Re: Windows Authentication

From: Thomas Deml [MS] (thomad@online.microsoft.com)
Date: 09/27/02 

From: "Thomas Deml [MS]" <thomad@online.microsoft.com>
Date: Fri, 27 Sep 2002 13:48:29 -0700

Rachel,

Windows authentication doesn't work over the Internet. You have to use basic
or digest authentication. There are a couple of articles on
www.microsoft.com on how IIS authentication works. I would search for "ntlm
and kerberos and iis and proxy".

Hope this helps.

Thomas Deml
Lead Program Manager
Internet Information Services
Microsoft Corp.

"Rachel" <rdkozlowski@ameritech.net> wrote in message
news:925b01c265ce$ee610800$36ef2ecf@tkmsftngxa12...
> Hi:
>
> I am having difficulties testing a website.
> I want everyone to have access.
> The website was built using Commerce Server 2000.
> It is being tested using a dial up connection modem.
> 1. I connect to the internet using a modem.
> 2. I go to ipconfig and find the ip address.
> 3. Using Internet Information Service Manager I set the
> default website to the commerce server website.
> 4. Under default website properties Anonymous Access is
> checked.
> 5. Integrated Windows Authentication is checked. (The
> website will not come up on my computer unless it is
> checked.)
> 6. Under the commerce website properties Anonymous Access
> is checked
> 7. Integrated Windows Authentication is checked.
> 8. WWW root folder is shared.
> 9. Permissions on WWW root folder is Everyone with
> fullcontrol, change and read checked. ISUR has read
> permissions, IWAM has read permissions.
> 10. Commerce Website folder is shared.
> 11. Permissions is Everyone with fullcontrol, change, and
> read checked. ISUR has read permissions and IWAM has read
> permissions.
>
> I can't get into the website. It asks me for my password,
> I type it in and my domain name and access is denied. If
> I turn off Windows Authentication on everything then I
> cannot get into the site even on the computer it is
> written on and an error page comes up on the Internet
> stating it cannot find the website. Domain name is
> registered on the Win 2000 Server, but not purchased on
> the Internet, but because it is being tested in dialup
> should that matter? I want to make sure it works first.
> What am I leaving out?
>
> Thanks in advance,
>
> Rachel

Relevant Pages

  • Re: [IIS 6] A summary of my strange situation
    ... security-related configuration, so maybe someone can help me out of this. ... Then I created new subdirs for every website I'm ... other website or subdirectory I try to enable Windows authentication on ... administrators, web developers and SYSTEM, and I gave read permissions to ...
    (microsoft.public.inetserver.iis.security)
  • Windows Authentication
    ... The website was built using Commerce Server 2000. ... I connect to the internet using a modem. ... permissions, IWAM has read permissions. ...
    (microsoft.public.inetserver.iis.security)
  • [IIS 6] A summary of my strange situation
    ... security-related configuration, so maybe someone can help me out of this. ... OWA on my domain's main website), then I created a "web sites" dir on my D: ... other website or subdirectory I try to enable Windows authentication on ... administrators, web developers and SYSTEM, and I gave read permissions to ...
    (microsoft.public.inetserver.iis.security)
  • Re: DNS Issue
    ... > access this website via IP address just fine internally. ... server has a separate address for each web site, ... >>> citizens to access this website via the internet. ... >>> I get a error in my browser Host not foound. ...
    (microsoft.public.win2000.dns)
  • RE: Finding multi-homed, internet connected, systems as potential point-of-entry.
    ... It uses ICMP and may or may not work depending on how the local network is set up. ... > -Send a spoofed (spoof an internet address under our control) message ... > Audit your website security with Acunetix Web Vulnerability Scanner: ... Up to 75% of cyber attacks are launched on shopping carts, ...
    (Pen-Test)