~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ From: "Paul Fuhrmeister" <[EMAIL PROTECTED]> Subject: Logoff NT user with ASP script?
: After a user logs in to view web pages using NT authentication, : : Is there a way to log off the NT user off? (like a log off link). ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ Kinda, but not really. The *browser* sends the last known good set of credentials back to the server, until it starts getting 401 Not Authorised, in which case it pops up the username/password credentails dialogue box again. IE will "forget" the last used set of credentials when all browser windows for the current user session are closed. However you can't programmatically close all the browser windows (say, using javascript), without the user having to agree. One thing you could do is tie in the ASP Session object (or similar), and programmatically force the user to *reauthenticate*. This isn't the same as "logging the user off". When the user clicks on the "link", call Session.Abandon, and redirect to a page that doesn't use the Session object (@EnableSessionState=False). Then, on every other page, check to see if there is a session or not. If not, send the 401 Not Authorised header, otherwise, let the user in. Cheers Ken --- You are currently subscribed to activeserverpages as: [email protected] To unsubscribe send a blank email to [EMAIL PROTECTED]
