Re: Integrated authentication problem

From: Tom Kaminski [MVP] ((A_at_T))
Date: 09/19/03

Next message: Tom Kaminski [MVP]: "Re: authentication problem"
Previous message: Tom Kaminski [MVP]: "Re: basic authentication"
In reply to: Nick Payne: "Integrated authentication problem"
Next in thread: Nick Payne: "Re: Integrated authentication problem"
Reply: Nick Payne: "Re: Integrated authentication problem"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

Date: Fri, 19 Sep 2003 09:20:08 -0400

"Nick Payne" <someone@nowhere.au> wrote in message
news:%23lwxTzqfDHA.2576@TK2MSFTNGP11.phx.gbl...
> Intranet using IIS6 running on Windows Server 2003 with Integrated Windows
> Authentication enabled. Workstations are WinXP SP1 with IE6 and all
security
> patches. If logged in domain users access the web server using only the
> Netbios name (http://server) then they get straight in to the pages to
which
> they have access. If they use the full DNS name of the server
> (http://server.domain) then they always have to enter their domain userid
> and password to get to the server. How can we get the web server to use
the
> credentials of the logged on user in the second case?

This is an IE issue as it has not been configured to recognize your server
FQDN as part of your intranet.

In IE, Go to Tools -> Internet Options -> Security -> Custom Level -> User
Authentication -> Logon and make sure it's not prompting for intranet use.
You can also add your domain or IP to the no proxy setting to get IE to
recognize it as the intranet. Tools -> Internet Options -> Connections ->
LAN Settings -> Advanced.

For security configuration you need to go Tools > Internet Options >
Security > Local intranet > Sites... > Advanced > Add this web site or IP to
the zone.

-- 
Tom Kaminski IIS MVP
http://www.iistoolshed.com/ - tools, scripts, and utilities for running IIS
http://mvp.support.microsoft.com/
http://www.microsoft.com/windowsserver2003/community/centers/iis/

Next message: Tom Kaminski [MVP]: "Re: authentication problem"
Previous message: Tom Kaminski [MVP]: "Re: basic authentication"
In reply to: Nick Payne: "Integrated authentication problem"
Next in thread: Nick Payne: "Re: Integrated authentication problem"
Reply: Nick Payne: "Re: Integrated authentication problem"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

Relevant Pages

RE: Should webservers, eg. IIS 6 have anti--virus installed on them?
... I take a more community mind approach to security. ... As much as I don't want my server infected, ... wouldn't load either one on the same system as the web server. ... Let's say Joe SysAdmin does install the A/V software ...
(Focus-Microsoft)
Re: Moving webserver inside firewall
... current OS/Product Service Packs, security patches, security tools, virus ... | I think inside the firewall is the best place for most any server. ... | The only way to be 100% sure the web server is not compromised is to ...
(microsoft.public.inetserver.iis.security)
Re: Recommended Windows Hosts
... I see that you have conveniently left Windows Server 2003 out of your ... Using Microsoft Office FrontPage 2003 ... >>attempt to repair security flaws...". ... >>recommended not allowing parent paths on the Web server. ...
(microsoft.public.frontpage.client)
Re: Help a computer science student
... That network had to have a dhcp, dns, pdc, web server, ... > test THEIR security. ...
(comp.security.misc)
Re: medical records, web server, & stateful firewall vs packet filter
... which the network can reinforce application security. ... >server, as the 2800 or ASA 5510 on the perimeter would deny access to ... assumption in typical web server with database back end designs. ... >limitations in TCP/IP and NetBIOS architectures). ...
(comp.dcom.sys.cisco)