I'm developing an Internet site that is going to be password protected. I have one windows 2000 domain on the Internet side of things, and another on an Intranet side.
Is there any way to authenticate a user that hits my Internet pages against the Intranet user database?
I just want users from the Intranet to automatically be able to access the Internet pages without having to create a separate user on the Internet-side domain.
how would an intranet user be nt authenticated using asp?
View Replies View Relatedi want users to login to my web application using SQL authentication i.e whenever the page opens, it should display the SQL server login window. i know Login feature is in dreamweaver MX that i use, but unathurized users can lookup the password in your database.
View Replies View RelatedIs it possible to authenticate a user who is trying to access a certain Div on a page???
I know how to authenticate a user accessing a standard ASP page, but is this possible with a Div!
I have a page that authenticates users by reading
Request.ServerVariables("AUTH_USER") and
Request.ServerVariables("AUTH_TYPE"). When users try to access this
page from windows NT/2000, it works fine (prompts them for their
credentials when they're not on the same domain, and then lets them
in). Now, some of the users got XP boxes, and can't get in to the
page. It prompts them for their credentials but when they enter them,
just keeps prompting them. The credentials they are entering are
correct. What is different on XP that is causing this problem and is
there any setting I can modify on the server side to prevent this from
happening.
I have an asp page on IIS 5.0 and I''m trying to get a dialog box to pop up and ask for username password and domain to authenticate against NT. I have anonymous logins unchecked in the IIS properties page and access restricted on everything but it won''t ask for a username and password no matter what
View Replies View RelatedI had to transfer an ASP Web Application (developed by another person) to a different web server. It seems to work but not completely.
I have some problems with authentication: it is based on a username and a password stored in a SQL Server's table. These data are requested via basic authentication (not a IIS level but I think it is used to create the authentication window in which put username and password). The problem is that it doesn't accept username and password and, after three times, it redirect me to a page telling "You don't have rights to see this page". What could I do? .....
I have no problems authenticating via AD and an ASP page. My question is
this - is there any way to 'reverse' the process?
What I mean is the authenticated state remains as long as the browser window
is open. Is there any .asp command I can provide that will revert the
browser session back to IUSR?
I have an intranet asp application that sends emails that contain a link to an intranet page.I have a case where one user is forced to login to the windows domain when he clicks on the link,even though he is within the firewall & his Outlook security settings specify automatic login with the current name & password.
This doesn't happen with any other users unless they go through the firewall.The site is also recorded in the trusted sites section.
I have written a simple login script that checks a username/password from an Access database. the login.asp page sets a session("loggedin") at zero. The username and password are checked successfully and the user is redirected to admin.asp. The admin.asp page has an if-statement at the top that checks the session variable to 1, which is set after successful dB check.
The problem is that if you go directly to admin.asp without going through the login process, that is, without ever going to the login page.... simple typing something like http://localhost/admin.asp . you are given access to the page and not redirected back to the login page. What could I have missed? It simply checks the session variable....that should never be set to one when all sessions are reset...and the user can still gain access?
I am attempting to access WMI data on a remote machine. I have been able to get this to work, but there has got to be a better way, I hope.
set wmiLocator = CreateObject("WbemScripting.SWbemLocator")
Set WMIServices = GetObject("winmgmts://" & cn & "")
Set objSWbemLocator = CreateObject("WbemScripting.SWbemLocator")
WMIServices.Security_.ImpersonationLevel = 3
Then in my IIS snapin, Directory Security, and then Edit. I have this set Anon Access with my username and password as well as Windows Integrated Authentication checked. It does the job, I can pull the data, but it poses a security risk. I don't want to have my password and username as the authentication options.
I'm using legacy ASP pages on IIS 6.0 to validate users through ADO
Active Directory objects (AdsObject & AdsCommand).
When I use the page from the server itself with "localhost"/page as
servername, it executes fine. But if I call the site with
"servername"/page, the exection fails. AdsObject throws "Table does not
exists" errors.
Currently, the server is configured with Integrated Windows
authentication. I tried changing to Anonymous authentication with
IUSR_machninename user. Again it fails.
I would like to be able to automatically authenticate a registration. Meaning:
A registration occurs
email is sent to registering party
Party clicks a link to authenticates.
or something to that effect.
Does anyone know where I can find something like this?
I would use a forum (i.e. webwiz, phpbb.....) the only problem is they are asking way too many questions for what I need.
I have built a database to hold the party's information, I have built an asp page with form that inputs the info I need into the DB, which all works, but now I would like to be sure that the person registering is a real person and it is a valid email address.
Any Ideas on how to get started?
I'm facing a situation where my team leader wants me to create some ASP code that will pull the user's ID (which is no problem - request the LOGON_USER server variable) and THEN pull that user's NT Permissions to determine what kind of permissions the user will have when he/she comes onto the website. There is to be no logon screen at all. The permissions cannot be determined via a database or through cookies. Only NT Authentication can be used.
I have a small hunch that the HTTP_AUTHORIZATION server variable might provide a clue, but the value of that variable is a bunch of (encrypted?) gibberish that means nothing to me, except probably the NTLM part at the beginning. Is there a way to decode the value of that variable into something coherent that I can use in my code?
I want to get diffrent query from a table .I want that diffrent usernames
can get diffrent queries.How can I do it with asp?
