Re: Auto-authenticate Domain Users through ASP?

From: Alek Davis (alek.davisATintel.com)
Date: 02/07/03

• Next message: Atrax _: "Re: IIS Application / CGI security"
• Previous message: Alek Davis: "Re: Reading encrypted credentials from the registry"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

---

From: "Alek Davis" <alek.davisATintel.com>
Date: Thu, 6 Feb 2003 15:18:57 -0800

Hi Daniel,

I do not think you can do what you want. To get the NT username, you must
turn off Anonymous Access on your Web site (either manually using IIS Admin
Console or programmatically); otherwise, all users will be anonymous
irrespective of whether they are logged onto domain or not. If you do this,
then the users who are not logged onto the domain (or coming from Netscape
browser), will be presented the ugly login box (Basic authentication). They
can use the Basic authentication dialog box to login, but it does not seem
like what you want. It would be really nice if you could programmatically
detect whether the user is a domain user or not and let your Web application
to behave accordingly from the ASP or ASPX logic, but I do not think it is
possible.

-- Alek

"Daniel Hartley" <dhartley@data2you.net> wrote in message
news:OUjNAhLyCHA.2668@TK2MSFTNGP12...
> Hi,
> I'm looking for a way to authenticate users to a site. Basically, I
> want to check the NT username they are currently logged in as (without
> prompting them to login) and see if it matches an authorized user for the
> domain. If it doesn't, I would then prompt them for login information.
> I've looked at several articles but none seem to do what I want. Can this
> even be done? Is there a way to see what the username is they are
currently
> logged in as without prompting them for login information first?
> The more I think about it, the more it seems that I shouldn't be able
to
> do what I'm trying to do, which is probably why I can't find any
information
> on how to do it.
>
> --
> Dan
>
>
> ---
> Outgoing mail is certified Virus Free.
> Checked by AVG anti-virus system (http://www.grisoft.com).
> Version: 6.0.449 / Virus Database: 251 - Release Date: 1/27/2003
>
>

---

• Next message: Atrax _: "Re: IIS Application / CGI security"
• Previous message: Alek Davis: "Re: Reading encrypted credentials from the registry"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

---

Relevant Pages Re: NT Login ... If your web site allows anonymous access, there will be no Login ... "Phil" wrote in message ... (microsoft.public.dotnet.framework.aspnet) Re: application can access by login in web site ... username and password (login) ... this username and password is not for proxy, ... the web site. ... http://mindprod.com Java custom programming, consulting and coaching. ... (comp.lang.java.help) Re: Forms Authentication Question ... have validated the user's username and password against ... >You need to set the security cookie using either ... >> The IIS Security is set to Anonymous Access. ... >> redirected to the login page specified in the URL ... (microsoft.public.dotnet.framework.aspnet.security) How to create a login page on web site ... Within the web site, I created a web page with a login (username, ... files for the authorized users. ... (microsoft.public.frontpage.programming) Re: IIS root ... i want to allowed Anonymous access to the default web site. ... check the anonymouse access box under security but it still ask for username ... It prompts for username and password? ... (microsoft.public.inetserver.iis.security)

---

We are proud to have Web Hosting and Rack Housing from 9 Net Avenue Deutschland.
(10)