Owen
Tue Jun 08 11:03:42 CDT 2004
Thanks for the clarification.
That brings me to this question: can I set the AUTH_USER/REMOTE_USER server
variables from an HTTPModule in ASP.NET? If so, how? That doesn't help me
with my ASP code problem, but it would be excellent for the code that is
migrating to dot-net.
Thanks,
Owen
"David Wang [Msft]" <someone@online.microsoft.com> wrote in message
news:%23mMCC0RTEHA.556@tk2msftngp13.phx.gbl...
> As I had said earlier - ISAPI Filter and ISAPI Extension are good ways to
> expand/alter IIS behavior. "SetLoginUser" is an application level
construct
> while IIS is a web server that is application agnostic, so you're not
going
> to find it implemented in that exact fashion in of IIS. In particular,
what
> is a "login user" -- is it the name of the user token used to execute the
> web page, or is it some logical user.
>
> Since you are doing custom authentication/authorization behavior (also an
> application level construct outside of the authentication services
provided
> by IIS), you must configure IIS to only do anonymous authentication and
make
> your ISAPI Filter implement the custom authentication/authorization
> behavior.
> The Filter can populate the AUTH_USER/REMOTE_USER server variable as
> well as cs-username in the log file, and it can also control the value of
> LOGON_USER -- essentially what "SetLoginUser" does on a logical scale at
the
> application level, but you must do it at an HTTP level since that's all
IIS
> understands.
>
> --
> //David
> IIS
> This posting is provided "AS IS" with no warranties, and confers no
rights.
> //
> "Owen" <ojm@acm.org> wrote in message
> news:O0VWf4KTEHA.3332@tk2msftngp13.phx.gbl...
> I've found some information on MSDN regarding writing a custom logging
> module. Seems a bit of overkill, but if that's what I have to do.... Seems
> like there should be an IIS subroutine called SetLoginUser( strUserName )
or
> something like that....
>
> Thanks,
> Owen
>
> "David Wang [Msft]" <someone@online.microsoft.com> wrote in message
> news:uPmmWPvSEHA.2908@TK2MSFTNGP10.phx.gbl...
> > IIS is extensible.
> >
> > You can write an ISAPI Filter to integrate your own authentication
> routines
> > and also rewrite the cs-username field with whatever you want.
> >
> > --
> > //David
> > IIS
> > This posting is provided "AS IS" with no warranties, and confers no
> rights.
> > //
> > "Owen" <ojm@acm.org> wrote in message
> > news:ucFAhGoSEHA.3812@TK2MSFTNGP11.phx.gbl...
> > Is there no way to allow anonymous access, providing my own
authentication
> > routines (like SiteServer 3.0's Personalization and Membership does) and
> > transmit the user information to IIS6? We do not want to let external
> users
> > have Windows accounts on our servers.
> >
> > Owen
> >
> > "Tom Kaminski [MVP]" <tomk (A@T) mvps (D.O.T) org> wrote in message
> > news:c9qlgf$cbb13@kcweb01.netnews.att.com...
> > > "Owen" <ojm@acm.org> wrote in message
> > > news:eavwPHnSEHA.3448@TK2MSFTNGP09.phx.gbl...
> > > > How do I get IIS4 and IIS6 to write a username (cs-username in
logfile
> > > > fields) to the logfile? All I get now is "-".
> > >
> > > You need to remove anonymous access from the website and force users
to
> > > authenticate.
> > >
> > > --
> > > Tom Kaminski IIS MVP
> > >
http://www.iistoolshed.com/ - tools, scripts, and utilities for
running
> > IIS
> > >
http://mvp.support.microsoft.com/
> > >
http://www.microsoft.com/windowsserver2003/community/centers/iis/
> > >
> > >
> > >
> >
> >
> >
>
>
>
>