Hi People, how are we today?

I'm finding it difficult finding any resources regarding my question. Here's what I want ot do exactly.

I have a website that's run on an intranet, the site requires a username and password.

What I would like to do is save the users having to log on twice for both the NT/2K Network and the website.

I'd like, using ASP, to capture that users User login and IP address and use these to validate the user.

I imagine using an access DB along the way which holds usernames and passwords for teh site would be used to cross check the user login and ip address.

Can anyone guide me here?

Cheers,

Blaise.

If you turn off anonymous acces to your site (or just that page) then the browser will send the user credentials to the server without the user having to do anything. You can get the domain\username through Request.ServerVariables("LOGON_USER"). The client's IP address is available in Request.ServerVariables("REMOTE_ADDR").

You don't say exactly why you need this info. Do you just want to restrict access to certain users? If so, one way would be to create a new NT Group of the users allowed access. You can use the domain\username to to check if the user is a member of that NT Group via ADSI (see http://www.15seconds.com/issue/020130.htm for examples). You should try to avoid having a separate user db for you site if possible. In an intranet scenario you should be able to handle things like this using just windows.

hth
Phil