Re: Windows Integrated Auth/Basic Auth

From: Mike Moore [MSFT] (michmo@online.microsoft.com)
Date: 03/15/03 

From: michmo@online.microsoft.com ("Mike Moore [MSFT]")
Date: Sat, 15 Mar 2003 00:17:16 GMT

Hi Rafal and Joseph,

Both Basic and Windows Integrated authentication save their credentials on
the client (Windows integrated is also known as NTLM and also as
Challenge-Response). Therefore, you need to convince the client browser to
release the credentials. With Internet Explorer, you can do this with an
ActiveX control as described in this article.

195192 HOWTO: Clear Logon Credentials to Force Reauthentication
http://support.microsoft.com/?id=195192

Thank you, Mike Moore
Microsoft, ASP.NET

This posting is provided "AS IS", with no warranties, and confers no rights.

--------------------
>From: "Joseph Geretz" <jgeretz@nospam.com>
>References: <024201c2e4ae$542af8e0$3301280a@phx.gbl>
>Subject: Re: Windows Integrated Auth/Basic Auth
>Date: Fri, 7 Mar 2003 09:59:58 -0500
>Lines: 20
>X-Priority: 3
>X-MSMail-Priority: Normal
>X-Newsreader: Microsoft Outlook Express 6.00.2800.1106
>X-MimeOLE: Produced By Microsoft MimeOLE V6.00.2800.1106
>Message-ID: <Oigk0mL5CHA.3912@TK2MSFTNGP10.phx.gbl>
>Newsgroups: microsoft.public.dotnet.framework.aspnet.security
>NNTP-Posting-Host: 216-211-204-244.firstgate.net 216.211.204.244
>Path: cpmsftngxa06!TK2MSFTNGP08.phx.gbl!TK2MSFTNGP10.phx.gbl
>Xref: cpmsftngxa06 microsoft.public.dotnet.framework.aspnet.security:4236
>X-Tomcat-NG: microsoft.public.dotnet.framework.aspnet.security
>
>Hi Rafal,
>
>I have a similar question which I've posted below as 'How to provide Log
Off
>for a Web Application?' posted on 3/6. So far no one has come up with an
>answer but I'm still hoping...
>
>- Joseph Geretz -
>
>"Rafal" <r.otto@eracent.com> wrote in message
>news:024201c2e4ae$542af8e0$3301280a@phx.gbl...
>> I would like to set Basic Authentication and Integrated
>> Windows Authentication on my web app to give an access
>> automatically for users logged in to the system without
>> any click. However, I would like then to give a
>> possibility to logout and login as a different account.
>> Any idea how to do that?
>>
>> Rafal
>
>
>

Relevant Pages

  • Re: BASIC authentication Issues with IE - Part II - Solved but WHY?
    ... it does not know the difference between a request from IE or from ... some other HTTP client. ... Some other authentication schemes are more ... IIS can sometimes remember the token for a particular set of credentials so ...
    (microsoft.public.inetserver.iis.security)
  • Re: ISAPI Authentication
    ... The job of your authentication filter is to accept ... non-Windows credentials from the client and then map them to a Windows ...
    (microsoft.public.inetserver.iis.security)
  • Re: Anonymous and integrated authentication for Web service
    ... I tried changing values in the UseDefaultCredentials and Credentials ... You need to write the client appropriately. ... Given this are you saying they both can call the same web service? ... Integrated Windows authentication ...
    (microsoft.public.inetserver.iis.security)
  • RE: simulating asp.net impersonation
    ... And this will depend on the client credential passed from the ... windows, webservice dosn't support interactive ... through the proxy class's Credentials property and specify the ... Message to contain our custom authentication info. ...
    (microsoft.public.dotnet.framework.windowsforms)
  • Re: Passing credentials to web app
    ... Sharepoint is not what manages the authentication, ... So the question is not how does Sharepoint pass the credentials, ... I want users to launch the web app out of SharePoint, ...
    (microsoft.public.sharepoint.portalserver.development)