In the page_load() for weblogin.aspx, I check the client's IP address using a regular expression. If your network is set up properly, all of your internal users are coming from a reserved block of IP addresses, maybe 10.nnn.nnn.nnn, or 172.nnn.nnn.nnn. These are also the only users who will be able to authenticate using Windows authentication. If the client's IP address passes the RegEx test, the client is redirected to winlogin.aspx. If not, the client stays at weblogin.aspx
Would you like to comment?
Join Diigo for a free account, or sign in if you are already a member.