IIS 4.0 Basic Authentication Using an HTML Form

Hello all,

I'm am using basic authentication with SSL to protect portions of a website. I want to use an html form to pass the Username and Password to the site instead of having the Username and Password prompt display. Can I supply that information to the requesting HTTP Authentication Header?

Thanks in advance,

-rg
rsgibsonAsked:
Who is Participating?
I wear a lot of hats...

"The solutions and answers provided on Experts Exchange have been extremely helpful to me over the last few years. I wear a lot of hats - Developer, Database Administrator, Help Desk, etc., so I know a lot of things but not a lot about one thing. Experts Exchange gives me answers from people who do know a lot about one thing, in a easy to use platform." -Todd S.

rsgibsonAuthor Commented:
Oops,

I forgot to add that I'm running IIS 4.0.

Thanks,

-rg
0
yolishCommented:
I don't think it is possible to disable the username and password prompt. You can still use anonymous authentication and create a login form utilizing your security certificate.
0
rsgibsonAuthor Commented:
Could you elaborate on the security certificate?

Thanks,

-rg
0
JavaScript Best Practices

Save hours in development time and avoid common mistakes by learning the best practices to use for JavaScript.

yolishCommented:
I guess... what exactly are you trying to do?
0
h9925631Commented:
I think you need to use ADSI to do this. But it is a bit tough to do so. Actually I am doing this too but using IIS 5.5.
0
h9925631Commented:
The problem I encounter is how to get the correct ADSPath. It is hard for me to get the correct DN components.
0
h9925631Commented:
The problem I encounter is how to get the correct ADSPath. It is hard for me to get the correct DN components.
0
yolishCommented:
a different approach would be to acquire a Digital Certificate from Verisign and create your own security model. Utilizing a database you can create a users table that has a username and password and whatever other data you want to collect about the users and then have a login screen.

Then set a cookie or use session variables (wouldn't recommend until ASP.NET) and have a piece of code at the top of every protected page that verifies that the user is logged in...
0
thunderchickenCommented:
reject the proposed answer and i'll tell you how to do this

don't propose an answer when you "think" it will work. it needs to be a specific solution
0
rsgibsonAuthor Commented:
h9925631:

Thanks for your comments, however I am familiar with ADSI, but that is the solution I'm looking for.

Thanks again

-rg
0
thunderchickenCommented:
You have 2 options:

#1 - Use NT challenge response.  This takes the current NT login and gives you that information, but you can only use Internet Explorer (Netscape is not supported, go figure)

#2 - Either build or purchase a component, best bet is aspuser.com

good luck
0

Experts Exchange Solution brought to you by

Your issues matter to us.

Facing a tech roadblock? Get the help and guidance you need from experienced professionals who care. Ask your question anytime, anywhere, with no hassle.

Start your 7-day free trial
hongjunCommented:
No comment has been added lately, so it's time to clean up this TA.
I will leave a recommendation in the Cleanup topic area that this question is:
[points to thunderchicken]

Please leave any comments here within the next seven days.

PLEASE DO NOT ACCEPT THIS COMMENT AS AN ANSWER!

hongjun
EE Cleanup Volunteer
0
ChmodCommented:
As recommended

Chmod
Community Support Moderator @Experts Exchange
0
It's more than this solution.Get answers and train to solve all your tech problems - anytime, anywhere.Try it for free Edge Out The Competitionfor your dream job with proven skills and certifications.Get started today Stand Outas the employee with proven skills.Start learning today for free Move Your Career Forwardwith certification training in the latest technologies.Start your trial today
ASP

From novice to tech pro — start learning today.