473,398 Members | 2,335 Online
Bytes | Software Development & Data Engineering Community
Post Job

Home Posts Topics Members FAQ

home > topics > php > questions > pass login details to exchange sever 2003?

Join Bytes to post your question to a community of 473,398 software developers and data experts.

Pass login details to Exchange Sever 2003?

Maybe someone could help me a little here.

On a project I am working on, we have some LDAP authentication to
Active Directory which allows users to login to our application - this
is fine. When accessing this application from off campus, they
routinely get this login window confused with the one they login to
Exchange Sever with for their email.

I am wondering if it is possible to setup some kind of button/link
that is displayed after they have logged in (to the web application -
not Exchange) that will redirect them to their email inbox without
having to login again.

I could setup a form that posts to the Exchange login script, with
their username and passwords in hidden fields, but I don't see this as
being secure - perhaps if the password was encrypted (encrypted as
what, though?) I would feel more at ease with this. (Not tried this,
perhaps it would even work?)

Basically, as we know their AD login credentials, all I need to know
is it possible to pass them to the Exchange Server so they can bypass
the login process for Exchange. All I want to do is try and avoid them
logging in twice - once to their email and once to our application.

I hope you follow me, any help would be greatly appreciated.
Dec 31 '07 #1
2 2379
On Mon, 31 Dec 2007 17:04:28 +0100, ad*************@gmail.com
<ad*************@gmail.comwrote:
Maybe someone could help me a little here.

On a project I am working on, we have some LDAP authentication to
Active Directory which allows users to login to our application - this
is fine. When accessing this application from off campus, they
routinely get this login window confused with the one they login to
Exchange Sever with for their email.

I am wondering if it is possible to setup some kind of button/link
that is displayed after they have logged in (to the web application -
not Exchange) that will redirect them to their email inbox without
having to login again.

I could setup a form that posts to the Exchange login script, with
their username and passwords in hidden fields, but I don't see this as
being secure - perhaps if the password was encrypted (encrypted as
what, though?) I would feel more at ease with this. (Not tried this,
perhaps it would even work?)

Basically, as we know their AD login credentials, all I need to know
is it possible to pass them to the Exchange Server so they can bypass
the login process for Exchange. All I want to do is try and avoid them
logging in twice - once to their email and once to our application.

I hope you follow me, any help would be greatly appreciated.
Not having worked directly with Exchange consider the following:
1. You know their login/password.
2. You let the link 'to Exchange' point to a 'portal'-page on your own
site/domain.
3. In that page you start a session with Exchange using perhaps the cURL
library.
3. You pass all cookie/get values directly through to the user, take extra
care to set it for the domain of the exchange server.
4. You redirect them to the page you were send to in your earlier request.

Not having worked with Exchange myself, you might want to examine wether
it works with cookies for authentication (in which case, if you are on a
different (sub)domain, your users would probably have to teach their
browser to accept any cookies you sent for that other domain), or wether
it works with a session-id in a GET value, in which case there would be no
problem passing that back to the user.
--
Rik Wasmus
Dec 31 '07 #2
Thanks for your comments Rik.

I will take a look at Curl, maybe we can force a proxy style post
login using Curl. Maybe this will be possible as we know their
username/password from the main login, it is just a matter of Exchange
Server performing any additional security checks.

I will have a play about and see what happens.
Jan 2 '08 #3
New Post

This thread has been closed and replies have been disabled. Please start a new discussion.

