View Single Post
  #5 (permalink)  
Old June 2nd, 2004, 08:55 AM
Hal Levy Hal Levy is offline
Friend of Wrox
Points: 3,489, Level: 24
Points: 3,489, Level: 24 Points: 3,489, Level: 24 Points: 3,489, Level: 24
Activity: 0%
Activity: 0% Activity: 0% Activity: 0%
 
Join Date: Jun 2003
Location: Central, NJ, USA.
Posts: 1,102
Thanks: 0
Thanked 2 Times in 2 Posts
Default

Yes, it's clear what you want to do..

Turn off windows authentication- This means that you are using the logged in user the the client machine as the user. it does not provide for someone else logging into a site from that machine. Since you can not trust that the person at the keyboard is the person who is visiting the site, you can not use Windows Authentication.

AFter you do that, you need to look into the "Forms" authentication method and how that works- and how you can hook it into validating against domain credentials.



Hal Levy
Web Developer, PDI Inc.

NOT a Wiley/Wrox Employee
Reply With Quote