0 Hi,
Windows Authentication provider is the default authentication provider for ASP.NET applications. When a user using this authentication logs in to an application, the credentials are matched with the Windows domain through IIS.
There are 4 types of Windows
Authentication methods:
1)
Anonymous Authentication - IIS allows any user
2)
Basic Authentication - A windows username and password has to be sent across the network (in plain text format, hence not very secure).
3)
Digest Authentication - Same as Basic Authentication, but the credentials are
encrypted. Works only on IE 5 or above
4)
Integrated Windows Authentication - Relies on Kerberos technology, with strong credential encryption
Passport authentication identifies users via Microsoft Passport's single sign-on service. Microsoft Passport is meant to provide Internet users with a single identity that they can use to visit a wide variety of Web sites that require authentication. Information about the user is available to your application through a profile that is stored with Microsoft.
The advantages of Passport authentication are that the user doesn't have to remember separate user names and passwords for various Web sites and that the user can maintain his or her profile information in a single location. Passport authentication also provides access to other Microsoft services, such as Passport Express Purchase.
pls refer this url, how does it works
http://venkataspinterview.blogspot.in/2008/10/aspnet-interview-questions-on-passport.html
thanks.
If this post is useful then mark it as "Accepted Answer" 0 Hi Shubham,
Please refer the below links
http://www.devx.com/security/Article/17483
http://support.microsoft.com/kb/301240
Thanks
0 Hi,
Windows Authentication:
The Windows authentication provider relies upon IIS to perform the required authentication of a client. After IIS authenticates a client, it passes a security token to ASP.NET. ASP.NET constructs and attaches an object of the WindowsPrincipal Class to the application context based on the security token it receives from IIS.
Authenticates using Windows accounts, so you do not need to write any custom authentication code.
Passport Authentication:
The Passport authentication provider is a centralized authentication service provided by Microsoft that offers a single logon and core profile services for member sites. Passport is a forms-based authentication service. When member sites register with Passport, the Passport service grants a site-specific key. The Passport logon server uses this key to encrypt and decrypt the query strings passed between the member site and the Passport logon server.
<!-- Web.config file -->
<system.web>
<authentication mode="Passport" />
</system.web>
Supports single sign-in across multiple domains.