Hello and welcome to our community! Is this your first visit?
Register
Enjoy an ad free experience by logging in. Not a member yet? Register.
Results 1 to 6 of 6
  1. #1
    Regular Coder
    Join Date
    Sep 2002
    Location
    UK
    Posts
    102
    Thanks
    0
    Thanked 0 Times in 0 Posts

    Windows Domain Authentication

    I have been told to tighten security on my intranet from zero to maximum. Is there any way in ASP to see what the current user is logged into their machine as and use that to log into the intranet. I don't mind installing any 3rd party components.

  • #2
    Senior Coder
    Join Date
    Jun 2002
    Location
    Zwolle, The Netherlands
    Posts
    1,120
    Thanks
    2
    Thanked 31 Times in 31 Posts
    if the server is in the same domain as the client, Request.ServerVariables("LOGON_USER") contains the logged on username of the client
    I am the luckiest man in the world

  • #3
    Regular Coder
    Join Date
    Sep 2002
    Location
    UK
    Posts
    102
    Thanks
    0
    Thanked 0 Times in 0 Posts
    It is on the same domain but unfortunately it isn't working, not returning any value.

  • #4
    Senior Coder
    Join Date
    Jun 2002
    Location
    Zwolle, The Netherlands
    Posts
    1,120
    Thanks
    2
    Thanked 31 Times in 31 Posts
    then you should set the security settings in IIS so that login as anonymous internet user is disabled, that way the username will be known. Dont have IIS running at my machine right now, so cannot tell you where to set these things exactly, but browse a bit through the IIS-settings. You should be able to find it ...
    I am the luckiest man in the world

  • #5
    Rockstar Coder
    Join Date
    Jun 2002
    Location
    USA
    Posts
    9,074
    Thanks
    1
    Thanked 328 Times in 324 Posts
    You also could via ADSI have a login screen on your intranet for senstive areas. So the viewer has to re-enter their network username and password.

    (Assuming your network is running Active Directory)

  • #6
    Supreme Master coder! glenngv's Avatar
    Join Date
    Jun 2002
    Location
    Philippines
    Posts
    11,037
    Thanks
    0
    Thanked 250 Times in 246 Posts
    what Roelf said.
    Go to site properties, Directory Security tab, Edit button in Anonymous Access and Authentication Control, check Basic Authentication and uncheck the other two. Then click the corresponding Edit button if you want to specify a different domain.


  •  

    Posting Permissions

    • You may not post new threads
    • You may not post replies
    • You may not post attachments
    • You may not edit your posts
    •