My supervisor today asked me if I could put together a company directory for our intranet site. Preferably, I would like to do this in PHP because I'm useless with asp. Now, would it be secure enough to just modify whatever cookie is set by asp when they login to the current sharepoint site and have the PHP/company directory part of the site check against that? OR, is there any possible way for PHP to integrate with active directory, so that people don't need a second set of login credentials? Am I rambling here or making sense?