RE: Newbie question: Basic auth works, Chall/Resp fails?

From: Martin Smith (martinsmonline@microsoft.com)
Date: 09/10/02 

From: martinsmonline@microsoft.com (Martin Smith)
Date: Tue, 10 Sep 2002 14:05:33 GMT

----------------------------------------------------------------------------
----------------------------------------------------------------------
From: scanman20@hotmail.com (scanman20)
Newsgroups: microsoft.public.inetserver.iis.security
Subject: Newbie question: Basic auth works, Chall/Resp fails?
Date: 9 Sep 2002 13:24:03 -0700
Organization: http://groups.google.com/
Lines: 14
Message-ID: <66cb4812.0209091224.66835e55@posting.google.com>
NNTP-Posting-Host: 128.112.29.181
Content-Type: text/plain; charset=ISO-8859-1
Content-Transfer-Encoding: 8bit
X-Trace: posting.google.com 1031603043 18891 127.0.0.1 (9 Sep 2002 20:24:03
GMT)
X-Complaints-To: groups-abuse@google.com
NNTP-Posting-Date: 9 Sep 2002 20:24:03 GMT
Path:
cpmsftngxa08!tkmsftngp01!newsfeed00.sul.t-online.de!newsfeed01.sul.t-online.
de!t-online.de!news.belwue.de!news.uni-stuttgart.de!feed.textport.net!sn-xit
-02!sn-xit-01!sn-xit-04!supernews.com!postnews1.google.com!not-for-mail
Xref: cpmsftngxa08 microsoft.public.inetserver.iis.security:10233
X-Tomcat-NG: microsoft.public.inetserver.iis.security

Using NT4, patched up to date and IIS 4. IIS runs great but when I try
to utilize the NT Challenge/Response authentication it always fails
(something about credentials not matching). If I take off
challenge/response and use Basic authentication instead, it works just
fine. I have an SSL certificate so by requiring a secure connection
I'm not worried about the clear text issue that Basic authentication
normally has.

The web server is in a domain (say domain B) that trusts my user
account domain (say domain A) and normally authenticates against
domain A whenever a user logs onto a machine.

Can someone help me and explain why the Basic authentication works but
the Chall/Resp fails?

----------------------------------------------------------------------------
----------------------------------------------------------------------
From: "BB" <Bernard_at_3exp.com>
References: <66cb4812.0209091224.66835e55@posting.google.com>
Subject: Re: Newbie question: Basic auth works, Chall/Resp fails?
Date: Tue, 10 Sep 2002 11:40:53 +0800
Lines: 25
Organization: 3exp - Bernard Cheah
MIME-Version: 1.0
Content-Type: text/plain;
        charset="iso-8859-1"
Content-Transfer-Encoding: 7bit
X-Priority: 3
X-MSMail-Priority: Normal
X-Newsreader: Microsoft Outlook Express 6.00.2600.0000
X-MimeOLE: Produced By Microsoft MimeOLE V6.00.2600.0000
Message-ID: <#KrvwqHWCHA.4008@tkmsftngp11>
Newsgroups: microsoft.public.inetserver.iis.security
NNTP-Posting-Host: 203.115.210.205
Path: cpmsftngxa08!tkmsftngp01!tkmsftngp11
Xref: cpmsftngxa08 microsoft.public.inetserver.iis.security:10243
X-Tomcat-NG: microsoft.public.inetserver.iis.security

Read this
INFO: How IIS Authenticates Browser Clients
http://support.microsoft.com/default.aspx?scid=KB;EN-US;Q264921

Rgds.

Hi,

Check to make sure that your users have "Access this Computer over the
Network" rights.

Thanks,
Martin

This posting is provided “AS IS” with no warranties, and confers no rights.
You assume all risk for your use. © 2001 Microsoft Corporation. All rights
reserved.

"scanman20" <scanman20@hotmail.com> wrote in message
news:66cb4812.0209091224.66835e55@posting.google.com...
> Using NT4, patched up to date and IIS 4. IIS runs great but when I try
> to utilize the NT Challenge/Response authentication it always fails
> (something about credentials not matching). If I take off
> challenge/response and use Basic authentication instead, it works just
> fine. I have an SSL certificate so by requiring a secure connection
> I'm not worried about the clear text issue that Basic authentication
> normally has.
>
> The web server is in a domain (say domain B) that trusts my user
> account domain (say domain A) and normally authenticates against
> domain A whenever a user logs onto a machine.
>
> Can someone help me and explain why the Basic authentication works but
> the Chall/Resp fails?

Relevant Pages

  • RE: OMA Error 1503
    ... Basic Authentication is the only checkbox selected for the OMA VD. ... Re-run the CEICW on your SBS box and ensure Outlook Mobile Access is ... Install MBExplorer by installing IIS 6 Resource Kit Tools: ... This newsgroup only focuses on SBS technical issues. ...
    (microsoft.public.windows.server.sbs)
  • Re: Passing credentials
    ... > I have two web sites on the same IIS ... > server. ... Site B is set with 'Basic Authentication' mode. ... Tom Kaminski IIS MVP ...
    (microsoft.public.inetserver.iis.security)
  • Re: IIS With Basic Authentication Set/FormsAuthentication - HELP PLS!?
    ... IIS does... ... When you use Forms authentication you have to set IIS to Anonymous ... > Basic Authentication set. ... > again, trying to avoid the browser prompt, and add the authentication to ...
    (microsoft.public.dotnet.security)
  • Re: IIS With Basic Authentication Set/FormsAuthentication - HELP PLS!?
    ... IIS does... ... When you use Forms authentication you have to set IIS to Anonymous ... > Basic Authentication set. ... > again, trying to avoid the browser prompt, and add the authentication to ...
    (microsoft.public.inetserver.iis.security)
  • Re: IIS With Basic Authentication Set/FormsAuthentication - HELP PLS!?
    ... IIS does... ... When you use Forms authentication you have to set IIS to Anonymous ... > Basic Authentication set. ... > again, trying to avoid the browser prompt, and add the authentication to ...
    (microsoft.public.dotnet.framework.aspnet.security)