Saleslogix web uses a cookie named slxweb for its session info. This is where the authenticated user id etc are stored. For the customer portal the conid and accid from this cookie are used (there is probably another more “real” session mechanism that uses the DB, I didn’t check). Anyway the data in slxweb is stored in encoded form, you need to use the SLXRWEL library to decode it. The password is simply the user’s host. Code:

String slxweb = Request.Cookies["slxweb"].Value;
SLXRWEL.SLXRWEOBJClass slxRwEl = new SLXRWEL.SLXRWEOBJClass();
try
{
slxweb = slxRwEl.RemoveKey(slxweb, Request.UserHostAddress);
}
finally
{
System.Runtime.InteropServices.Marshal.ReleaseComObject(slxRwEl);
}