> The product owner's thought process is "What if they leave their computer > open someone could just sign off on whatever" This is why we did the > original E-Sign methodology. > > What were suggesting to the PO, is exactly what you're saying, a big button > that records the username and a time stamp. I just want to be ready with an > alternative or a very valid reason why we need to use the big button.
Well, you might still be able to just use NTLM for this - in many Windows domains that use Kerberos, NTLM is also enabled. But it may be disabled. I think that you'd be better off not having users present their passwords over the network in a Kerberos environment, and perhaps just making sure that people follow standard procedures for workstation security. Dave Watts, CTO, Fig Leaf Software 1-202-527-9569 http://www.figleaf.com/ http://training.figleaf.com/ Fig Leaf Software is a Veteran-Owned Small Business (VOSB) on GSA Schedule, and provides the highest caliber vendor-authorized instruction at our training centers, online, or onsite. ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~| Order the Adobe Coldfusion Anthology now! http://www.amazon.com/Adobe-Coldfusion-Anthology/dp/1430272155/?tag=houseoffusion Archive: http://www.houseoffusion.com/groups/cf-talk/message.cfm/messageid:359023 Subscription: http://www.houseoffusion.com/groups/cf-talk/subscribe.cfm Unsubscribe: http://www.houseoffusion.com/groups/cf-talk/unsubscribe.cfm