Re: authentication against trusted domains question.

From: Tom Kaminski [MVP] ("Tom)
Date: 09/17/02 

From: "Tom Kaminski [MVP]" <tkaminsk (AT) att (DOT) com>
Date: Tue, 17 Sep 2002 16:15:32 -0400

"Icefox" <icefx@yahoo.com> wrote in message
news:gcLh9.749502$oa7.26665754@Flipper...
> hello IIS experts !
>
> I have a question about the following
> I have a corporate website. some subsites are both challenge response
and
> basic authentication enabled. anon acces = off
> we use NT4 - iis 4 on our webserver
>
> the webside exists in a resource domain X, and must validate users which
> are 2 member domains Y and Z (students and teachers)
>
> i have set the relevant subsites C/R and Basic Auth. to validate users
from
> all trusted domains (Y and Z ) by adding the famous \ . so they dont have
to
> login when they are inside the school ( single login solution) ..but must
> login when they are outside the school on whatever workstation ( at home
> ..internet cafe etc..)
>
> this is usual stuff ..ok ..it works. BUT...only when they know their
DOMAIN
> ..which is asked by the login box .
>
> why does a student or teacher still has to login with domain\UserID ?
(keep
> within mind that the login box slightly differs with different OS clients
> ( win95 win98 win2k and winXP)
>
> at my school where there are 14000 students i have the problem that some
> students (mostly new ones) dont know the name of their member domain...so
> they only type their userID and Password ..which is followed then by
"acces
> denied "

I think what's happening is the browser is only going with Integrated Auth,
and
integrated only works within the same domain. If you set it to just basic,
does it work?

http://support.microsoft.com/default.aspx?scid=KB;EN-US;Q264921

Relevant Pages

  • authentication against trusted domains question.
    ... hello IIS experts! ... are 2 member domains Y and Z (students and teachers) ... i have set the relevant subsites C/R and Basic Auth. ... login when they are inside the school..but must ...
    (microsoft.public.inetserver.iis.security)
  • Urgent - How do you stop a user login more than once at a time?
    ... I was wondering I work in a school and we use server 2003 active directory ... However students are letting other ... students use there login username and password which is against the school ... For example only allowing the login once at any one ...
    (microsoft.public.dotnet.security)
  • Re: I need help posting copyrighted content!
    ... You would have to create login application on your site prior to users having access to the links. ... The best approach is to get the school to restrict access to the individual files, ... I'm trying to make a class webpage for my school. ... I tried deleting cookies, etc, but it still doesn't prompt ...
    (microsoft.public.frontpage.client)
  • Re: DEFCON 16 and Hacking OpenVMS
    ... invented login spoofing to steal passwords. ... put up a login prompt and wait for some sucker to come along and type ... VMS was ever subject to "Trojans", this being the classic Trojan attack. ... examined the evidence and then cut a bloody swath through the grad students. ...
    (comp.os.vms)
  • Re: DEFCON 16 and Hacking OpenVMS
    ... Bill Gunshannon wrote: ... They would put up a login prompt and wait for some sucker to come along and type his user name. ... VMS was ever subject to "Trojans", this being the classic Trojan attack. ... I called the director of the lab who came to my office, examined the evidence and then cut a bloody swath through the grad students. ...
    (comp.os.vms)
Quantcast