Probably the easiest way is to run PHP on your NT server using IIS. Redirect to the NT server, authenticate the user against the NT domain, then redirect back with either an encrypted version of the user name (to prevent spoofing) or some IP checking to make sure no one is spoofing the redirection transaction.
Dave
===========================================
http://badblue.com/helpphp.htm
Free small footprint web server for Windows
P2P file-sharing, PHP, wireless apps & more
