Restricting NTLM authentication to some users only
Currently our Mindtouch install authenticates via LDAP against Active Directory.
We make use of groups to restrict access as required, typically at top-level pages and inherit through subpages.
I'd like to setup NTLM, however on reading through various forum posts and KB articles on the topic, I can't determine if it will support what we're trying to do without increasing the number of user accounts.
For pages that are Private or where users are part of an editor group for pages that are Semi-Public, I'd like these to use NTLM instead of manually logging on with their AD credentials as they do now. For public access users, I don't want them to use NTLM as auto-creating their accounts would increase our user count beyond what we're licensed for.
Hopefully I've explained that ok - happy to discuss further.