Re: First time authentication for fully-qualified name

From: Glenn Goodwin (glenn_goodwin8@yahoo.com.au)
Date: 10/25/02 

From: glenn_goodwin8@yahoo.com.au (Glenn Goodwin)
Date: 24 Oct 2002 15:16:29 -0700

Thanks Ken for your reply. I've re-read my last sentence and I
believe it is badly worded. It should read - 'It appears that if you
start IE and then go straight to a certain 'intranet site' using
fully-qualified name that it doesn't correctly pass though the
authentication details'

In regards to your other question - users that connect to our intranet
site after connecting to google get authenticated and don't get
prompted for security. Users that go to our Intranet site first after
coming from 'about:blank' get prompted for credentials.

Below is what users do that get a dialog asking for credentials
1. Start->Run->IEXPLORE. Homepage should be set to about:blank so
when they load they should have no URL in the address bar
2. Type in the Address Bar a fully qualified Intranet Site that is
using Windows Authentication.
Our users get prompted for credentials

On the same PC (after they have closed down all IEs) for the same user
if they do the following they don't get prompted
1. Start->Run->IEXPLORE. Homepage should be set to about:blank so
when they load they should have no URL in the address bar
2. In the URL type www.google.com. Wait for Google to load.
3. Type in a fully qualified Intranet Site that is using Windows
Authentication.
The user doesn't get prompted and is passed through to the Intranet
site.

"Ken Schaefer" <kenRMV@THISadOpenStatic.com> wrote in message news:<#Z9xF8yeCHA.1636@tkmsftngp12>...
> What you said at the end:
>
> > It apepars that if you start IE and then go straight to a certain
> > website that it doesn't correctly pass though the authentication. Any
> > assistance in this issue would be appreciated.
>
> appears to contradict what you said at the beginning...
>
> Are you saying that people who go to www.google.com first, then go to your
> your website are authenticated automatically, or not?
>
> (Also, I believe automatic authentication is only enabled for sites in the
> Intranet zone)
>
> Cheers
> Ken

Relevant Pages

  • Re: First time authentication for fully-qualified name
    ... here, and no matter what I do, I get prompted for authentication if I'm ... Users that go to our Intranet site first after ... > when they load they should have no URL in the address bar ... Type in the Address Bar a fully qualified Intranet Site that is ...
    (microsoft.public.inetserver.iis.security)
  • RE: Deny a User Group with Anonymous Enabled
    ... you're using depends on what authentication method gets used first. ... Integrated Windows Authentication enabled, then no pre-auth header is sent ... When you connect with IE to an intranet site with the FQDN and IP address, ... Now, with those exceptions aside, here is how IIS authenticates users: ...
    (microsoft.public.inetserver.iis.security)
  • Authentication problem
    ... I've a strange problem using Integrated Authentication on an IIS 5 hosted ... No matter what config I use IE will always prompt for user, ... Intranet site added to IE Local Intranet security Zone and IE security ...
    (microsoft.public.inetserver.iis.security)
  • Silent Authentication
    ... I am designing an intranet site. ... requirement to provide silent authentication against corporate Active ... credentials (e.g. using a browser on a UNIX box not integrated with ...
    (microsoft.public.inetserver.iis.security)
  • webclient object and downloading output file from an intranet site
    ... I have an intranet site with the login page ... authentication and validating user credentials stored in a SQL Server ... disk of the server using webclient object and its download method, ...
    (microsoft.public.dotnet.framework.aspnet.security)
Loading