My app lives in Windows Server and the company uses Active Directory; I had made authentication for this and got it to work. The problem is now there must be a manual login scheme. Looking at the choices out there, the single user authentication logic that is built in to MVC looks to be best?
what the user will see:
Login using your company AD credentials:
username:
password:
[GO] -> gets a token from the AD server they control
Login using Alternate credentials:
username:
password:
[GO] -> logs in from the local system created using the 'Register' feature that I maintain.
Is this a common approach? just force these 2 mechanisms together? Once login happens there must be at least 2 levels of privilege, admin or regular. There will be a person who can maintain the user list
but how to do this? how to mix the single user authentication & AD ? if there are just 2 logins does the system even care? it just gets one token or it gets another?