I'm having problems with the LDAP server that I use for authentication, and am looking at other schemes. I want the users to be able to use the same password that they use for their NT login. The server I'm on runs WebSite, and seems to have some difficulty handling NT authentication the way an IIS server would (ie, just put a permissions restriction on a page, then touch it, and let NT put up the authentication dialog box to the user). I had a brainstorm, but setting it up for a test would be complex, and I wanted to bounce it off all you genius folks first. There are other intranet sites in the organization that run IIS. What if I put a dummy page up on one of those. It would be a page that simply used JS to bouce back to a predefined page on my site (the ISS server might not be running CF, so I've got to keep it simple), but would have a persmissions restriction on it. A key requirement is not just that the user be authenticated, but that I know who he is. Some users will come through a proxy server, which strips out almost all of the usual CGI variables, including those that tell me who the user is. In my dialog with the user during login, I get enough information to know who he is, his NT domain and username, and the password that he typed in. What if I used CFHTTP to access that page on the other server? When the NT dialog box pops because I touch a restricted page, how is that going to look to my CF server, which did the CFHTTP? Any other ideas, just pass them along. The idiot LDAP server is refusing access (for no good reason) to about 1 additional user each week - the list of people getting upset is growing. tia, -reed ------------------------------------------------------------------------------ Archives: http://www.eGroups.com/list/cf-talk To Unsubscribe visit http://www.houseoffusion.com/index.cfm?sidebar=lists&body=lists/cf_talk or send a message to [EMAIL PROTECTED] with 'unsubscribe' in the body.
