I have the NTLM ClientRespond and UserName, How can I validate against the Active Directory?

I am using IIS 6.0 Anonymous Access set and NTLM not checked. I am sending 401-Unauthorized message from the http module that i wrote. Client sends me the NTLM Type 3 message response to authonticate.

I would like the authonticate user against AD in my network.
emrahgozcuAsked:
Who is Participating?

[Webinar] Streamline your web hosting managementRegister Today

x
 
Ted BouskillConnect With a Mentor Senior Software DeveloperCommented:
Wait a minute, I disagree about increasing network traffic and slowing down servers.  What evidence do you have in regard to that statement?  Why would your code generate less network traffic?

I managed numerous web servers (each running a different web application) used daily by 9,000 plus users globally.  All the web applications use the built-in IIS Windows Authentication with no problems whatsoever.
0
 
Ted BouskillSenior Software DeveloperCommented:
If you want to use NTLM authentication it's easy.  Turn anonymous access off and enable 'Windows Authentication'  If the domain name matches the domain of the client computer IE policies will define it as a local network connection and automatically logon the use with the correct credentials.  Firefox will ask for credentials with every first visit unless you tell Firefox to save them.

You don't need any custom code, it's built into IIS.
0
 
emrahgozcuAuthor Commented:
The problem is, i  don't want to set Integrated Windows Authentation on! It is a large network, users navigates trough hundereds of pages. If I set Integrated Windows Authentation on, it will increase network traffic and slows down the servers.

I can set Integrated Windows Authentation on for an entry page like loadCredentials but this time if a user losses session needs to be redirected this page. If this happens while the user submits a form, I loose the submitted form.

I hope i am clear little bit more.
0
Never miss a deadline with monday.com

The revolutionary project management tool is here!   Plan visually with a single glance and make sure your projects get done.

 
emrahgozcuAuthor Commented:
I am now getting the user name of the client if the session ended and load credentials of the user in a session again.
0
 
emrahgozcuAuthor Commented:
But I cannot validate the user against AD.
0
 
emrahgozcuAuthor Commented:
Ok, i made a deeper analysys about NTLM in IIS 6 and I reached this blog of  Brain Reid which you can take a look at http://reidablog.blogspot.com/2005/07/improving-performance-of-iis-60.htm.

YOU ARE RIGHT!

I use to know that the IIS sends 401 status code for each page in a web site if i set Windows Integrated Authentication to on. This is not applicable for default settings of IIS 6 anymore. It is about the setting named AuthPersistSingleRequest which is false on default settings.

Points goes to you... Thank you very much!
0
 
Ted BouskillSenior Software DeveloperCommented:
You are very welcome.  Cheers.
0
All Courses

From novice to tech pro — start learning today.