Re: Anonymous and Domain user combo on IIS

From: Deadbeef (deadbeef_at_mailcan.com)
Date: 06/30/03

Next message: Dave: "Blocking .EXE"
Previous message: Dino Marcantonio: "Authentication issue with IIS"
In reply to: Andreas Klein [MSFT]: "Re: Anonymous and Domain user combo on IIS"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

Date: Mon, 30 Jun 2003 16:53:47 +0200

I acknowledge the fact that anonymous contradicts with the authentication
method I use for my server

I would like that if the IIS detects anonymous user, it replaces it with a
predifined account on our domain/local users. Then I could leave anonymous
OFF and could still detect an anonymous user?

Is ISA server any help with this wierd question?

(the reason for this question:
Our company is removing some smaller companies of the domain. But stil want
them to use some of our intranet for recalling data. They will enter through
the internet.
My application is build on recognising the users by thyer logon name.
anonymous users cannot be detected because they get the popup.
)

"Andreas Klein [MSFT]" <andrekl@online.microsoft.com> wrote in message
news:Oa$F06wPDHA.2700@tk2msftngp13.phx.gbl...
> It might be easier to add a bit of logic and use a session var to the
> LOGON_USER var content. In case of anonymous you set thist to whatever you
> want so your code works as expected. Then enable anonymous access for the
> pages you want to be accessible.
>
> Your requirements contradict the design of what the LOGON_USER var is for.
> The prompt will always be there if you want the user to be authenticated
> (i.e. no anonymous allowed).
>
> There are methods to cheat but these will introduce considerable security
> issues so I cannot list these here (nor would I recommend to continue
> working into that direction).
>
> I hope this still helps.
>
> --
> Mit freundlichen Grüßen / Kind Regards,
>
> Andreas Klein
> Microsoft Services
>
> Die Inhalte der in dieser Newsgroup eingestellten Nachrichten stammen von
> Dritten. Microsoft kann daher für die Richtigkeit und Vollständigkeit der
> Inhalte keine Haftung übernehmen.
> This posting is provided "AS IS" with no warranties, and confers no
rights.
>
>

Next message: Dave: "Blocking .EXE"
Previous message: Dino Marcantonio: "Authentication issue with IIS"
In reply to: Andreas Klein [MSFT]: "Re: Anonymous and Domain user combo on IIS"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

Relevant Pages

Re: Use of IP address causes IE to prompt for password?
... My file system where locked down, so the anonymous user ... authentication" NEVER works without prompting for username ... the MSXML2.XMLHTTP objects against this server. ...
(microsoft.public.inetserver.iis.security)
Re: Clients cannot get to my Site - Help!
... > get people to the site through the internet. ... My server is Windows XP and I ... I have been through IIS ... Anonymous user is checked. ...
(microsoft.public.dotnet.framework.aspnet)
Re: Unable to receieve mail from Internet
... Perhaps an anonymous user is trying to send mail to a ... Check SMTP Virtual Server Access Tab. ... test test test ... 550 5.7.1 Requested action not taken: ...
(microsoft.public.exchange.admin)
accessing share from isapi
... I try to access share on another computer from ISAPI dll. ... If I call the dll from IE running on the server where IIS 5 runs, ... anonymous user and access is denied. ...
(microsoft.public.inetserver.iis)
Problem w/ Integrated Windows Authentication
... I have an ASP page that connects to an .MDBfile ... on another win2000 server. ... accountas the Anonymous user on the virtual ... MDB file is in the IIS box. ...
(microsoft.public.inetserver.iis.security)