Re: Grabbing username account from Windows login screen
Hi Ian, I would like to see some of that code. Thanks Mike - Original Message - From: Ian Skinner To: CF-Talk Sent: Monday, March 15, 2004 3:27 PM Subject: RE: Grabbing username account from Windows login screen If you check Integrated Windows Authentication and Uncheck anonymous authentication.The CGI_Auth_user will be populated with the user name of the person who logged on the client machine. We are using this functionality extensively here.Let me know if you would like to see some of what we have done. -- Ian Skinner Web Programmer BloodSource www.BloodSource.org Sacramento, CA C code. C code run. Run code run. Please! - Cynthia Dunning [Todays Threads] [This Message] [Subscription] [Fast Unsubscribe] [User Settings]
RE: Grabbing username account from Windows login screen
First if all, it is very important that Anonymous access is UNCHECKED and Integrated Windows authentication is CHECKED in the Authentication Methods under Directory Security of any website (or directory or file) that one wants to get user information from. ! - Logining in a user to our intranet - --/ !--- Check Login--- cflogin cfinvoke component = NTSecurity method = getUserGroups domain = #ListFirst(cgi.AUTH_USER,'\')# userid = #ListLast(cgi.AUTH_USER,'\')# returnvariable = GetUsers cfloginuser name=#ListLast(cgi.AUTH_USER,'\')# password=#cgi.AUTH_PASSWORD# roles=#replace(GetUsers,' ','','ALL')# /cflogin !-- This gets the user information from cgi.Auth_User and uses it in the NTSecurity CFC from Macromedia to get their user groups from Active Directory.We then provide different access and permissions to various sections of our intranet site based on these roles. -- Ian Skinner Web Programmer BloodSource www.BloodSource.org Sacramento, CA C code. C code run. Run code run. Please! - Cynthia Dunning [Todays Threads] [This Message] [Subscription] [Fast Unsubscribe] [User Settings]
RE: Grabbing username account from Windows login screen
what if your webserver is not in the same domain as your users PC? On the other end, your webserver needs full acces to the AD, correct? Doug -Original Message- From: Ian Skinner [mailto:[EMAIL PROTECTED] Sent: Tuesday, March 16, 2004 11:52 AM To: CF-Talk Subject: RE: Grabbing username account from Windows login screen First if all, it is very important that Anonymous access is UNCHECKED and Integrated Windows authentication is CHECKED in the Authentication Methods under Directory Security of any website (or directory or file) that one wants to get user information from. ! - Logining in a user to our intranet - --/ !--- Check Login--- cflogin cfinvoke component = NTSecurity method = getUserGroups domain = #ListFirst(cgi.AUTH_USER,'\')# userid = #ListLast(cgi.AUTH_USER,'\')# returnvariable = GetUsers cfloginuser name=#ListLast(cgi.AUTH_USER,'\')# password=#cgi.AUTH_PASSWORD# roles=#replace(GetUsers,' ','','ALL')# /cflogin !-- This gets the user information from cgi.Auth_User and uses it in the NTSecurity CFC from Macromedia to get their user groups from Active Directory.We then provide different access and permissions to various sections of our intranet site based on these roles. -- Ian Skinner Web Programmer BloodSource www.BloodSource.org Sacramento, CA C code. C code run. Run code run. Please! - Cynthia Dunning _ [Todays Threads] [This Message] [Subscription] [Fast Unsubscribe] [User Settings]
RE: Grabbing username account from Windows login screen
--Original Message Text--- From: [EMAIL PROTECTED] Date: Tue, 16 Mar 2004 11:03:49 -0600 what if your webserver is not in the same domain as your users PC? On the other end, your webserver needs full acces to the AD, correct? Doug -Original Message- From: Ian Skinner [mailto:[EMAIL PROTECTED] Sent: Tuesday, March 16, 2004 11:52 AM To: CF-Talk Subject: RE: Grabbing username account from Windows login screen First if all, it is very important that Anonymous access is UNCHECKED and Integrated Windows authentication is CHECKED in the Authentication Methods under Directory Security of any website (or directory or file) that one wants to get user information from. ! - Logining in a user to our intranet - --/ !--- Check Login--- cflogin cfinvoke component = NTSecurity method = getUserGroups domain = #ListFirst(cgi.AUTH_USER,'\')# userid = #ListLast(cgi.AUTH_USER,'\')# returnvariable = GetUsers cfloginuser name=#ListLast(cgi.AUTH_USER,'\')# password=#cgi.AUTH_PASSWORD# roles=#replace(GetUsers,' ','','ALL')# /cflogin !-- This gets the user information from cgi.Auth_User and uses it in the NTSecurity CFC from Macromedia to get their user groups from Active Directory.We then provide different access and permissions to various sections of our intranet site based on these roles. -- Ian Skinner Web Programmer BloodSource www.BloodSource.org Sacramento, CA C code. C code run. Run code run. Please! - Cynthia Dunning _ [Todays Threads] [This Message] [Subscription] [Fast Unsubscribe] [User Settings]
RE: Grabbing username account from Windows login screen
