I am working on an intranet site. A portion of the site is going to be dedicated to a select few users. There is a third party service that we only want to allow access through this intranet page.

How can I validate users in the specified group?

How can I pass the credentials on to the 3rd party site, so that there isn't a second authentication window?

What is the best way to persist the authentication throughout the entire session?

Thanks,
kjak

I have similar problem. There is a list of user kept in a novell server. User use it to login to their own network/workstation. My website will be an Intranet one which doesn't require them to login again. So how can my web look at/link to those novell server (read-only) and validate user.

My questions are same as kjak: "How can I pass the credentials on to the 3rd party site, so that there isn't a second authentication window?"
and
"What is the best way to persist the authentication throughout the entire session?".

Anyone can help us, please...