IIS Server Security - ISAPI-LDAP-Authentication-Filter : System User Required ?

This is Interesting: Free IT Magazines  
Home > Archive > IIS Server Security > April 2004 > ISAPI-LDAP-Authentication-Filter : System User Required ?





You are viewing an archived Text-only version of the thread. To view this thread in it's original format and/or if you want to reply to this thread please [click here]

Author ISAPI-LDAP-Authentication-Filter : System User Required ?
Björn Andersen

2004-04-28, 7:34 am

Hello Group,

I'm working on the "IIS ISAPI LDAP Authentication Module" from
http://www.inflectioncorp.com/download/.
Purpose is to have IIS to authenticate against LDAP (ADAM) without the need
to set up system- or domainusers.

Going in the Code, I realised that an auth-modul only alters the auth
information passed with the "SF_NOTIFY_AUTHENTICATION" notify event. After
that, IIS seems to do the Auth as well - with new user data, perhaps, but it
seems to need an systemuser to authenticate.

If I let the module pass an default user after auth (e.g. the IIS anonymous
user), all works as expected, but many applications behind the IIS (ASP,
PHP, JSP, ...) rely on this user information (HTTP_AUTHENTICATED_USER or
so).

Is this right ? Or can I get IIS to take the LDAP-User as "Authenticated"
without runing against the system- or domain-userDB again ?
Have you got a better solution/module for this Problem ?

Thanks for your help

--
Bjoern Andersen


Sponsored Links






Free braindumps | Software forum | Database administration forum

Copyright 2003 - 2008 webservertalk.com