ok...but whats weird is I UNCHECKED the Anonymous access and CHECKED the Integrated Windows authentication and when I go the the website I still get prompted for a username/password via NT authentication. WTF? --Original Message Text--- From: Ian Skinner Date: Tue, 16 Mar 2004 08:52:27 -0800 First if all, it is very important that Anonymous access is UNCHECKED and Integrated Windows authentication is CHECKED in the Authentication Methods under Directory Security of any website (or directory or file) that one wants to get user information from. ! - Logining in a user to our intranet - --/ !--- Check Login--- cflogin cfinvoke component = NTSecurity method = getUserGroups domain = #ListFirst(cgi.AUTH_USER,'\')# userid = #ListLast(cgi.AUTH_USER,'\')# returnvariable = GetUsers cfloginuser name=#ListLast(cgi.AUTH_USER,'\')# password=#cgi.AUTH_PASSWORD# roles=#replace(GetUsers,' ','','ALL')# /cflogin !-- This gets the user information from cgi.Auth_User and uses it in the NTSecurity CFC from Macromedia to get their user groups from Active Directory.We then provide different access and permissions to various sections of our intranet site based on these roles. -- Ian Skinner Web Programmer BloodSource www.BloodSource.org Sacramento, CA C code. C code run. Run code run. Please! - Cynthia Dunning [Todays Threads] [This Message] [Subscription] [Fast Unsubscribe] [User Settings]
RE: Grabbing username account from Windows login screen
Assuming you use IE (as Integrated Windows Authentication (AFAIK) only works on IE) then IE will try to send your currently logged in username and password to the server.If the server doesnt find a match for this then it sends back to the browser a login failure which then prompts IE to prompt the user for their details. Does the webserver have details about you in the PDC or in its user db? HTH -Original Message- From: Bushy [mailto:[EMAIL PROTECTED] Sent: Tuesday, March 16, 2004 17:53 To: CF-Talk Subject: RE: Grabbing username account from Windows login screen ok...but whats weird is I UNCHECKED the Anonymous access and CHECKED the Integrated Windows authentication and when I go the the website I still get prompted for a username/password via NT authentication. WTF? --Original Message Text--- From: Ian Skinner Date: Tue, 16 Mar 2004 08:52:27 -0800 First if all, it is very important that Anonymous access is UNCHECKED and Integrated Windows authentication is CHECKED in the Authentication Methods under Directory Security of any website (or directory or file) that one wants to get user information from. ! - Logining in a user to our intranet - --/ !--- Check Login--- cflogin cfinvoke component = NTSecurity method = getUserGroups domain = #ListFirst(cgi.AUTH_USER,'\')# userid = #ListLast(cgi.AUTH_USER,'\')# returnvariable = GetUsers cfloginuser name=#ListLast(cgi.AUTH_USER,'\')# password=#cgi.AUTH_PASSWORD# roles=#replace(GetUsers,' ','','ALL')# /cflogin !-- This gets the user information from cgi.Auth_User and uses it in the NTSecurity CFC from Macromedia to get their user groups from Active Directory.We then provide different access and permissions to various sections of our intranet site based on these roles. -- Ian Skinner Web Programmer BloodSource www.BloodSource.org Sacramento, CA C code. C code run. Run code run. Please! - Cynthia Dunning _ [Todays Threads] [This Message] [Subscription] [Fast Unsubscribe] [User Settings]
RE: Grabbing username account from Windows login screen
ok...but whats weird is I UNCHECKED the Anonymous access and CHECKED the Integrated Windows authentication and when I go the the website I still get prompted for a username/password via NT authentication. By itself, this will not allow IE to automatically send your domain login to the web server. IE itself needs to be configured to allow this. IE has several zones, and typically you'd place your site within the intranet zone, and configure IE to automatically use your Windows login for authentication with that zone. Dave Watts, CTO, Fig Leaf Software http://www.figleaf.com/ phone: 202-797-5496 fax: 202-797-5444 [Todays Threads] [This Message] [Subscription] [Fast Unsubscribe] [User Settings]
re: Grabbing username account from Windows login screen
Hi, To access my app I have the user authenticate using windows authentication. I then pass the username to my application via cfset auth = listLast(#CGI.AUTH_USER#, \) Now the server has been put on our domain. Rather than have the windows authentication I would prefer to grab the username used when logging in to the domain. How can I grab this username? [Todays Threads] [This Message] [Subscription] [Fast Unsubscribe] [User Settings]
RE: Grabbing username account from Windows login screen
If you check Integrated Windows Authentication and Uncheck anonymous authentication.The CGI_Auth_user will be populated with the user name of the person who logged on the client machine. We are using this functionality extensively here.Let me know if you would like to see some of what we have done. -- Ian Skinner Web Programmer BloodSource www.BloodSource.org Sacramento, CA C code. C code run. Run code run. Please! - Cynthia Dunning [Todays Threads] [This Message] [Subscription] [Fast Unsubscribe] [User Settings]
RE: Grabbing username account from Windows login screen
IIRC, the client machine has to be a member of this domain your server is in.I recall my LAN folks setting user to be able to login to other domains when logging into their machines. Doug -Original Message- From: Bushy [mailto:[EMAIL PROTECTED] Sent: Monday, March 15, 2004 1:25 PM To: CF-Talk Subject: re: Grabbing username account from Windows login screen Hi, To access my app I have the user authenticate using windows authentication. I then pass the username to my application via cfset auth = listLast(#CGI.AUTH_USER#, \) Now the server has been put on our domain. Rather than have the windows authentication I would prefer to grab the username used when logging in to the domain. How can I grab this username? _ [Todays Threads] [This Message] [Subscription] [Fast Unsubscribe] [User Settings]