Reply to Re: [PHP] NT Auto Authentication?

Your name:

Reply:


Posted by tg-php on 01/18/05 16:42

Ok, I think the other response you got is mostly right, but I don't think it's clear what you're trying to do.

If you enable NTLM authentication on the web server, then you can have the user's browser send the authenticated username to the web server. You'd do that like this:

1. On your web server (I think IIS is the only one that supports it right now but not 100% sure), turn OFF Anonymous authentication and Basic Authentication. The third option is Windows Integrated Authentication aka NTLM (I forget the exact names of the settings, but you'll see what I'm talking about when you go into IIS).

2. The remove user has to be logged into the domain that the web server belongs to. This will only work via a domain login, not just any local user login or something like that and I believe that they both need to be on the same domain.

3. Use either the $_ENV["AUTH_USER"] or ..err.. there was another variable, I forget. Anyway, that'll get the user's username, but not any password information or anything. The only way for this variable to populate is for them to log into the domain though, so you should be able to trust it as "This is actually who logged in and they definitely logged in with the proper credentials".


If you're trying to get the user to log into the domain THROUGH the web server, then that's another story altogether.

If this isn't what you're trying to do, you might look into LDAP or something possibly.

More details might be useful if you'd like to post them.

-TG

= = = Original message = = =

Anybody figured out how to auto authenticate into a windows server? I
need to have some users log through NT Authentication on their browser
without typing their username and password. I was wondering if I could
use PHP + COM or something like that but I can't find anything. I have
found some scripts that validate against NTLM but I have not been able
to find a script that would actually validate the browser/session
against a NT server. Help!

--
Adrian Madrid
HyperX Inc.
Mobile: 801.815.1870
Office: 801.566.0670
aemadrid@hyperxmedia.com
www.hyperxmedia.com

9000 S. 45 W.
Sandy, UT 84070


___________________________________________________________
Sent by ePrompter, the premier email notification software.
Free download at http://www.ePrompter.com.

[Back to original message]
Удаленная работа для программистов  •  Как заработать на Google AdSense  •  England, UK  •  статьи на английском  •  PHP MySQL CMS Apache Oscommerce  •  Online Business Knowledge Base  •  DVD MP3 AVI MP4 players codecs conversion help
Home  •  Search  •  Site Map  •  Set as Homepage  •  Add to Favourites

Copyright © 2005-2006 Powered by Custom PHP Programming

Сайт изготовлен в Студии Валентина Петручека
изготовление и поддержка веб-сайтов, разработка программного обеспечения, поисковая оптимизация