Integrated Authentication in an Intranet

10 May 2005 10:49 PM

Bill Marcus

Being realitivly new to IIS can someone point me to some tutorials on how to
setup ASP or ColdFusion pages to read the username from a client's computer.
All clients will be:

* Conneting from inside the same Active Directory domain with constant
physical connections to the Domain Controller and IIS 6.0 server.
* Running either Win 2000 Professional or XP Profession SP1 / 2 and
Internet Explorer 5.0+

I'm trying to pull show dynamic information on an intranet page without
prompting for the user for their credentials. I.E. pass through based upon
the user's logon information cached from either the NTLM sign-on or
Kererbos.

Thanks!
Bill Marcus

11 May 2005 12:34 AM

Ken Schaefer

Hi

IIS is only aware of the client's username if the client chooses to send
something to IIS. This may be the credentials that the user is logged on as,
or it may be alternate, acceptable credentials that the user has supplied to
IIS. By default, IE will attempt to "auto logon" for sites in the local
Intranet security zone, and then you can get the user name via the
Request.ServerVariables collection (in ASP):

http://support.microsoft.com/?id=258063 (for IE info)

<%=Request.ServerVariables("Logon_User")%>

Cheers
Ken

--
Blog: www.adopenstatic.com/cs/blogs/ken/
Web: www.adopenstatic.com

Show quoteHide quote

"Bill Marcus" <bill.mar***@usnetworkinc.com> wrote in message
news:kSage.3287$fY4.2223@fe07.lga...
: Being realitivly new to IIS can someone point me to some tutorials on how
to
: setup ASP or ColdFusion pages to read the username from a client's
computer.
: All clients will be:
:
: * Conneting from inside the same Active Directory domain with constant
: physical connections to the Domain Controller and IIS 6.0 server.
: * Running either Win 2000 Professional or XP Profession SP1 / 2 and
: Internet Explorer 5.0+
:
: I'm trying to pull show dynamic information on an intranet page without
: prompting for the user for their credentials. I.E. pass through based upon
: the user's logon information cached from either the NTLM sign-on or
: Kererbos.
:
: Thanks!
: Bill Marcus
:
:

11 May 2005 6:12 PM

Bill Marcus

That makes more sense, even though it was an intranet site I was using an
FQDN to access it, throwing off the zones.

Thanks Ken!!

Show quoteHide quote

"Ken Schaefer" <kenREM***@THISadOpenStatic.com> wrote in message
news:%2382$yEcVFHA.3760@TK2MSFTNGP15.phx.gbl...
> Hi
>
> IIS is only aware of the client's username if the client chooses to send
> something to IIS. This may be the credentials that the user is logged on
> as,
> or it may be alternate, acceptable credentials that the user has supplied
> to
> IIS. By default, IE will attempt to "auto logon" for sites in the local
> Intranet security zone, and then you can get the user name via the
> Request.ServerVariables collection (in ASP):
>
> http://support.microsoft.com/?id=258063 (for IE info)
>
> <%=Request.ServerVariables("Logon_User")%>
>
> Cheers
> Ken
>
> --
> Blog: www.adopenstatic.com/cs/blogs/ken/
> Web: www.adopenstatic.com
>
>
> "Bill Marcus" <bill.mar***@usnetworkinc.com> wrote in message
> news:kSage.3287$fY4.2223@fe07.lga...
> : Being realitivly new to IIS can someone point me to some tutorials on
> how
> to
> : setup ASP or ColdFusion pages to read the username from a client's
> computer.
> : All clients will be:
> :
> : * Conneting from inside the same Active Directory domain with
> constant
> : physical connections to the Domain Controller and IIS 6.0 server.
> : * Running either Win 2000 Professional or XP Profession SP1 / 2 and
> : Internet Explorer 5.0+
> :
> : I'm trying to pull show dynamic information on an intranet page without
> : prompting for the user for their credentials. I.E. pass through based
> upon
> : the user's logon information cached from either the NTLM sign-on or
> : Kererbos.
> :
> : Thanks!
> : Bill Marcus
> :
> :
>
>