|
Home > Archive > IIS Server > August 2005 > dynamically requesting windows authentication on a resource
You are viewing an archived Text-only version of the thread.
To view this thread in it's original format and/or if you want to reply to
this thread please [click here]
| Author |
dynamically requesting windows authentication on a resource
|
|
|
| Hi,
I have a asp.net web application, and in one of my pages I would like to be
able to request windows authentication on the fly, without the page
configured for windows authenticatino in IIS.
is this possible using some http header / return value?
i can surely mimic IIS behavior returning access denied, but a key should be
added and IIS have to accept the credentials of the client.
TIA.
| |
| Chris Crowe [MVP] 2005-08-29, 5:59 pm |
| Although you can dynamically request authentication by setting a 401 Status
and also a WWW-Authenticate header you will not be able to process these I
would think. What will you do with the NTLM hash that is produced?
Why do you want to do this?
This is a set of headers that IIS returns when a user requests an NTLM page.
But if IIS is not configured to accept the NTLM header I do not know what
happens.
HTTP/1.1 401 Access Denied
Server: Microsoft-IIS/5.1
Date: Mon, 29 Aug 2005 19:10:54 GMT
WWW-Authenticate: Negotiate
WWW-Authenticate: NTLM
Connection: close
Content-Length: 4431
Content-Type: text/html
--
Cheers
Chris
Chris Crowe [IIS MVP]
http://blog.crowe.co.nz
"z f" <dont@send.mails> wrote in message
news:e3k2rQ7qFHA.2648@TK2MSFTNGP10.phx.gbl...
> Hi,
>
> I have a asp.net web application, and in one of my pages I would like to
> be able to request windows authentication on the fly, without the page
> configured for windows authenticatino in IIS.
>
> is this possible using some http header / return value?
>
> i can surely mimic IIS behavior returning access denied, but a key should
> be added and IIS have to accept the credentials of the client.
>
> TIA.
>
>
| |
| Joe Kaplan \(MVP - ADSI\) 2005-08-30, 2:55 am |
| You can definitely handle your own basic auth though. It is very "basic".
However, this is not a good idea without SSL in the mix.
Joe K.
"Chris Crowe [MVP]" <IISMVP2005@iisfaq.homeip.net> wrote in message
news:ei99Z2MrFHA.2588@tk2msftngp13.phx.gbl...
> Although you can dynamically request authentication by setting a 401
> Status and also a WWW-Authenticate header you will not be able to process
> these I would think. What will you do with the NTLM hash that is produced?
>
> Why do you want to do this?
>
> This is a set of headers that IIS returns when a user requests an NTLM
> page. But if IIS is not configured to accept the NTLM header I do not know
> what happens.
>
> HTTP/1.1 401 Access Denied
> Server: Microsoft-IIS/5.1
> Date: Mon, 29 Aug 2005 19:10:54 GMT
> WWW-Authenticate: Negotiate
> WWW-Authenticate: NTLM
> Connection: close
> Content-Length: 4431
> Content-Type: text/html
>
> --
> Cheers
>
> Chris
>
> Chris Crowe [IIS MVP]
> http://blog.crowe.co.nz
>
>
> "z f" <dont@send.mails> wrote in message
> news:e3k2rQ7qFHA.2648@TK2MSFTNGP10.phx.gbl...
>
>
|
|
|
|
|