RE: No one knows?
From: Karl Westerholm [MS] (karlwestonline@microsoft.com)
Date: 07/09/02
- Next message: Karl Westerholm [MS]: "Re: Remote administration"
- Previous message: Karl Westerholm [MS]: "Re: SSL in intranet"
- In reply to: Jerry Benton: "No one knows?"
- Next in thread: Ray Hu [MS]: "RE: Client Authentication - multiple server requests"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
From: karlwestonline@microsoft.com (Karl Westerholm [MS]) Date: Tue, 09 Jul 2002 21:08:16 GMT
It is hard to say precisely what is occurring, however I would probably
approach it first with the filemon & regmon tools available from this link:
http://www.sysinternals.com/ntw2k/utilities.shtml
If the issue is at all permissions-related, running both of these tools
- reproing the problem - and then searching the resulting text log files
for any 'denied' entries will sniff the problem out.
Often we may find a stray user who does not have permissions to a
specific subdir or file which causes the subsequent prompting to take
place. If this problem was at work, the auth prompts would be consistent
however: the same user would be prompted in the same location assuming the
NTFS perms have remained the same throughout.
On the other hand, it *might* have to do with the SSL session expiring
rather then with NTFS/registry perms. In some older IE browsers, the SSL
session would be renegotiated every 2 minutes regardless of how often the
server was set for SSL session renegotiation. Check this KB:
http://support.microsoft.com/default.aspx?scid=kb;EN-US;q265369 (Be sure
to determine whether there is any consistency to the user's browser
versions who experience it before making any modifications)
Regards,
-->Karl
“Please do not send email directly to this alias. This is our online
account name for newsgroup participation only.”
This posting is provided “AS IS” with no warranties, and confers no rights.
You assume all risk for your use. © 2001 Microsoft Corporation. All rights
reserved.
--------------------
| Content-Class: urn:content-classes:message
| From: "Jerry Benton" <jcbenton@atsugi.navy.mil>
| Sender: "Jerry Benton" <jcbenton@atsugi.navy.mil>
| References: <15b2501c2261b$aba25430$b1e62ecf@tkmsftngxa04>
| Subject: No one knows?
| Date: Mon, 8 Jul 2002 23:37:41 -0700
| Lines: 29
| Message-ID: <1440901c22713$1fcb8a50$a4e62ecf@tkmsftngxa06>
| MIME-Version: 1.0
| Content-Type: text/plain;
| charset="iso-8859-1"
| Content-Transfer-Encoding: 7bit
| X-Newsreader: Microsoft CDO for Windows 2000
| X-MimeOLE: Produced By Microsoft MimeOLE V5.50.4910.0300
| Thread-Index: AcInEx/LhnDs7zKFTEW+IbQC4ZKfcg==
| Newsgroups: microsoft.public.inetserver.iis.security
| Path: cpmsftngxa08
| Xref: cpmsftngxa08 microsoft.public.inetserver.iis.security:8236
| NNTP-Posting-Host: TKMSFTNGXA06 10.201.232.165
| X-Tomcat-NG: microsoft.public.inetserver.iis.security
|
| No one out there has ever come across this error? :( Hey,
| maybe I will get ot be a pioneer of something :)
|
| Jerry
|
|
| >-----Original Message-----
| >I am trying to resolve a problem with a box running NT4
| >SP6 and IIS 4.0 with client authentication enabled.
| >
| >When users go to the web server, they are requested to
| >present their certificate, enter their password (security
| >set to high on certificates) and often have the server
| >request the certificate again as parts of the page load
| >(different graphics for example) or when the user goes to
| >another page. Also, some users will get a request after
| an
| >extended amount of time.
| >
| >However, some users never get this error......
| >
| >Any ideas? I'm stumped.
| >
| >Jerry
| >
| >PS - I have checked the file permissions, etc. and they
| >all seem to be in order.
| >.
| >
|
- Next message: Karl Westerholm [MS]: "Re: Remote administration"
- Previous message: Karl Westerholm [MS]: "Re: SSL in intranet"
- In reply to: Jerry Benton: "No one knows?"
- Next in thread: Ray Hu [MS]: "RE: Client Authentication - multiple server requests"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Relevant Pages
|