I have an XML file which I access from a remote server like
Set http = CreateObject("MSXML2.ServerXMLHTTP")
http.open "GET","http://www.andrewlouis.co.uk/viewcountries.xml",false
http.send
strXML = http.responseText
The real server is password protected with, I think, with basic
authentication. How do I pass it the username and password.
I have seen on many websites the use of some sort of program to generate a
random character string distorted and warped with lines making the resulting
graphic ideally only human readable.
The theory is to prevent automated login programs.
I don't know what they call this type of component so I really don't know
how to google it. Do you know any source for this type of thing?
i have setup authentication on my website by setting session variables and it works but every once in a while the variables are lost and my users are logged out of the site
can someone tell me why this happens and how to fix it?
Can someone tell me how I create a login page which
authenticates users against the servers user manager. I
want the login to be a form in my website not a pop up
window!
I would be grateful for any advice relating to this
subject. I have a script for windows 2000 active directory
but was wondering if you could achive the same with
windows NT 4 and IIS 4 Code:
In my CMS application (authentication = windows), I've tried to force a reauthentication after a button click by returning:
Response.StatusCode = 401;
However instead of reauthenticating once, I'm asked for 3 times despite the correct userid and password.
Is this due to certain configurations? Or is there any other alternative available to achieve the same effect?
I have a site that currently is password protected, using a combination of ldap authentication and asp session management.
So for every asp page, I check the session to make sure they're authenticated, if not I send them to the login page.
BUT.... there is a robohelp componenet that is almost a website within this website. All these robohelp files are htm or html based, so I'm unable to put asp scripting (to check for session authentication).
So, my problem is, how do i protect these pages using my existing framework?
If I have a website running ASP 3.0 on IIS 6 (server 2003), and am using
Integrated Windows Authentication, is there a way I can place in a session
variable something to identify the person who authenticated to the web site
so I can say right on the ASP page "Welcome UsernameHere" ??
I have enabled authentication for the site in iis and set the default domain
to the domain we are on. This is working fine and when i list all the server
variables it shows the auth_user as domainusername so all is good there.
However we have a NAS server that has a hidden share and i need to be able
to check whether a folder exists in this directory. If i run the same
script from my PC and specify a folder i know exists it tells me the folder
exists. Howver through iis with authentication enabled it tells me the
directory doesn't exist.
I thought that as i have authenticated with teh server any requests i make
on that page would come from the authenticated user. Am i missing something
or a setting?
I've been reading a lot recently on how to make up a login page. I got the form down right and i'm not sure how to get it online (mywebsite) and work properly. i know that you have to have a database of some sort too to check the login in values against but yet again i'm stuck on that.
View Replies View RelatedI want to use window authentication in my asp page. This code allow me to do that but i just need a few user in the server can access this page. Isn't I need to configure at IIS?. Code:
View Replies View RelatedI want the ASP user login authenticated by the windows user, and to catch the user information as a session contained on the page. Then the login user can be redirected to its own folder (recognized by userid). How can I do that?
View Replies View RelatedI have this free calendar I downloaded off the net, that I am trying to tweak to meet company standards. A username/password is required, however I wanted to use Windows authentication... is there a way I can retrieve the username/password used to sign on the computer, for form validation??? If this is possible, could someone please advise me on how i would need to go about doing this??
View Replies View RelatedWe have a web site where the user logs in and a session variable is set,
which allows access to all pages via an include at the top of every page (
if session("LoggedInOK")<>"Yes" etc)
We have some content on another unrelated server in a different domain that
we would like automatic access to, if the login is OK for site 1, without
re-entering a login. Even better would be if some other session variable
data could be transferred at the same time (like username). Navigation would
be via hyperlinks on site 1. Is there a simple way to do this? i.e. has this
wheel already been invented? (Encrypted querystrings? XMLHTTP?)
I wasn't sure which group to use but I'm developing a web application
that connects to a sql server. This application is for External Clients but
the information is sensitive. I thougth that if I do Windows Authentication,
would be the most secure one. I'm not sure if this is true. In any event, I
want to avoid the browser asking for username and password and allowing the
user to type on a username password textboxes on the web form. Is this
possible.
I have a java component that provides me with some methods. I need to authenticate users with edirectory via LDAP using the java component. This needs to be done in pure ASP.
View Replies View RelatedI found some code on the Internet that I have modified for my needs and it works nicely from a localhost, but not when it is sitting on our intranet server.I believe the reason is that the instruction
<authentication mode="Windows" />
is missing.
In asp.net I would put this instruction in web.config, but since the code is in an earlier version of asp (the code is at http://www.hypergurl.com/verticaltext.html) I don't know how to include it.
I'm using MSXML2.ServerXMLHTTP to get a web page using an url with basic authentication (e.g. http://user:password@www.mysite.it).
Microsoft denied basic authentication within Internet Explorer URL (see KB 834489) so I'm unable to get the page contents.The client-side workaround is to change some registry settings (see http://support.microsoft.com/kb/834489), anybody can help me with a different solution ?
I have a folder on my website that has 'anonymous access' and 'basic authentication' disabled, and requires 'intergrated Windows authentication'. This used to work fine, but all of a sudden it won't let me in! .
The login box appears, I have checked the username, password and domain are fine (I can still log directly in to the server with them) but I can't get access.and after I've tried 3 times I just get redirected to the: 'You are not authorized to view this page' page. Same thing happens even if I try usingbasic authentication.Does anyone know why this is happening?