« Previous Next »

Thread: IIS7 + PHP5.2 + (Optional) NTLM?

Last post 05-12-2009 4:59 PM by rpanning. 2 replies.

Average Rating Rate It (5)

RSS

Page 1 of 1 (3 items)

Sort Posts:

Shortcuts

Search | Active Posts | Unanswered Posts | View all users

  • 05-11-2009, 4:46 PM

    • rpanning
    • Not Ranked
    • Joined on 06-26-2002, 4:55 AM
    • Twin Cities, Minnesota
    • Posts 2

    IIS7 + PHP5.2 + (Optional) NTLM?

    Reply Contact

    We have our Web server running IIS7 and PHP 5.2 on our internal ActiveDirectory domain. What I'd like to get setup is NTLM username to be passed to PHP, if there is one.

    So that, if a user is logged into a workstation on our AD domain, their username is passed to IIS > PHP so that I know who is already logged in, for SSO. However, if they are not on the domain (eg. viewing from the outside, Web) that nothing is passed to IIS > PHP and there is no login prompt for the user. Is this possible? Thanks

    Tags:

  • 05-12-2009, 7:19 AM In reply to

    Re: IIS7 + PHP5.2 + (Optional) NTLM?

    Reply Contact

    not sure if I am answering it correct .. but you can display a login form and then authenticate against AD is what I know and what I have seen ... As far as built-in SSO implementation with IIS and PHP ... I havn't seen that ... for that you might have to go for ADFS or any 3rd party product like Siteminder from CA... hope this helps...

    Regards,
    MA Khan
    http://www.iisworkstation.com

    “Please remember to click “Mark as Answer” on the post that helps you, and to click “Unmark as Answer” if a marked post does not actually answer your question. This can be beneficial to other community members reading the thread. ”

  • 05-12-2009, 4:59 PM In reply to

    • rpanning
    • Not Ranked
    • Joined on 06-26-2002, 4:55 AM
    • Twin Cities, Minnesota
    • Posts 2

    Re: IIS7 + PHP5.2 + (Optional) NTLM?

    Reply Contact

     Hi, I actually started a thread over at phpBuilder and we figured out a solution. Basically I have both Anonymous Authentication and Windows Authentication enabled. It seems like anonymous is the default. So in PHP I am going to detect if the client is a domain workstation. If so, send back NTLM headers. That seems to be working!

     However IE is prompting for a login, even though I added it to Trusted Sites. Firefox is working fine, after adding it to network.automatic-ntlm-auth.trusted-uris. That seems backwards to me because I was running into people having problems with Firefox auth and IIS7.

     http://www.phpbuilder.com/board/showthread.php?p=10914253

Page 1 of 1 (3 items)
Microsoft Communities