Yes, you need to enable "windows integrated authentication" under the website in IIS. This will enable authentication in the background, i.e. via the web browser and IIS, the web browser passes the login details from the logged in user to the web server which authenticates the details.
No need to pass any of these details anywhere, the username however is available for you to use under the cgi variable cgi.auth_user -- Taco Fleur Senior Web Systems Engineer http://www.webassociates.com -----Original Message----- From: jamie wedow [mailto:[EMAIL PROTECTED] Sent: Tuesday, 29 March 2005 9:02 AM To: CF-Talk Subject: Transparent authentication aginst IIS I am currently in the process of integrating a new time-tracking application into out company intranet. The application authenticates users through IIS as shown <a href="http://myportal2.fclaw.com/authenticate.jpg">here</A>. Is there a way I can mask this authentication? I have the username and password available as session variables, but I'm not sure how to pass that data on to the IIS server itself. Thanks, Jamie ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~| Logware (www.logware.us): a new and convenient web-based time tracking application. Start tracking and documenting hours spent on a project or with a client with Logware today. Try it for free with a 15 day trial account. http://www.houseoffusion.com/banners/view.cfm?bannerid=67 Message: http://www.houseoffusion.com/lists.cfm/link=i:4:200317 Archives: http://www.houseoffusion.com/cf_lists/threads.cfm/4 Subscription: http://www.houseoffusion.com/lists.cfm/link=s:4 Unsubscribe: http://www.houseoffusion.com/cf_lists/unsubscribe.cfm?user=11502.10531.4 Donations & Support: http://www.houseoffusion.com/tiny.cfm/54