On 06/06/05, Scott Barnes <[EMAIL PROTECTED]> wrote: > Its been too long since I've gotten my arms back deep in CFMX land So > if its a dumbass question, humour me.. > > I've been thinking of a Security Authentication system, whereby if a > user is within the Active Directory they basically can be interogated > to see whether or not they have access to an application. > > What I do want to know is how others implement Active Directory > Authentication? How do you also take onboard existing roles/groups > associated within AD aswell as add your own CF-Only based ones? (ie do > you create a bunch of roles that MAP to existing AD ones, seperating > them both? or do you inherit them within your application(s))
Hi Scott, we use AD authentication for our intranet. I basically use AD to authenticate the user first time they log in and grab there user details, etc and store them in the db with an associated UUID. I then store the UUID in a cookie and authenticate against that any time time they connect. Saves them from logging in for every session. If the session times out for any reason they'll be automatically authenticated without having to log in again. For any areas that require group membership info I grab them from AD on the fly. Hope this helps. -- Jason Sheedy www.jmpj.net --- You are currently subscribed to cfaussie as: [email protected] To unsubscribe send a blank email to [EMAIL PROTECTED] Aussie Macromedia Developers: http://lists.daemon.com.au/
