As I had said earlier - ISAPI Filter and ISAPI Extension are good ways to
expand/alter IIS behavior. "SetLoginUser" is an application level construct
while IIS is a web server that is application agnostic, so you're not going
to find it implemented in that exact fashion in of IIS. In particular, what
is a "login user" -- is it the name of the user token used to execute the
web page, or is it some logical user.
Since you are doing custom authentication/authorization behavior (also an
application level construct outside of the authentication services provided
by IIS), you must configure IIS to only do anonymous authentication and make
your ISAPI Filter implement the custom authentication/authorization
behavior.
The Filter can populate the AUTH_USER/REMOTE_USER server variable as
well as cs-username in the log file, and it can also control the value of
LOGON_USER -- essentially what "SetLoginUser" does on a logical scale at the
application level, but you must do it at an HTTP level since that's all IIS
understands.
--
//David
IIS
This posting is provided "AS IS" with no warranties, and confers no rights.
//
"Owen" <ojm DeleteThis @acm.org> wrote in message
news:O0VWf4KTEHA.3332@tk2msftngp13.phx.gbl...
I've found some information on MSDN regarding writing a custom logging
module. Seems a bit of overkill, but if that's what I have to do.... Seems
like there should be an IIS subroutine called SetLoginUser( strUserName ) or
something like that....
Thanks,
Owen
"David Wang [Msft]" <someone DeleteThis @online.microsoft.com> wrote in message
news:uPmmWPvSEHA.2908@TK2MSFTNGP10.phx.gbl...
> IIS is extensible.
>
> You can write an ISAPI Filter to integrate your own authentication
routines
> and also rewrite the cs-username field with whatever you want.
>
> --
> //David
> IIS
> This posting is provided "AS IS" with no warranties, and confers no
rights.
> //
> "Owen" <ojm DeleteThis @acm.org> wrote in message
> news:ucFAhGoSEHA.3812@TK2MSFTNGP11.phx.gbl...
> Is there no way to allow anonymous access, providing my own authentication
> routines (like SiteServer 3.0's Personalization and Membership does) and
> transmit the user information to IIS6? We do not want to let external
users
> have Windows accounts on our servers.
>
> Owen
>
> "Tom Kaminski [MVP]" <tomk (A@T) mvps (D.O.T) org> wrote in message
> news:c9qlgf$cbb13@kcweb01.netnews.att.com...
> > "Owen" <ojm DeleteThis @acm.org> wrote in message
> > news:eavwPHnSEHA.3448@TK2MSFTNGP09.phx.gbl...
> > > How do I get IIS4 and IIS6 to write a username (cs-username in logfile
> > > fields) to the logfile? All I get now is "-".
> >
> > You need to remove anonymous access from the website and force users to
> > authenticate.
> >
> > --
> > Tom Kaminski IIS MVP
> > <a style='text-decoration: underline;' href="http://www.iistoolshed.com/" target="_blank">http://www.iistoolshed.com/</a> - tools, scripts, and utilities for running
> IIS
<font color=green> > > <a style='text-decoration: underline;' href="http://mvp.support.microsoft.com/</font" target="_blank">http://mvp.support.microsoft.com/</font</a>>
<font color=green> > > <a style='text-decoration: underline;' href="http://www.microsoft.com/windowsserver2003/community/centers/iis/</font" target="_blank">http://www.microsoft.com/windowsserver2003/community/centers/iis/</font</a>>
> >
> >
> >
>
>
><!-- ~MESSAGE_AFTER~ -->
>> Stay informed about: IIS 4 & 6 username in logfile 
FAQ
Profile
Private Messages
Log in
