"Gramps" <simon_hooker@iprimus.com.au> wrote in message
news:uvLSId1qEHA.348@TK2MSFTNGP15.phx.gbl...
> Hi,
>
>
> My requirement is to verify that a Windows logged-on user is permitted to
> access a given intranet application hosted on IIS
>
> I am to write this Web app.
>
> 1) Is there a best practice approach to this?

> 2) Do user accounts get stored in Db of the new web app? If so, how is
> this affected by a user changing their Windows password?

> 3) I've read doco on authentication, anonymous etc and determined that if
> web application is accessed only from the company intranet then Windows
> Authentication seems possible and without storing account info locally to
> new web app.
> - Is this correct?
> - Can the web app be restricted to certain users rather than all valid
> windows accounts?

> 4) How does windows authentication fit with those users at home say, with
> a dial-up internet connection, trying to access the web app?

"Gramps" <simon_hooker@iprimus.com.au> wrote in message
news:uvLSId1qEHA.348@TK2MSFTNGP15.phx.gbl...
> Hi,
>
>
> My requirement is to verify that a Windows logged-on user is permitted to
> access a given intranet application hosted on IIS
>
> I am to write this Web app.
>
> 1) Is there a best practice approach to this?
> 2) Do user accounts get stored in Db of the new web app? If so, how is
> this affected by a user changing their Windows password?
>
> 3) I've read doco on authentication, anonymous etc and determined that if
> web application is accessed only from the company intranet then Windows
> Authentication seems possible and without storing account info locally to
> new web app.
> - Is this correct?
> - Can the web app be restricted to certain users rather than all valid
> windows accounts?
>
>
> 4) How does windows authentication fit with those users at home say, with
> a dial-up internet connection, trying to access the web app?
>
>
> Thanks.
>
>
>
>