Similar topics

2
IIS 5 will not pass emails or SSL
by: David Stiebel | last post by:
Has anyone had or heard of IIS not passing emails or SSL connections, thereby disconnecting or making the server useless? I had a virus that seems to have done this. Any help or suggestions...
ASP / Active Server Pages
2
help with schema for xml data from exchange server
by: M Rao | last post by:
I have xml data coming in as a stream from a web service running against exchange server.The attributes for the elements dtstart and dtend, b:dt="dateTime.tz"...
.NET Framework
1
OWA for exchange 2003 and form based login
by: Kigunda Mbogo | last post by:
Hi, I am having a windows 2003 ADS with exchange 2003. I do have OWA running on the same box. I would like to create a form based login page that would appear on a different virtual...
C# / C Sharp
8
CDOEXM - Error adding assembly
by: Rob Edwards | last post by:
When trying to add the Microsoft CDO for Exchange Management Library (aka CDOEXM.dll) I receive the following message: "A reference to 'Microsoft CDO for Exchange Management Library' could not be...
ASP.NET
2
ASP login form connecting SQL
by: tractng | last post by:
Guys, I really need help with this. I need to creat a login page for the website. Its an existing site that connects to SQL 7 with a local user in the database called 'maya'. It was...
ASP / Active Server Pages
0
C#, VB and Exchange
by: Tim Sapp | last post by:
Guys, I am working on a new web site for our company and have started to move my code from VB.Net to C#. I have ran into a snag that I can't seem to figure out. I am trying to create an...
C# / C Sharp
3
JamieHowarth0
ASP.NET Login and authentication
by: JamieHowarth0 | last post by:
Hi folks, Got a bit of an interesting question. I'm in the process of learning ASP.NET using Microsoft's CTP of Visual Web Studio "Orcas". Part of my classic ASP website incorporates a login...
.NET Framework
2
Update exchange rates
by: strychtur | last post by:
Hi All, Right now we get a daily email with the current currency exchange rate in it. Then someone copies that data into a SQL Sever table every day. I am looking to automate this process. The...
C# / C Sharp
4
OWA: 'Posting a Login' From Outside Script?
by: adam.waterfield | last post by:
I am just wondering if anyone here can help with a problem that we have here. We have a PHP based website/application that has a user login that is connected to our AD setup. This works fine....
PHP
0
How to turn on java script in a villaon keypad mobile phone
by: Charles Arthur | last post by:
How do i turn on java script on a villaon, callus and itel keypad mobile phone
Java
0
BarryA
Navigating the Data Structures and Algorithms (DSA)
by: BarryA | last post by:
What are the essential steps and strategies outlined in the Data Structures and Algorithms (DSA) roadmap for aspiring data scientists? How can individuals effectively utilize this roadmap to progress...
Algorithms / Advanced Math
1
Looking to do Android software development, any suggestions? Is flutter better?
by: nemocccc | last post by:
hello, everyone, I want to develop a software for my android phone for daily needs, any suggestions?
General
0
marktang
What is ONU?
by: marktang | last post by:
ONU (Optical Network Unit) is one of the key components for providing high-speed Internet services. Its primary function is to act as an endpoint device located at the user's premises. However,...
General
0
Oralloy
Problem With Comparison Operator <=> in G++
by: Oralloy | last post by:
Hello folks, I am unable to find appropriate documentation on the type promotion of bit-fields when using the generalised comparison operator "<=>". The problem is that using the GNU compilers,...
C / C++
0
jinu1996
Maximizing Business Potential: The Nexus of Website Design and Digital Marketing
by: jinu1996 | last post by:
In today's digital age, having a compelling online presence is paramount for businesses aiming to thrive in a competitive landscape. At the heart of this digital strategy lies an intricately woven...
Online Marketing
0
The easy way to turn off automatic updates for Windows 10/11
by: Hystou | last post by:
Overview: Windows 11 and 10 have less user interface control over operating system update behaviour than previous versions of Windows. In Windows 11 and 10, there is no way to turn off the Windows...
Windows Server
0
agi2029
AI Job Threat for Devs
by: agi2029 | last post by:
Let's talk about the concept of autonomous AI software engineers and no-code agents. These AIs are designed to manage the entire lifecycle of a software development project—planning, coding, testing,...
Career Advice
0
isladogs
Access Europe - Using VBA to create a class based on a table - Wed 1 May
by: isladogs | last post by:
The next Access Europe User Group meeting will be on Wednesday 1 May 2024 starting at 18:00 UK time (6PM UTC+1) and finishing by 19:30 (7.30PM). In this session, we are pleased to welcome a new...
Microsoft Access / VBA

By using Bytes.com and it's services, you agree to our Privacy Policy and Terms of Use.

To disable or enable advertisements and analytics tracking please visit the manage ads & tracking page.

BYTES.COM © 2024
About Bytes
Terms Of Use
Privacy Policy
Sitemap
Advertise on Bytes:
Post a Job
Sponsored Posts
Platinum & Gold Sponsors
Hire Now!