You may be better off under IIS as a web server since what you are describing is it's default authentication behaviour (Integrated Windows Authentication). You can create a script directory, set the NTFS permissions on the files so that only the selected Domain users can run the script (presumably an admin team). The script then runs using their account i.e. with their permissions.