Ben, In Windows 2003 days, you definitely did not need CALs if all access was unauthenticated at the Windows level.
Cheers Ken -----Original Message----- From: Ben Scott [mailto:[EMAIL PROTECTED] Sent: Saturday, 17 May 2008 5:16 AM To: NT System Admin Issues Subject: Re: Client licenses for web apps (was: AD in the DMZ) On Fri, May 16, 2008 at 10:19 AM, Michael B. Smith <[EMAIL PROTECTED]> wrote: > Thanks for that update. That's a change, but you are correct. The Windows 2003 EULA has similar wording, although it's not quite as clear: "... you must acquire a Windows CAL for each individual person ("User") or Device that accesses or uses the Server Software, whether directly or through a Multiplexing Service ... you do not need to acquire a Windows CAL for any User or Device that accesses the Server Software solely through the Internet and is not authenticated or otherwise individually distinguished by the Server Software or a Multiplexing Service..." http://www.microsoft.com/windowsserver2003/eulas/default.mspx The "and is not authenticated or individually distinguished" part makes me think you need a CAL (or ECL) for every user who has an account, regardless of how you do your authentication. The Windows 2000 EULA is much less clear: "A CAL is required for each Device that is used by an 'Authenticated User' or that uses 'Windows 2000 Server Services' regardless of what software you use." It goes on to define "Windows 2000 Server Services", and does not list IIS. This leads me to believe that if you roll-your-own web authentication system and run it on Windows 2000, you don't need CALs. But Windows 2000 is fast approaching end-of-life. > Therefore, your internet facing webservers should all be running Web > Edition, is the message I read. Certainly, that's the most cost-effective approach. This would rule out the use of Active Directory for authentication of web users (without needing a client license for each), right? Because Web Server Edition doesn't support AD, right? -- Ben ~ Upgrade to Next Generation Antispam/Antivirus with Ninja! ~ ~ <http://www.sunbelt-software.com/SunbeltMessagingNinja.cfm> ~
