'Run As' is one option.  But you should be able to do this just by 
enabling both NT and Basic authentication in your IIS config for the 
restricted pages.  Then when restricted pages are accessed, the browser 
will first attempt to connect using the logged-on NT credentials - if 
these are not sufficient then the browser will pop-up a login box and the 
admins can enter their logon details and proceed.

HTH
Phil
>--------------------------------
> RunAs is a service provided by Windows 2000 and Windows XP. Simply hold 
shift while you right-click a short cut or an executable and a "Run As" 
menu item appears. The dialog that follows allows you to provide a 
different username and password than the currently logged on user.

Suppose you run IExplore.exe through Run As, you are able to enter an 
admin 
account, password and domain. Then IE will RUN AS if the admin had 
actually 
logged on and started the browser. So when you try to authenticate the 
user 
in your Intranet, the admin account is used / returned.

This method is (AFAIK) not programmatically accessible, but it might come 
in handy when you need Admin access without logging off.


HtH


Imar





At 01:31 PM 8/30/2002 -0600, you wrote:
>I do not know anything about the "RunAs" feature.  Where can I find some
>info on it?  How is it used?  Is it for ASP, or all types of
>applications including those with .exe extensions?
>
>Thanks,
>
>Chris Thompson
>
>-+-+-+-+-+-+-+-+-+-+-+-
>cthompson@n...
>435-458-2396
>-+-+-+-+-+-+-+-+-+-+-+-
>
>
>
>-----Original Message-----
>From: Imar Spaanjaars [mailto:Imar@S...]
>Sent: Friday, August 30, 2002 10:16 AM
>To: ASP Web HowTo
>Subject: [asp_web_howto] Re: Active Directory Validation
>
>Hi Chris,
>
>I guess there may be ADSI methods to do what you want, but I am not 100%
>
>sure. One place to look for this may be www.15seconds.com
>
>Are you aware of the RunAs feature in Windows 2000 and above?? This will
>
>let you run another process in a certain user's context while the whole
>machine is still logged on as someone else. I use that feature a lot
>when I
>need access to stuff my regular user account does not have access to.
>
>Let me know if you need some more help on this.
>
>Imar
>
>
>At 09:04 AM 8/30/2002 -0600, you wrote:
> >I have what I hope to be a simple question.  We have active directory
> >here on site.  We have an intranet site that has certain portions that
> >need to be secure and only let a few people access the pages.  I was
> >going to use straight NT authentication, but we do have admins around
> >the plant that will occasionally have to access these pages from
> >machines where a very limited user is logged on.  We do not want to
>have
> >to log off the machine and log on as the admin as these machines are
> >production critical and it would cause great grief to switch users
>every
> >time.  I want to have a login screen that the user can log into and it
> >will validate against active directory to make sure the user login in
>is
> >who they say they are and so I do not have to maintain a separate
> >username password database.  In this way, when the windows network
> >password changes, the intranet password changes also so the user does
> >not have to remember another password.  I just need to know if it is
> >possible to validate a username and password against the Active
> >directory and just get a true or false back saying it was valid or not.
> >I am under a crunch here and my window is shrinking to implement this.
> >Any help would be greatly appreciated.
> >
> >Thanks,
> >
> >Chris Thompson
> >
> >-+-+-+-+-+-+-+-+-+-+-+-
> >cthompson@n...
> >435-458-2396
> >-+-+-+-+-+-+-+-+-+-+-+-