Wierd Windows Authentication Behavior

From: Craig Vedur (CraigVedur_at_discussions.microsoft.com)
Date: 08/30/05

  • Next message: Lenn: "SSL Webservice, makecert.exe cert issue" 
    Date: Tue, 30 Aug 2005 08:01:30 -0700

    Hey,

    OK, so, i'm implementing windows security in a web app and found a strange
    thing. can anyone explain what is going on?

    I have my web app and in web.config i have the following entries in their
    respective places
    :
    <authentication mode="Windows" />
        <identity impersonate="true" />
        <authorization>
            <allow users="*" />
        </authorization>

    In IIS i have disabled anonymous access and set integrated windows
    authentication.

    So, I had 3 tests:

    1) Logged in from a computer on the DOMAIN with no problem
    2) Logged in from a computer off the DOMAIN and supplied credentials and
    got in fine
    3) I used Remote Desktop Connection to connect to a computer on the DOMAIN
    and was not let in. It didn't even ask me for credentials. I always get
    "You are not authorized to view this page"

    Can anyone explain why I can't view the page by connecting to the webserver
    through RDC (the webserver is obviously on that domain).

  • Next message: Lenn: "SSL Webservice, makecert.exe cert issue"

    Relevant Pages

    • Re: AD Authentication from a Web Server in DMZ
      ... I don't believe that there is a way to do this without the webserver ... actually being a member of the Active Directory Domain. ... web app being dependent upon the domain and the domain being available. ... > Server, we'll do that. ...
      (microsoft.public.inetserver.iis)
    • Re: Reboot Remote Workstation
      ... If the host is a windows xp pro, you can also click on 'windows security' ... which is a little icon above the 'logoff/disconnect' in the start menu. ... > Can we use Remote Desktop Connection to reboot remote ...
      (microsoft.public.windowsxp.work_remotely)