Has anyone successfully created an ASP.NET Core 2.0 app using Windows Authentication in IIS to query an LDAP source (in-house AD instance) and placed the group membership into Roles as Claims to properly fuel the [Authorize] annotation? The documentation of the middleware does not directly address how to do this or is dated amidst some releases of System.DirectoryServices 4.5preview for aspnetcore. I know that .NET Framework gives us native access to the group membership via System.DirectoryService. My question is whether you could try to use a filter instead of middleware and query LDAP for the groups and store as claims in a cookie. Is there a simpler way to do this? I have a query to our LDAP source working in Novell.Directory.Ldap standard that I can use where appropriate to iterate.
Thanks in advance for your advice.