Request NTLM username/password from ASP
Posted on 2002-06-28
I want to be able to request a user's credentials at a certain point in a web intranet application.
I don't actually need to know the username/password, just that they have entered it into a dialog box correctly.
Unfortunately I am not allowed to use Basic authentication on the web servers. (Only NTLM authentication). So by default, the user is automatically authenticated by IIS using NTLM...
The reason behind this, is I have a requirement to ensure it is actually the user (who we have picked up using AUTH_USER) who is accessing the application. I need them to re-key their password in, as it will be used almost like a signature. (So I know it was actually them, and not someone who had just sat down at an unattended machine)
I hope this is clear, but if it is vague at all, please ask any clarifying questions.
I'm happy to embed activeX controls if required... But it should be deliverable by ASP...