How to authenticate a NT user in the Intranet via ASP ?

**eL_NiNo** · Jun 5th, 2001, 02:04 PM

Hi guys !

I'm currently setting up an application (ASP), almost done (still printing report and authentication of NT user to go) and I have a few questions :

1) I'm using Crystal Report 8.0 and I would Like to know if it is possible to view a report in an ASP page so the client could see and print it ? If so, how can I achieve this ? I've tried numerous things but no go ...

2) The application will be available through our intranet; I did a security check at two level already : database level(where login & pass are stored in a databse, obviously) and the other with an Authentication in our internal network (not NT). However, Lots of our machines are being moved to win2000 and I must now take that in consideration and program an authentication via the NT Logon.

I already got how to obtain domain and User Logon, but the entire problem is to verify if they are ok.
(somethin' like :

Set app = server.CreateObject(WHATEVER_COULD_HELP_ME_HERE)
IsLogonOk = app.Authenticate(strUserLogon, strUserPassword)

...Well You got the point). Is this possible ?

Thanks in advance !

**ShIzO** · Jun 5th, 2001, 02:17 PM

to retrieve NT login in format: DOMAIN\USER_NAME use:

Code:

   domainUserName = Request.ServerVariables("LOGON_USER")

**eL_NiNo** · Jun 5th, 2001, 02:31 PM

Ho, not what I meant, sorry.

I already have this information, what I need is to make sure the password supplied by the user fits with its logon;

Let's suppose you're an admin doing debugging on a client machine; you're still logged in with clientname (for debugging purposes) but you need to access this webpage using YOUR Logon & pass. I want to make sure they are ok so i can enter w/o causing any security probs.

So Your login/Pass (supplied via ASP) <> NT logon at start BUT still a Valid NT logon.

Am I explicit enough ?
(P.S. Sorry for bad english, if that's the case, doin my best here)

**monte96** · Jun 5th, 2001, 07:27 PM

Ok.. first off, the Crystal Reports Developers edition comes with a bunch of examples for ASP. You can also download them from the Crystal Decisions web site.

As for authentication, turn off Anonymous access on the Directory Security tab of the virtual directory's Property page and check integrated Windows Authentication.

**eL_NiNo** · Jun 6th, 2001, 08:10 AM

Ok, thanks Monte96 for the Url to Crystal Report, that was exactly what I was looking for !

But about the NT authentication, that's not what I was looking for, so I'll ask my question differently

Is there a function that returns a boolean (TRUE/FALSE) to which you can send a NT Logon & Pass to know if they match together ? 'cause those logon & pass WILL be different from the one the user logged in.
I need to do this by code absolutly.
ex: ValidUser = FunctionExtremelyNeeded(NtLogon, NtPass)

Anyway, Thanks !

**monte96** · Jun 6th, 2001, 09:43 AM

Well, since you put it that way... No. There isn't.

If your using integrated Windows NT Authentication it is done for you and access is granted or denied to the page itself based on it.

**MikeHost** · Feb 6th, 2002, 04:55 PM

I'm very intested el nino... did you ever figure this one out?

Thread: How to authenticate a NT user in the Intranet via ASP ?

Thread Tools

Display

How to authenticate a NT user in the Intranet via ASP ?

Posting Permissions