>I know you said you wanted this to minimize on abuse (someone logging into the site using another person's name) but (and this may be late in the game) why not enforce an NT secure login to access the site.
>
>You could get the user name and password from a simple HTML form and using VFP, VB or VC++ at the server, you could verify it against NT security files that this was the correct username and password for that user. If they know this information then they could just as easily log into their local PC using it as well as your site so the chance of abuse is the same.
>
>Rick posted a snippet of code not too long ago about how to verify a username and password. If you can't find it with a search, I have it printed out somewhere and I could send you the thread number. I think it was under WinAPI.

Hi Larry,

I've been trying to test Rick's code on my NT Server here but GetLastError() is indicating the account doesn't have sufficient privilege. MSDN indicates LogonUser() requires the SE_TCB_NAME ( being part of the trusted computer base; Act as part of the operating system ) privilege to call LogonUser(). Do you ( or anyone else ) know how to assign this privilege in NT Server User Manager? I've looked around in the User Manager but haven't been able to find anything related to this privilege. Or is it assigned elsewhere?

Thanks,
Bill