|
 |
asptoday_discuss thread: NT Authentication to .asp page...
Message #1 by "Cathryn Bennett" <cbennett@n...> on Thu, 13 Dec 2001 17:53:08
|
|
I have created an app and I would like to be able to us NT Authentication
with it. Currently, you have to type your user name into the app to get
your options, I'd like to be able to pull that from the login, <i.e., if
the user is currently logged into the network (using the Intranet), then
it will pull up their options, if they log in from outside (over the
Internet), then once logged into the page, I'd like it to show their
options rather rther than having to enter their user name into the page
again (basically logging in twice>. I can do this using basic
authentication, but it has the same effect of having to log in twice.
Can anyone point me to a resource or offer assistance?
Thanks,
Cathryn Bennett
cbennett@n...
Message #2 by =?iso-8859-1?Q?Mikael_=D6stberg?= <Mikael.Ostberg@i...> on Thu, 13 Dec 2001 18:54:03 +0100
|
|
Let me see if I got this right...
You only want them to use the NT login dialog, right?
Use the Request.ServerVariables("auth_user")
And you get the NT login name.
::m
-----Original Message-----
From: Cathryn Bennett [mailto:cbennett@n...]
Sent: den 13 december 2001 18:53
To: ASPToday Discuss
Subject: [asptoday_discuss] NT Authentication to .asp page...
I have created an app and I would like to be able to us NT Authentication
with it. Currently, you have to type your user name into the app to get
your options, I'd like to be able to pull that from the login, <i.e., if
the user is currently logged into the network (using the Intranet), then
it will pull up their options, if they log in from outside (over the
Internet), then once logged into the page, I'd like it to show their
options rather rther than having to enter their user name into the page
again (basically logging in twice>. I can do this using basic
authentication, but it has the same effect of having to log in twice.
Can anyone point me to a resource or offer assistance?
Thanks,
Cathryn Bennett
cbennett@n...
Message #3 by "David Robbins" <drobbins@t...> on Tue, 18 Dec 2001 15:07:01
|
|
> I have created an app and I would like to be able to us NT
Authentication
> with it. Currently, you have to type your user name into the app to get
> your options, I'd like to be able to pull that from the login, <i.e., if
> the user is currently logged into the network (using the Intranet), then
> it will pull up their options, if they log in from outside (over the
> Internet), then once logged into the page, I'd like it to show their
> options rather rther than having to enter their user name into the page
> again (basically logging in twice>. I can do this using basic
> authentication, but it has the same effect of having to log in twice.
>
> Can anyone point me to a resource or offer assistance?
>
> Thanks,
>
> Cathryn Bennett
> cbennett@n...
Cathryn
If you are allowing access to your intranet from the outside, you will
want to use NTLM as the authentication method on IIS. Basic
Authentication passes your id's and passwords in clear text, so anyone
doing a packet trace will be able to read the contents of the packets, and
the passwords.
With NTML, you can directly use the existing ACL's from NTFS for share and
file protection. The id's and passwords are encrypted with MS 128 bit
encryption key, and much safer than Basic Auth. There's a good discussion
of NTLM and IIS on www.asptoday.com.
|
|
|
View Cart
