Passing Password to NT (directory authentication) from ASP
I will answer your questions with this:
You shouldn't be using NT logins for customers.
This should only be used in an Intranet environment.
You should authenticate users using a database or
another method (LDAP, ILS, etc).
Giving clients NT logins is neither secure nor scalable.
-Chad
Quote:
> Thanks Chad, I think I will!
> Follow-up Question:
> I don't know if you can answer this, but if you can I would really
> appreciate it:
> I have a site that has two parts, one for the general public and the second
> for special customers (to access their billing info, etc.). When a user
> goes into their private area, the NT login dialog handles authentication and
> all is well Until the user tries to go back to a public area on the same
> site, then they get the NT login Dialog again (and their password doesn't
> work!).
> Q) Why would they get "proofed" again just for entering an area that
> Everyone has access to?
> Thanks in Advance!!
> Anthony
> > Perhaps you should consider setting your IIS site to use NTLM
> authentication
> > and have your ASP site use that, rather than have your ASP site do
> > authentication and then having to NTLM authenticate.
> > -Chad
> > > Hello,
> > > I use an ASP page Form to obtain a User Name and Password that I use to
> > > direct the Web Visitor to the proper pages designed for them.
> > > NT protects some of the directories they get directed to. If they then
> > > supply a valid Name and Password all is well.
> > > Problem: This forces the visitor to login twice.
> > > Question: Is there a way to pass the login information that I already
> > > collected in my ASP Form to NT so that the visitor only has to login
> once
> > > (through my ASP Form)?
> > > Thanks in advance!!
> > > Anthony
