Scotty, Taco,
Yep you need IIS "anonymous" turned off. In my case we have NT
authentication on the directory where our files live, for our
6 known domains who browse the site.
If they don't match - **game show wrong answer noise**
If they match - **money shot groan**
Then I run a "log" query at the top of my "contoller.cfm" page for every
user who browses the site. Eg:
<cfquery name="insertLog" DATASOURCE="#Application.DSN#">
INSERT INTO #Application.tablePrefix#TABLELOG (PAGEID, STORYID,
DATE, IPADDRESS, USERID )
VALUES ('#URL.page_id#', #URL.story_id#, GETDATE(),
'#CGI.REMOTE_ADDR#', '#CGI.REMOTE_USER#')
</cfquery>
Being an INTRANET I'm happy because the directory & NT Authentication is
doing the dirty work for me so all I care is who's viewing what, when etc.
Is that what you're after??
-----Original Message-----
From: Scott Barnes [mailto:[EMAIL PROTECTED]
Sent: Monday, 17 March 2003 10:34 AM
To: CFAussie Mailing List
Subject: [cfaussie] Re: Intranet Authentication Via Username
In truth, i think this relies on IIS anonymous access turned off in order to
work? I don't have IIS to double check this, but can anyone else shed some
light onto this theory of mine :D
Scott
"Taco Fleur" <[EMAIL PROTECTED]> wrote in message
news:[EMAIL PROTECTED]
>
> OK, got to work today, had a go at it with cgi.remote_user but can't
> find any docos on the correct permissions needed for it to return the
> required info.
>
> Anyone any ides on this?
>
> TIA
> Taco
>
> > Taco all you need to do is retrieve the CGI.AUTH_USER variable
> > (could be
=
> > CGI.REMOTE_USER I'll have to double check that), and in a domain =
> > environment like Active Directory it will always be populated with
> > the = user's domain user account.....e.g "domain\taco"
>
>
---
You are currently subscribed to cfaussie as: [EMAIL PROTECTED] To
unsubscribe send a blank email to [EMAIL PROTECTED]
MX Downunder AsiaPac DevCon - http://mxdu.com/
**********************************************************************"
This correspondence is for the named person's use only. It may
contain confidential or legally privileged information or both. "
No confidentiality or privilege is waived or lost by any "
mistransmission. If you receive this correspondence in error, please
immediately delete it from your system and notify the sender. You
must not disclose, copy or rely on any part of this correspondence
if you are not the intended recipient.
Any views expressed in this message are those of the individual sender,
except where the sender expressly, and with authority, states them to
be the views of Vodafone.
This email has been checked for viruses.
**********************************************************************
---
You are currently subscribed to cfaussie as: [EMAIL PROTECTED]
To unsubscribe send a blank email to [EMAIL PROTECTED]
MX Downunder AsiaPac DevCon - http://mxdu.com/