Log on locally fro basic authentication

From: Owen Parry (o.parry@wales.ac.uk)
Date: 01/17/03

• Next message: Gabriel Brienza: "Http/1.1 403 access forbidden help"
• Previous message: Egbert Nierop \(MVP for IIS\): "Re: How can I see what is currently going on in IIS5?"
• Next in thread: BB: "Re: Log on locally fro basic authentication"
• Reply: BB: "Re: Log on locally fro basic authentication"
• Reply: Stephen L Nicoud: "Re: Log on locally fro basic authentication"
• Reply: Owen Parry: "Re: Log on locally fro basic authentication"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

---

From: "Owen Parry" <o.parry@wales.ac.uk>
Date: Fri, 17 Jan 2003 10:23:06 -0000

I'm trying to develop an intranet accessible to the users of three internal
networks directly linked by ISDN. Web server is IIS4 on NT4 SP6a

I'm starting with basic authentication (as not all users use Internet
Explorer) just to get the set up right before getting too clever with SSL
etc. My users are in 3 domains U1, U2 and U3. U1 is the main domain where
the web server resides and there is 2-way trust between u1 and u2 and u1
and u3 (but not between U2 and U3).

All users go through a proxy server which also resides in U1.

All users on U1 have no problem getting through the authentication prompt to
the site. My understanding is that users on U2 and U3 should use a username
such as "u2\username" and their normal password.

However, I note that the "Log on locally" user right is necessary for basic
authentication to work, so I have set the user right for Domain Guests and
Domain Users, but find that whatever I do, U2 and U3 domain users cannot get
through the authentication dialog.

Can someone point out where I'm going wrong ?

---

• Next message: Gabriel Brienza: "Http/1.1 403 access forbidden help"
• Previous message: Egbert Nierop \(MVP for IIS\): "Re: How can I see what is currently going on in IIS5?"
• Next in thread: BB: "Re: Log on locally fro basic authentication"
• Reply: BB: "Re: Log on locally fro basic authentication"
• Reply: Stephen L Nicoud: "Re: Log on locally fro basic authentication"
• Reply: Owen Parry: "Re: Log on locally fro basic authentication"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

---

Relevant Pages Re: Accessing server in DMZ ... Users from the internet - are these domain users accessing remotely? ... If they're domain users, then you're probably best bringing this into the ... Les Connor [SBS MVP] ... >>> The credential prompt is from the Web Server. ... (microsoft.public.windows.server.sbs) Re: .Net Application and Security ... > will be accessing the WEB server over the Internet through a VPN ... > password by using SSL. ... > the user-id and password and then switch over to HTTP once authentication ... (comp.security.firewalls) Re: ASP.NET Authenication Question ... If you set the anonymous authentication in you loose the users identity ... If you use "windows integrated" or basic the web server can't contact the ... The last two ways functions properly only if web server has the domain users ... as local users, but this is a very expensive solution (ie. password ... (microsoft.public.dotnet.framework.aspnet.security) Re: Log on locally fro basic authentication ... > I'm starting with basic authentication (as not all users use Internet ... > Domain Users, but find that whatever I do, U2 and U3 domain users cannot ... (microsoft.public.inetserver.iis.security) Re: .Net Application and Security ... >> will be accessing the WEB server over the Internet through a VPN ... >> authentication as taken place. ... >> reside on that server and SSL does cost to put on a second server. ... >> I am also kind of curious as to how this would play on a Web Server Farm. ... (comp.security.firewalls)

---

We are proud to have Web Hosting and Rack Housing from 9 Net Avenue Deutschland.
(11)