Hi

I am running CFMX7 on Windows2003 Server and IIS6 as webserver. As far as I
need single logins, I am using IIS with "Integrated Windows Security" for
authentication (ADS). To manage authorization in Coldfusion, I tried the "Web
server?based authentication user security example' on page 391 in the MX7
Develeppers Guide (see attached code).
Unfortunately the IsDefined("cflogin") allways evaluates to false (doc says:
This should never happen.) and I get the "Authentication data is missing."
message. Looking at the cgi vars, I see auth_user set to "domain\user" (the ADS
user I logged on with) and auth_type=Negotiate.

Can anyone help?



<cfcomponent>
<cfset This.name = "Orders">
<cffunction name="OnRequestStart">
<cfargument name = "request" required="true"/>
<cflogin>
<cfif IsDefined("cflogin")>
<cfif cflogin.name eq "admin">
<cfset roles = "user,admin">
<cfelse>
<cfset roles = "user">
</cfif>
<cfloginuser name = "#cflogin.name#" password = "#cflogin.password#" roles
= "#roles#" />
<cfelse>
<!--- This should never happen. --->
<h4>Authentication data is missing.</h4>
Try to reload the page or contact the site administrator.
<cfabort>
</cfif>
</cflogin>
</cffunction>
</cfcomponent>