Nope... I want them to put their AD User and Pass into a page that isn't part of Moodle. That page should then ideally call the moodle api invisibly to create necessary auth cookies/sessions (which is perfectly doable with Invisionboard's API, but there's no documentation to say how it can be done for Moodle), so that when they DO go to moodle, it doesn't prompt them for credentials as this was already done when they logged into our staff portal.

At the moment, all I can find is instructions to do the reverse... log into Moodle first and use that to create the auth cookies for all the other systems.