Using windows authentication in a workgroup to manage application users

摘要

An system for authenticating users of an application program executing at a front-end computer using the security features built into the operating system of a logon computer is provided. Initially, an administrator establishes user accounts for each user with an operating system executing at the logon computer with access to application resources. When the application program starts executing at the front-end computer, the application program prompts the user for credentials. The application program attempts to access resources managed by the logon computer using the received credentials. When access to a resource is successful, the application program knows that the logon computer has authenticated the user and the user is authorized to access the resource. In this manner, the application program can take advantage of the security features built into the operating system executing at the logon computer to authenticate users of the application program and authorize access to application resources.

主权项

1. A method, performed by a first computing system having a processor, for authenticating a user of a first application executing at a second computing system, the method comprising:
establishing a user account with an operating system executing at the first computing system and configured to manage access to a first resource; receiving, from the second computing system, a request to authenticate a user, the request including credentials; requesting access to the first resource using the established user account and the received credentials; and sending, to the second computing system, an indication of whether the first resource was successfully accessed using the established account and the received credentials, wherein authentication of the user is based at least in part on whether the resource was successfully accessed at the first computing system using the established account and the received credentials.