emrahgozcu
asked on
I have the NTLM ClientRespond and UserName, How can I validate against the Active Directory?
I am using IIS 6.0 Anonymous Access set and NTLM not checked. I am sending 401-Unauthorized message from the http module that i wrote. Client sends me the NTLM Type 3 message response to authonticate.
I would like the authonticate user against AD in my network.
I would like the authonticate user against AD in my network.
ASKER
The problem is, i don't want to set Integrated Windows Authentation on! It is a large network, users navigates trough hundereds of pages. If I set Integrated Windows Authentation on, it will increase network traffic and slows down the servers.
I can set Integrated Windows Authentation on for an entry page like loadCredentials but this time if a user losses session needs to be redirected this page. If this happens while the user submits a form, I loose the submitted form.
I hope i am clear little bit more.
I can set Integrated Windows Authentation on for an entry page like loadCredentials but this time if a user losses session needs to be redirected this page. If this happens while the user submits a form, I loose the submitted form.
I hope i am clear little bit more.
ASKER
I am now getting the user name of the client if the session ended and load credentials of the user in a session again.
ASKER
But I cannot validate the user against AD.
ASKER CERTIFIED SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
ASKER
Ok, i made a deeper analysys about NTLM in IIS 6 and I reached this blog of Brain Reid which you can take a look at http://reidablog.blogspot.com/2005/07/improving-performance-of-iis-60.htm.
YOU ARE RIGHT!
I use to know that the IIS sends 401 status code for each page in a web site if i set Windows Integrated Authentication to on. This is not applicable for default settings of IIS 6 anymore. It is about the setting named AuthPersistSingleRequest which is false on default settings.
Points goes to you... Thank you very much!
YOU ARE RIGHT!
I use to know that the IIS sends 401 status code for each page in a web site if i set Windows Integrated Authentication to on. This is not applicable for default settings of IIS 6 anymore. It is about the setting named AuthPersistSingleRequest which is false on default settings.
Points goes to you... Thank you very much!
You are very welcome. Cheers.
You don't need any custom code, it's built into IIS.