Ken, I've read that there's another constraint on using Integrated Windows Authentication - it won't work through a proxy server - or is that the same as the "pass-through" you mention? Do such constraints completely rule out use on the public Internet - where the path between the user and the site is unpredictable - or is there a way to make it work? Yes, users would all be using IE and would all be pre-registered as authorized users in Active Directory.
TIA -----Original Message----- From: Ken Schaefer [mailto:ken@;adOpenStatic.com] Sent: Tuesday, October 29, 2002 8:57 PM To: ActiveServerPages Subject: Re: Is it possible to get a user's Windows login username via an ASP page? argh. You need to *deny* anonymous authentication on the server so that the user is forced to authenticate themselves. You can use Basic, or Integrated Windows Authentication (NTCR). Note that the latter is supported only by IE, and that you can't use it in a pass-through scenario (eg you then want to use those credentials to authenticate against an SQL Server on another box, unless you also have setup Kerboros and delegation). Couple of comments: NTFS is not required (but is good practise in any case) I don't know what the line below "the browser doesn't receive the user's credentials" actually means in practical terms, I think Andrew meant "the server". Cheers Ken ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ From: "Andrew Haslett" <[EMAIL PROTECTED]> Subject: RE: Is it possible to get a user's Windows login username via an ASP page? : NTFS? : : I think it's Integrated Authentication. Otherwise the browser doesn't : receive the user's credentials. : : Cheers, : Andrew : : -----Original Message----- : From: Bleier, Brenda G (SAIC) [mailto:BleierBG@;BP.COM] : Sent: Wednesday, 30 October 2002 4:23 AM : To: ActiveServerPages : Subject: RE: Is it possible to get a user's Windows login username via : an ASP page? : : : SESSION("LOGINID") = : UCASE(MID(Request.ServerVariables("LOGON_USER"),INSTR(Request.ServerVari able : s("LOGON_USER"),"\")+1)) : Make sure you NTFS turned on too or it won't work! : : -----Original Message----- : From: Steve Henry [mailto:steve_isis@;btinternet.com] : Sent: Tuesday, October 29, 2002 10:53 AM : To: ActiveServerPages : Subject: Is it possible to get a user's Windows login username via an : ASP page? : : : Here's the deal: : Developing an intranet, we've got a noticeboard section. : Everyone that posts a message needs to be identified. : We don't want to simply provide a drop-down of known users on the message : posting page, as it's wide open to mischievious users who want to post : messages as someone else. : : What we want to do is get the NT logon username, and associate that to the : posted message automatically. : : We can get the IP address using the server variables, but that's pretty : meaningless. Is there any crafty way to get the actual login from the : client? : : Incidentally, we almost had it cracked with DOS - if anyone knows how to : populate a DOS environment variable with the contents of a one-line txt : file, we could do it without any mindbending ASP. : : Anyone able to help? : : --- : You are currently subscribed to activeserverpages as: [EMAIL PROTECTED] : To unsubscribe send a blank email to : %%email.unsub%% : : --- : You are currently subscribed to activeserverpages as: : [EMAIL PROTECTED] : To unsubscribe send a blank email to : %%email.unsub%% : : : : --- : You are currently subscribed to activeserverpages as: [EMAIL PROTECTED] : To unsubscribe send a blank email to %%email.unsub%% --- You are currently subscribed to activeserverpages as: [EMAIL PROTECTED] To unsubscribe send a blank email to %%email.unsub%% --- You are currently subscribed to activeserverpages as: [email protected] To unsubscribe send a blank email to [EMAIL PROTECTED]
