User registration and authentication
Kentico provides various options that you can use when setting up registration and authentication on your websites.
MVC – available for live sites built using the MVC development model.
PORTAL ENGINE – available for live sites built using the Portal Engine development model.
ADMINISTRATION – available for the Kentico administration application.
ASP.NET Identity authentication MVC
For the MVC live site, Kentico provides an integration API based on ASP.NET Identity and the OWIN standard.
The site’s developers need to implement actions that allow visitors to sign in and out of the website with Kentico user accounts.
Forms authentication PORTAL ENGINE ADMINISTRATION
Forms authenticationstores user names and passwords in the database and requires users to register on your site before they can sign in.
Multi-factor authentication PORTAL ENGINE ADMINISTRATION
Multi-factor authentication uses a combination of forms authentication and one other security factor. For example, a passcode generated by a mobile application or sent by SMS, email, etc.
Windows Active Directory PORTAL ENGINE ADMINISTRATION
The Windows AD authentication gets user identity from the network credentials and automatically creates a corresponding user in the database, including the user’s roles (if they exist in the Kentico database). Users are not required to enter their user names and passwords when signing in to Kentico.
Third-party authentication services MVC PORTAL ENGINE
Third-party authentication services, such as Facebook, LinkedIn, or OpenID, can provide an alternative way for users to sign in and register on your site.
For more information, see:
- External authentication on MVC sites
- Configuring third-party authentication services (Portal Engine sites)
Custom external authentication PORTAL ENGINE ADMINISTRATION
If you want to retrieve user and role information from an external source, such as a custom database, you need to write a custom authentication provider. The provider must ensure the submitted user credentials are checked against an external user profile or authentication source. If the user is successfully authenticated, a corresponding user account is automatically created/updated in the Kentico database.
You can integrate a custom authentication provider with Kentico via system security events.