I need an ActiveX control (or maybe a Browser Helper Object) that can run inside of IE for the purpose of authenticating users using hardware specific checks before allowing them to view certain webpages. Theory of Operation: 1) User tries to login to a webpage on our server 2) Control loads if not loaded (Only IE is supported for this system) 3) Control checks certain items on local machine and prompts user for password 4) If password matches server records allows user to proceed 5) If hardware info or password does not match user is rejected The reason I say maybe a BHO might work is that the client might want the session terminated if the user pulls the key from the system. I do not know a way to do this from an ActiveX control, but I think it could be easily done from a BHO. The most important point here is to communicate with the server side file (ASP and ASP.NET) that the users session is authorized. The users password and client information will be validated on the server. This system must not be easily spoofed. I do not want a BHO that just adds a header to the information going back to the server, anyone with a packer sniffer could duplicate this easily. The specifics of what has to be checked on the client side system will be discussed with serious parties only.
1) Complete and fully-functional working program(s) in executable form as well as complete source code of all work done. 2) Complete ownership and distribution copyrights to all work purchased. 3) Documentation on how to setup the control. We will use our own setup program.
Windows XP / 2000, IE 5.5 or higher