ASP pages with NT security

[Shilohcity]

Hi there

I have a company intranet which is beginning to use a lot of password protected pages for different things. I have setup an asp page which handles all of the password requests through linking to a database. I am pretty much replicating all of the information that we already have for NT authentication however and I was wondering if anybody knew of a way to link the two together. I guess I am looking for some kind of component that can hand off authentication requests to the user manager in NT.

Any and all suggestions most welcome and appreciated.

Thanks
Justin. X-) "Creativity is the ability to introduce order into the randomness of nature." Eric Hoffer

Visit me at

http://www.dfodesign.co.nz

 

[iowtech]

Why don't you disable anonymous access to your site. That way, if the user is already logged into your domain, they won't have to log on again, and if they are not they will have to enter their domain login and password and be validated by the domain.

To do this, In the IIS MMC, right-click your site, select directory security, edit anoymous access and authentication, only leave check Windows NT Challange Response.

Use request.ServerVariables("LOGON_USER&quot to retrieve the users login.

Downside is that every user requires an NT CAL but I guess this must be the case anywayif these are Intranet users.

 

[SauerC]

http://www.pstruh.cz

He sells (at an excellent price in my opinion) an ActiveX UserManager that will do exactly what you are asking.

We use it all the time here. I've even written a webpage for my department so that nt account passwords can be changed on any platform.

$180 for a site license is more than worth it.

-Christian

 

[Shilohcity]

Thanks for the suggestions the ActiveX component looks pretty close to what I was after but it also contains heaps of stuff that while useful I dont really need. We are already using a range of NT security over the whole site as users obtain their email from the site but what I am after is more specific security for specific parts of the site. I was kind of hoping there may have been a simple way to set permissions on directories, much as you do with NT security and then have the intranet work from this information. I will take a closer look at the ActiveX UserManager though cause it looks pretty cool.

Thanks again

Justin. X-) "Creativity is the ability to introduce order into the randomness of nature." Eric Hoffer

Visit me at

http://www.dfodesign.co.nz

 

[Kinl]

I use NT authentication. It seems to work just fine w/ me.
But ... the other option is good as well.

-shorty

 

[iowtech]

As long as your virtual directory is on an NTFS volume, you can set permissions on directories and even files, which will apply whether the file is being accessed through a network share or as an ASP/HTML on your intranet.

Just use the security tab on whatever file or directory you want to protect and give the level of access you want, by group or by user. If the user hasn't got permissions, they will be prompted to log in with NT credentials that have permission, or be shown an 'access denied' page.

The ActiveX User Manager control sounds good and would be great for administering users from and ASP, but I don't think its what you need to grant/deny access to your pages.