|
Posted by zdzisio on 11/06/07 16:19
Jerry Stuckle pisze:
> zdzisio wrote:
>> Rik Wasmus pisze:
>>
>> http://modntlm.sourceforge.net/
>>
>>
>
> Sorry, that's a login module for Apache.
ofcourse it is.
> It tells you who logged into
> Apache, not who's currently logged into the machine.
I can imagine situation when this two values differ. but so what?
> And the same is
> true with IIS. This is not necessarily the same as the person logged
> into the machine.
I can imagine situation when this two values differ. but so what?
of course you can try and log out and then log in as different user than
YOUR login to corporate network.
but question was about displaing courent user of a local machine
on web when the local machine is corporate network
to do that you have to force automatic single sign on authentication to
intranet web . what don't you understand?
> Rik is correct. There is no way to get the name of the user logged into
> the machine without ActiveX controls.
HTTP server sends request for NTLM authentication and Windows
workstation sends the sid back as a response. then you have to check the
sid in Active Directory (or other LDAP server ) and youre done. this is
that simple. no need to deny
> HTTP security prohibits the
> server from knowing such information - which is a good thing.
That's exactly the reason to use NTLM authentication not HTTP
authentication.
z.
Navigation:
[Reply to this message]
|