spontaneously made login

From: rich (anonymous_at_discussions.microsoft.com)
Date: 02/18/04 

Date: Wed, 18 Feb 2004 10:41:09 -0800

Has anyone ran into this problem: my company is planning on creating a reservation system on the WWW for classes they hold. The classes will be of two types; classes for emplyees and classes for nonemplyees. The emplyees are going to be easy because all employees have Win2000 logins (active directory) and I can just put these people in a group and drop them into the login page on the Enterprise Manager. Once there they can be given permissions to the tables that hold their class times, ect.

The nonemployees are the problem. When they hit the web page that faces outside of the enterprise, they do not have Win2000 logins! The only thing I can see to do is what I am calling a spontaneous login. The moment the user goes to the web site, they fill out an application for a login. The web page makes a login that is going to get placed in the active directory. Once in the AD, that new login gets added to the group that is accepted by the SQL Server. The reason for all this control is each person must have the ablity to manager their own class load on line and I have to audit their transactions. The only way to audit in SQL Server tha I can see is that everyone that hits the table must have login that I can pull in from AD.

Loading