CF to IIS5 authentication based on cf app userid/pass

Ask a Question related to Coldfusion - Advanced Techniques, Design and Development.

  1. pgriff #1

    Default CF to IIS5 authentication based on cf app userid/pass

    I have a CF application on a standalone win2k server with IIS 5. Currently, we
    use a cf to authenticate users and set session variables to allow further
    access to the site. We've just noticed that if you don't login, but provide a
    valid path to a non-cfm document (test.txt or myword.doc), that you can view
    the files. This can't happen!

    Is there anyway for me to create a win2k service account to use between CF and
    IIS so that I can lock down the directories with non-cfm files. I'd like to
    remove the allow anonymous access and require basic authentication with that
    service account - but I don't want users to be prompted for that service acct
    login.

    Is there a way in cf, that once the user logs in via cf, that I can pass the
    service account info to IIS so that they have full access to the site (without
    being prompted by IIS for that windows authentication)? such as
    auth_user/auth_password or remote_user cgi variables?

    pgriff Guest
    Reply With Quote Reply With Quote

    2. Similar Questions and Discussions

    1. Redirect and pass form variables based on radio buttonselection?
      Hi - using ASP/Access/VB Have a radio group with to radio buttons. If button 1 is selected - then pass the form variables and go to page 1 If...
    2. Redirect and pass form variables based on redion buttonselection?
      Hi - using ASP/Access/VB Have a radio group with to radio buttons. If button 1 is selected - then pass the form variables and go to page 1 If...
    3. windows pass through authentication\authorization....
      I have a requirement for a company intranet where they want to use a single sign-on with their windows 2003 domain (AD) so I was thinking of using...
    4. Problem with authentication when using Windows XP in IIS5
      I have a page that authenticates users by reading Request.ServerVariables("AUTH_USER") and Request.ServerVariables("AUTH_TYPE"). When users try to...
    5. Pass-thru authentication between 2 or more sites
      Hi all, I was wondering if there was a nice way to implement authentication between several sites. I currently have 2 web servers, one for the...
  2. cfpaperboy #2

    Default Re: CF to IIS5 authentication based on cf appuserid/pass

    Unfortunately, I don't know the answer, but I'll be interested to see the answers you get. Good question.
    cfpaperboy Guest
    Reply With Quote Reply With Quote
« Previous Thread | Next Thread »

Posting Permissions

  • You may not post new threads
  • You may post replies
  • You may not post attachments
  • You may not edit your posts

Forum Rules


1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 19 20 21 22 23 24 25 26 27 28 29 30 31 32 33 34 35 36 37 38 39 40 41 42 43 44 45 46 47 48 49 50 51 52 53 54 55 56 57 58 59 60 61 62 63 64 65 66 67 68 69 70 71 72 73 74 75 76 77 78 79 80 81 82 83 84 85 86 87 88 89 90 91 92 93 94 95 96 97 98 99 100 101 102 103 104 105 106 107 108 109 110 111 112 113 114 115 116 117 118 119 120 121 122 123 124 125 126 127 128 129 130 131 132 133 134 135 136 137 138 139