the trace. Therefore, I am going to document the step to configure constrained kerberos delegation with ASP.NET application. The demo environment is in a single contoso.com domain. There are four computers(2012R2): dc: the domain controller for contoso.com dev: the development…

0