I'm now using IIS to authenticate our NT users, but a few questions now rise :

1) I can retrieve the "computername\logon" with the request.servervariables("LOGON_USER") but is there a way to tell its domain ?

2) I want to tell IIS that the user has logged out, hence a new authentication is required (see logout), how can I achieve this ?
This problem occurs when the user logged out of the intranet web site, IIS still consider him as logged on and don't ask a new authentication/session...

Thanks in advance !

1) I get "domainname\username" with "AUTH_USER".

2) Windows Authentication should be handled by Internet Explorer, they won't log out until IE is closed, unless they picked "Save Password" or whatever on the Dialog Box. On my network, this is all transparent to the users -- they never need to log on or off.

Ok !

1) That's odd; mine returns "servername\logon" with both :confused:

2) That's bad; users will have to close all Ie session to log on as another user ? Well, I Guess it's the only way... :(

Thanks for the quick reply ! =)

Not if you provide them with a way to log off and abandon the session.

Yes; I do allow user to "logoff" via a simple menu.
What this does is simply a session.abandon and clearing all session variables.

But this doesn't seem to do the trick with IIS authentication : you have to close all browsers to be asked for login again ?
That's rather odd !

Thanks for the answer monte !

The way I use Windows Authentication is that IE passes whatever log-in the user used to log on to their NT workstation with. There's never a log on or off thru web pages. Of course, I have it easy because everyone's on the same domain.