I know that if you intend to use the LOGON_USER in an ASP page you need to have Windows Authentication selected.
I have a website in one domain which can be accessed by 2 other domains. If I am to change to Windows Authentication, will there be a security issue of any type?
I am trying to retrieve the LOGON_USER and it comes up blank. Below is my
code:
struser = Request.ServerVariables("LOGON_USER")
I am trying to retrieve the LOGON_USER and it comes up blank. Below is my code:
struser = Request.ServerVariables("LOGON_USER")
I need to validate internal people on out intranet.
I'm trying to get the NT login id of a user on a web page without making the
user type it into a login box. I'm using the LOGON_USER server variable.
The problem is, if the web page allows anonymous access, LOGON_USER returns
nothing. If the page is set to Basic Security, the NT login popup box comes
up, even though the user is already logged into the network, and HAS access
to this page.
Moreover, if I try this on my PC instead of our webserver, it
works like I would expect. That is, when set to Basic Security, it does NOT
pop up a login box if the user is allowed to view the page, and LOGON_USER
returns the userid. Is there some setting on the server I need to change?
Or something else?
I create a web site in a Windows 2003 server/IIS6, and I used asp pages to get ServerVariables. After I set FrontPage Extension 2002, some ServerVariables like LOGON_USER become null. Any body has an idea?
View Replies View RelatedI have an intranet site hosted in IIS 5.0 Win2000, and want to display the name of the user logged into the local machines(WinXP) in the pages they access like 'Welcome JohniBravo'.
So, i used the Request.ServerVariables("LOGON_USER"), but get a blank ("") displayed in the page. And i even tried "REMOTE_USER" but, still the same. from somewhere i got to know that theres something called 'Allow anonymous user' should be enabled to get these info from servers. help me with the same?
I have used the same syntax in two pages and sometimes each server variable is return, and sometime it is blank. In fact, I created a test page this morning which worked fine, and then an hour later the variables are blank. I read some of the threads about the anonymous user box in IIS, but this just seems strange.
P.S. Each PC in our environment is authenticated through active directory (just to logon to the PC, not security applied to the web folders).
I'm using Windows Integrated Authentication on my company intranet ASP web
site (IIS6 W2K3).
I would like to know how could I get the full Active Directory domain name
from the Logon_User variable.
I always get the netbios name of the domain, but I need the full domain name
to be able to distinguish users (because actually there is two companies on
the intranet having their AD forest linked, but also having some subdomains
with identical netbios name !).
I mean, for instance for a user login "theuser" coming from the domain is
"thedomain.thecompany.com", I need to get in Logon_User environement variable
the following content: "thedomain.thecompany.com heuser"
At the moment I only get "thedomain heuser", excepted if I switch to basic
authentication, that I don't want.
I have 2 webs under my default web running win2003
1. A front-page intranet
2. A asp (not .net) web is fine
Both allow anonomous access. My front page web always gets a BLANK Request.ServerVariables("Logon_User"). The asp web gets the logon_user OK. Both webs have a global.asa that has Code:
Request.servervariables("Logon_USer") is working perfectly well for one asp page returning the NT userid as expected but returning an empty string for another asp page.Both the asp pages are in the same directory.This directory have both Anonymous Access and Integrated Authentication enabled att IIS.
View Replies View RelatedI'm trying to determine whose looking at various pages on our intranet and wanted to use
Request.ServerVariables("logon_user")
but it just gives me a blank value.
I'm thinking its got something to do with Authentification in IIS however when I turn Anonymous users off and use domain users instead it prompts me for a username and password when viewing the webpage ...
I have a non anonymous site in IIS5
The site is for collecting any kind of data from employees.
Authentication is done with the server variable "Logon_User"
Pages:
start.asp - Authentification mask appears -->
form.asp - form for data input -->
form_ack.asp - displays the data again and stores in SQL when
acknowledged in checkboxes
After data are stored I'd like to have a button such as "Log off"
which points back to start.asp.
In the samples I tried there is always the current logged in user
present even when I do a "session.abandon" or
"Session.Contents.Remove"
But how can I "reset" the current logged in user?