Re: Intermittent access to web site secured with Windows authentication
From: Marcus Crowley (crowley_at_hkstar.com)
Date: 06/28/03
- Previous message: Sarah: "IIS Lock Down Tool"
- In reply to: David Wang [Msft]: "Re: Intermittent access to web site secured with Windows authentication"
- Next in thread: David Wang [Msft]: "Re: Intermittent access to web site secured with Windows authentication"
- Reply: David Wang [Msft]: "Re: Intermittent access to web site secured with Windows authentication"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Date: Sat, 28 Jun 2003 08:08:06 +0800
Hi David,
Thinking about it again, the other server in our office with Windows
authentication is our old intranet server at
http://dev.pacificconnections.com/intranet/
With this one, everyone can get in all the time and we don't need to prefix
the username with our domain. It runs NT rather than 2000 but surely that's
not the explanation for the problem. What do you think?
Regards
"David Wang [Msft]" <someone@online.microsoft.com> wrote in message
news:ujkaPF8NDHA.3664@tk2msftngp13.phx.gbl...
> Windows Authentication is connection-based and not delegatable. Thus, it
is
> useful primarily in intranet scenarios, like when you are at work.
>
> When you try to access it from home (i.e. Internet scenario), there are
> various elements of Internet networking that can prevent Windows
> Authentication from working properly. For example, your ISP may be
routing
> you through its proxy, and this proxy can violate the "connection-based"
> aspect of Windows Authentication and render it invalid.
>
> For example, Basic authentication, though clear-text, is not
> connection-based and by nature delegatable. When used with SSL, it'll
> likely work in your access scenario. Other authentication methods
supported
> by IIS are also more "Internet Scenario Friendly".
>
> --
> //David
> This posting is provided "AS IS" with no warranties, and confers no
rights.
> //
> "Marcus Crowley" <crowley@hkstar.com> wrote in message
> news:e9dv%23BONDHA.2348@TK2MSFTNGP11.phx.gbl...
> Hi all,
>
> I've searched the Web (MS, Google, Raging) and browsed this newsgroup
> without success for a problem which has been ongoing for two months:
>
> The site is our intranet running on www.pacificintranet.com. It sits on a
> Windows 2000 Server sitting in our office. I can access it from my work PC
> running IE6 on Windows 2000 Professional with one login prompt - it uses
> Windows authentication - but whenever I try to access it from home, I
> usually have trouble. At home I'm running IE6 on Windows XP Professional
and
> normally get three login prompts and a 401.1 error. Very rarely, I can get
> in after multiple login prompts (one for each image / file?). Sometimes -
as
> just now - I can login then be denied when I refresh the page I'm looking
> at. Some of my colleagues have this problem from home but some don't,
> eventhough they are running the same browser and Windows XP Home. I can't
> figure out why (a) some of us can get in fine and a few of us can't, and
(b)
> why the problem is intermittent.
>
> I'm running of of ideas... My thought was to check the log files but these
> don't even seem to be working properly as we might (successfully) request
a
> page at 4pm (from a PC in the office) but the latest log file entry is
from
> earlier in the morning.
>
> Many thanks
>
> Marcus
> Hong Kong
>
>
>
- Previous message: Sarah: "IIS Lock Down Tool"
- In reply to: David Wang [Msft]: "Re: Intermittent access to web site secured with Windows authentication"
- Next in thread: David Wang [Msft]: "Re: Intermittent access to web site secured with Windows authentication"
- Reply: David Wang [Msft]: "Re: Intermittent access to web site secured with Windows authentication"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Relevant Pages
|
