"ljb" <.> wrote in message news:u6*************@TK2MSFTNGP12.phx.gbl...
: "Roland Hall" <nobody@nowhere> wrote in message
: news:uL**************@TK2MSFTNGP10.phx.gbl...
:
: > : first. Anonymous is NOT required to pass credentials for AUTH_USER
will
: > be
: > : empty.
: > :
: > : Are you getting a 401.1 or 401.2 error?
: >
: > Is this IIS5 or 6?
:
: I'm running this under IIS5.
:
: When I first created the ASP it worked for awhile and AUTH_USER contained
a
: name. I'm quite sure Anonymous was set at that time. Suddenly it quit
: returning a name. I had hopes of determining what caused the change and
how
: to set it back. My purpose was to place a database edit button if the user
: was one from my list of users allowed to edit the data. It was very simple
: while it worked but it may just have been a fluke that AUTH_USER ever
: contained a name
You might have missed my first question. What error are you getting? Have
you tried using wfetch to check what is actually happening?
Go here to get it:
http://www.microsoft.com/downloads/d...DisplayLang=en
This tells you how to use it:
http://support.microsoft.com/default...b;en-us;284285
Here is a webcast by Chris Adams on how to properly set your security, how
to test, how to know what is happening and how to debug it. It takes awhile
and he covers probably more than you're interested in, but he also explains
the 3-way handshake during the authentication and displays it on screen.
I'm a network security professional so the TCP/IP 3-way handshake to me is
pretty simple process using a packet analyzer, but this makes it easy for
the novice to understand.
He also explains the difference between authentication and authorization,
which most people use synonymously. This is crucial to the debugging
process.
It's an excellent demonstration that I think anyone administering IIS on an
Intranet should review. This is a step-by-step process of exactly what
you're trying to do.
http://msevents.microsoft.com/CUI/Ev...&Culture=en-US
You will have to register to review it but you get instant access.
HTH...
--
Roland Hall
/* This information is distributed in the hope that it will be useful, but
without any warranty; without even the implied warranty of merchantability
or fitness for a particular purpose. */
Technet Script Center -
http://www.microsoft.com/technet/scriptcenter/
WSH 5.6 Documentation -
http://msdn.microsoft.com/downloads/list/webdev.asp
MSDN Library -
http://msdn.microsoft.com/library/default.asp