Custom Authentication Debug Problem

From: Steve (steve_at_anonymous.com)
Date: 08/29/03

Next message: Ken Cox [Microsoft MVP]: "Re: Fix for: 'Server Application Unavailable' Error after Applying Security Update for IE"

Previous message: Chris Jackson: "Re: Is Server.Transfer secure?"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

Date: Thu, 28 Aug 2003 15:06:09 -0700

hi,

we've implemented a httpmodule for digest-authentication
and are now facing a debug-problem.

debugging requires windows-authentication being enabled in
IIS, to grant the the current user access to the process.
unfortunately this causes internet explorer to use NTLM-
authentication (regardless of any settings) ... so either
debugging or the digest-authentication works.

do you have any ideas how to solve this?

our approach was to prevent ie from using ntml-auth.

we've tried

* adjusting the security settings

* setting
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersio
n\Internet Settings\DisableNTLMPreAuth to 1

* setting
HKEY_LOCALMACHINE\System\CurrentControlSet\Control\Lsa\lmco
mpatibilitylevel to 1, 3, 5

* setting
HKEY_LOCALMACHINE\Software\Microsoft\InternetExplorer\Secur
ity\NTLM\SchemeList to (well...) absurd values

non of these attempts was crowned with success.

are there any other possibilities?

any help will be gratefully appreciated!

Next message: Ken Cox [Microsoft MVP]: "Re: Fix for: 'Server Application Unavailable' Error after Applying Security Update for IE"

Previous message: Chris Jackson: "Re: Is Server.Transfer secure?"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]