NT User Authentication

[NetworkGuy101]

I am taking over an access database that uses coldfusion. The way the person before me set up the security for it is to authenticate the users access to pages through their NT Logon name. He had a access table with the user names alowed and a goup property 1-5 with 1 being the highest privaledge and 5 being the lowest. He had a separate table defining this also. What I am trying to figure out is How is col fusion getting the username and comparing it to the access table and determining whether that user has access to certain pages. What would the code look like? Help is greatly appreciated.

Thanks

 

[GTIMANiac]

You should see the use of cgi.AUTH_USER and if passwords are stored in the DB as well which they may or may not be cgi.AUTH_PASSWORD. In order for the password to be available as a cgi.Variable BASIC ClearText Authentication must be enabled.

I would search through your cfm templates on cgi.AUTH_USER then look at the code it is used in.