I have the NTLM ClientRespond and UserName, How can I validate against the Active Directory?

I am using IIS 6.0 Anonymous Access set and NTLM not checked. I am sending 401-Unauthorized message from the http module that i wrote. Client sends me the NTLM Type 3 message response to authonticate.

I would like the authonticate user against AD in my network.
emrahgozcuAsked:
Who is Participating?
I wear a lot of hats...

"The solutions and answers provided on Experts Exchange have been extremely helpful to me over the last few years. I wear a lot of hats - Developer, Database Administrator, Help Desk, etc., so I know a lot of things but not a lot about one thing. Experts Exchange gives me answers from people who do know a lot about one thing, in a easy to use platform." -Todd S.

Ted BouskillSenior Software DeveloperCommented:
If you want to use NTLM authentication it's easy.  Turn anonymous access off and enable 'Windows Authentication'  If the domain name matches the domain of the client computer IE policies will define it as a local network connection and automatically logon the use with the correct credentials.  Firefox will ask for credentials with every first visit unless you tell Firefox to save them.

You don't need any custom code, it's built into IIS.
0
emrahgozcuAuthor Commented:
The problem is, i  don't want to set Integrated Windows Authentation on! It is a large network, users navigates trough hundereds of pages. If I set Integrated Windows Authentation on, it will increase network traffic and slows down the servers.

I can set Integrated Windows Authentation on for an entry page like loadCredentials but this time if a user losses session needs to be redirected this page. If this happens while the user submits a form, I loose the submitted form.

I hope i am clear little bit more.
0
emrahgozcuAuthor Commented:
I am now getting the user name of the client if the session ended and load credentials of the user in a session again.
0
The Ultimate Tool Kit for Technolgy Solution Provi

Broken down into practical pointers and step-by-step instructions, the IT Service Excellence Tool Kit delivers expert advice for technology solution providers. Get your free copy for valuable how-to assets including sample agreements, checklists, flowcharts, and more!

emrahgozcuAuthor Commented:
But I cannot validate the user against AD.
0
Ted BouskillSenior Software DeveloperCommented:
Wait a minute, I disagree about increasing network traffic and slowing down servers.  What evidence do you have in regard to that statement?  Why would your code generate less network traffic?

I managed numerous web servers (each running a different web application) used daily by 9,000 plus users globally.  All the web applications use the built-in IIS Windows Authentication with no problems whatsoever.
0

Experts Exchange Solution brought to you by

Your issues matter to us.

Facing a tech roadblock? Get the help and guidance you need from experienced professionals who care. Ask your question anytime, anywhere, with no hassle.

Start your 7-day free trial
emrahgozcuAuthor Commented:
Ok, i made a deeper analysys about NTLM in IIS 6 and I reached this blog of  Brain Reid which you can take a look at http://reidablog.blogspot.com/2005/07/improving-performance-of-iis-60.htm.

YOU ARE RIGHT!

I use to know that the IIS sends 401 status code for each page in a web site if i set Windows Integrated Authentication to on. This is not applicable for default settings of IIS 6 anymore. It is about the setting named AuthPersistSingleRequest which is false on default settings.

Points goes to you... Thank you very much!
0
Ted BouskillSenior Software DeveloperCommented:
You are very welcome.  Cheers.
0
It's more than this solution.Get answers and train to solve all your tech problems - anytime, anywhere.Try it for free Edge Out The Competitionfor your dream job with proven skills and certifications.Get started today Stand Outas the employee with proven skills.Start learning today for free Move Your Career Forwardwith certification training in the latest technologies.Start your trial today
Active Directory

From novice to tech pro — start learning today.