Tek-Tips is the largest IT community on the Internet today!

Members share and learn making Tek-Tips Forums the best source of peer-reviewed technical information on the Internet!

Register Log in
  • Congratulations gkittelson on being selected by the Tek-Tips community for having the most helpful posts in the forums last week. Way to Go!

NT Authentication 1

Status
Not open for further replies.
CatManDave

CatManDave

MIS
Nov 29, 2001
72
US
I have a quick question. Is there a way to connect to the NT user database and pull those userids and passwords into SQL or Access?

WHY?
I work for a cardiology group and there will be many occassions where doctors will be using my Intranet outside of their offices. In other words, they may be using the Intranet on a PC in an area of the hospital that is logged in as someone else and I want to be able to use NT security to give or deny access to certain pages by forcing a login.

I want to avoid creating a user database in SQL and force people to remember yet another password.

Thanks in advance,
Dave
 
Sort by date Sort by votes
I'm not an administrator, but I would imagine their is a way to export the username/password lists. Would you be able to utilize this list - I dont know. However, I would highly recommend you not take that approach. First, you would have to do this import on a daily basis in order to get password changes and new users. Next, you'd be opening a major security hole if your database was ever compromised.

That being said, here's what I would recommend. The Windows API has functions to authenticate a user on NT/2K. But, AFAIK, VBScript cannot natively access the Windows API. Therfore, you could create a VB/VFP/VC++ COM component that exposes the functionality you desire. A sample can be found here Jon Hawkins
 
Upvote 0 Downvote
This would work as-is if:

* You set Integrated Windows Authentication on the virutal directories you want to protect.

* You set up groups and group permissions for those virtual directories.

* You make the users log off a "borrowed" machine and log on as themselves.

That latter is the killer. This is (one of the reasons) why Windows XP implements "fast user switching."

There also seem to be some low-level tweaks that can be made to force authentication one vdirs and pages. See:


It may not do what you want, and it may require IIS 5.1 (Windows XP) or later (Windows.Net Server).
 
Upvote 0 Downvote
CatmanDave,

I don't believe you can pull the passwords. You can pull the accounts but I've never seen anywhere where you can view a user's password.

Goodluck,
fengshui_1998
 
Upvote 0 Downvote
Status
Not open for further replies.

Similar threads

nthouse
  • Locked
  • Question
LDAP authentication in asp-unable to open the URL
Replies
1
Views
70
guitarzan
guitarzan
timtim1234
  • Locked
  • Question
Formatting USB key to NTFS from Windows XP
Replies
0
Views
63
timtim1234
timtim1234
JustScriptIt
  • Locked
  • Question
Handling Error When Authentication Is Incorrect 1
Replies
4
Views
72
JustScriptIt
JustScriptIt
tlitterio
  • Locked
  • Question
WMI Query Authentication Dilema
Replies
0
Views
39
tlitterio
tlitterio
MarcusG79
  • Locked
  • Question
Handling basic http authentication in HTA / VBScript
Replies
0
Views
59
MarcusG79
MarcusG79

Part and Inventory Search

Sponsor

Back
Top