Re: Detection of access to IIS
From: Chris Harsch (charsch_at_griftech.com)
Date: 07/14/03
- Next message: Jeffry Evans: "OWA SSL"
- Previous message: Jonathan Maltz [MS-MVP]: "Re: pop ups"
- In reply to: Karl Levinson [x y] mvp: "Re: Detection of access to IIS"
- Next in thread: Herb Martin: "Re: Detection of access to IIS"
- Reply: Herb Martin: "Re: Detection of access to IIS"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Date: 14 Jul 2003 11:17:11 -0700
Yes, I have some third party authentication I wish to use, and the
attempt is to make the authentication transparent to the user once the
user downloads a small plugin for their browser. The idea (at least
initially) is to create some program/plugin for IIS that intercepts
the fact that someone is attempting to use a secure connection on the
server, and then to verify themselves against the authentication
process I have written, and then be allowed access to content on the
server.
"Karl Levinson [x y] mvp" <levinson_k@despammed.com> wrote in message news:<OYtQy6USDHA.1556@TK2MSFTNGP10.phx.gbl>...
> Here's what I think may be the easiest and most typical solution: set up a
> web site on the server using HTTPS and TCP port 443, and put just one file
> there containing a redirect to where ever you want the user to be redirected
> to. This is far easier than programming an ASAPI filter for most people.
> There are a number of ways to do redirects, such as META REFRESH or a
> javascript window.location.href = command.
>
> One potential drawback though is that you would want to have an SSL
> certificate set up on your server to permit this to happen. SSL
> certificates can be had for free, but it's often easier if you pay a fee
> each year for one. Check out www.freessl.com or www.entrust.net for places
> to get certs if you need one. More info on ssl certs is also at
> www.iisfaq.com/ssl
>
>
> "Chris Harsch" <charsch@griftech.com> wrote in message
> news:4a47a7ef.0307111248.48982a88@posting.google.com...
> > I am starting a project and I am not quite sure where to begin. What
> > I am attempting to do is to run a service/program of some kind on
> > windows IIS that will detect when someone is attempting to use https
> > to connect to the server. When they connect to the server the
> > service/program will then attempt to connect to the user on a
> > different port for further authentication.
> >
> > Where would I begin to gather information on how to detect when
> > someone is attempting to connect via https protocol, or any other
> > attempt at connection such as http, or ftp for example.
> >
> > Christopher R. Harsch
- Next message: Jeffry Evans: "OWA SSL"
- Previous message: Jonathan Maltz [MS-MVP]: "Re: pop ups"
- In reply to: Karl Levinson [x y] mvp: "Re: Detection of access to IIS"
- Next in thread: Herb Martin: "Re: Detection of access to IIS"
- Reply: Herb Martin: "Re: Detection of access to IIS"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Relevant Pages
|
