A customer of our product is running SiteMinder, which renders our current Authentication and Authorization scheme via Acegi useless. To my understanding, SiteMinder utilizes the Authorization header, which is also our current means of Authentication within our product. Based on SiteMinder's usernames not mapping to our product's usernames, we must find a way around this. My idea is to use a custom Authorization header, such as 'OUR-AUTHORIZATION' rather than 'AUTHORIZATION'. Can this be accomplished with Acegi, and if so how...if not, is there a solution anyone could suggest?