Re: User NT Authentication

From: Guy Peay (payrules_at_aol.com)
Date: 07/30/03

Next message: Alessandro Perilli: "Re: RPC/DCOM Worm Released"
Previous message: Keith W. McCammon: "Re: Passing credentials"
In reply to: Tom Kaminski [MVP]: "Re: User NT Authentication"
Next in thread: Tom Kaminski [MVP]: "Re: User NT Authentication"
Reply: Tom Kaminski [MVP]: "Re: User NT Authentication"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

Date: Wed, 30 Jul 2003 06:25:55 -0700

Thanks for the help! However, wouldn't what you suggest
force the user to get a NT Challenge Response prompt,
asking them for a User Name, Password and Domain? If so, I
would like to avoid that by authenticating the user
seamlessly through scripting. We are using this site in a
intranet environment but certain security guideline need
to be maintain. Can you give some insight on how to do
that?

Thanks again!
Guy

>-----Original Message-----
>"Guy Peay" <payrules@aol.com> wrote in message
>news:407001c355ff$a3d01390$a001280a@phx.gbl...
>> Hello
>>
>> I am an ASP developer working on NT 4.0 platform with
IIS
>> 4.0 server. I am trying to do security from the brower
by
>> calling the "GetTokenInformation" to get the NT
>> authentication token to ensure that the user has logged
>> in. My question is is this possible through scripting
>> (javascript/vbscript/jscript)? We tried reading the
>> environment variable on the server
>> (request.servervariable) but with our server configured
>> to "allow anonymous access" it returned an empty string.
>
>There's no need to do any of that. Disallow anonymous
access and use
>Windows Integrated authentication if you're on an
intranet/common NT domain
>or Basic authentication otherwise.
>
>HOW TO: Configure User and Group Access on an Intranet in
Windows 2000 or
>Windows NT 4.0
>http://support.microsoft.com/?id=325358
>
>--
>Tom Kaminski IIS MVP
>http://www.iistoolshed.com/ - tools, scripts, and
utilities for running IIS
>http://mvp.support.microsoft.com/
>http://www.microsoft.com/windowsserver2003/community/cente
rs/iis/
>
>
>
>.
>

Next message: Alessandro Perilli: "Re: RPC/DCOM Worm Released"
Previous message: Keith W. McCammon: "Re: Passing credentials"
In reply to: Tom Kaminski [MVP]: "Re: User NT Authentication"
Next in thread: Tom Kaminski [MVP]: "Re: User NT Authentication"
Reply: Tom Kaminski [MVP]: "Re: User NT Authentication"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

Relevant Pages

RE: Beginners Questions
... We do use Windows form on the presentation layer which is on ... terminal server and call web services on the business logic side. ... of using "proxy" authentication on SQL Server. ... > I have written an app with a Windows Forms UI that is deployed to clients ...
(microsoft.public.dotnet.distributed_apps)
Re: Need help configuring Wireless Connection profile
... and I can only use the intel OR windows utility, not both at the same time. ... Windows authentication for all users,4129,LRG\ryanv,4149,Wireless WPA2 ... SMALL BUSINESS SERVER: ... STEP #1 Install Certificate Services ...
(microsoft.public.windowsxp.general)
Re: EAP-TLS with windows CE
... The AP was sending out an Identity Request every second, ... request to the identification server. ... When the server asks the Windows CE device to identify itself, ... I could easily steal your authentication information. ...
(microsoft.public.windowsce.platbuilder)
Re: server authentication & ASP authentication
... on to the client workstation with an authorized Windows account. ... SQL Server with Windows authentication. ...
(microsoft.public.sqlserver.security)
Re: ADFS Development Issues
... site to be automatically authenticated by our windows application so ... based on redirects and possibly uses forms-based authentication to collect ... web service proxies don't handle this type of thing ... the server based on how it needs to work. ...
(microsoft.public.windows.server.active_directory)