Hi!

I was wondering if it possible to use Windows NT users for authenticating people to a website.

I am building a intranet application which should check the user who surfs in to the site and then the script should check if the user has rights to access the page. I just have not found any useful functions doing that yet.

I really appriciate if you can help me with this problem

Thanks allready!

-ARi

You can set security at IIS console for each directory, just open IIS management console, right click on website and click properties, then go to security and check annonymous access and authentication control, you can set up the access by users and ip address.

I hope it helps.

I assume you use NT/IIS as the web server and you have the users in the same domain as the web server.
Then you can authenticate your users with NT Challenge Response (see IIS manual) and give the appropriate rights for the NT users to the files/directories.

There are two security layers in IIS: Restrictions on the webserver level (access granted p.e. only for a special IP) and the NTFS rights (if you're not on FAT). The resulting restriction is the addition of the restrictions in both layers. So if you deny access in NTFS it's useless to grant it in IIS.

Hope it helps
Christoph