I have the NTLM ClientRespond and UserName, How can I validate against the Active Directory?

If you want to use NTLM authentication it's easy.  Turn anonymous access off and enable 'Windows Authentication'  If the domain name matches the domain of the client computer IE policies will define it as a local network connection and automatically logon the use with the correct credentials.  Firefox will ask for credentials with every first visit unless you tell Firefox to save them.

You don't need any custom code, it's built into IIS.

The problem is, i  don't want to set Integrated Windows Authentation on! It is a large network, users navigates trough hundereds of pages. If I set Integrated Windows Authentation on, it will increase network traffic and slows down the servers.

I can set Integrated Windows Authentation on for an entry page like loadCredentials but this time if a user losses session needs to be redirected this page. If this happens while the user submits a form, I loose the submitted form.

I hope i am clear little bit more.

I am now getting the user name of the client if the session ended and load credentials of the user in a session again.

But I cannot validate the user against AD.

Ok, i made a deeper analysys about NTLM in IIS 6 and I reached this blog of  Brain Reid which you can take a look at http://reidablog.blogspot.com/2005/07/improving-performance-of-iis-60.htm.

YOU ARE RIGHT!

I use to know that the IIS sends 401 status code for each page in a web site if i set Windows Integrated Authentication to on. This is not applicable for default settings of IIS 6 anymore. It is about the setting named AuthPersistSingleRequest which is false on default settings.

Points goes to you... Thank you very much!

You are very welcome.  Cheers.