IE 6 connecting to IIS 6.0 using NTLM and not Kerberos
From: Jeremy Smith (godtoall_at_hotmail.com)
Date: 04/12/04
- Next message: Tom Kaminski [MVP]: "Re: IIS permissions error"
- Previous message: Keith W. McCammon: "Re: Password is cancelled"
- Next in thread: Ken Schaefer: "Re: IE 6 connecting to IIS 6.0 using NTLM and not Kerberos"
- Reply: Ken Schaefer: "Re: IE 6 connecting to IIS 6.0 using NTLM and not Kerberos"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Date: 12 Apr 2004 13:27:05 -0700
I have IIS 6.0 with a new website and setup with Intergrated
Authentication and NTAuthenticationProviders="Negotiate,NTLM". What
SPN, Delegation in Active directory and/or setting need to be in place
for the client to use Kerberos. The client keeps negotiateing to NTLM.
This is what I have done so far.
ServerName: TESTWEB1
WebSite: saorder.domain.com
Configurable Identity for Isolate Pool: DomainName\m11111
Checked the box in IE 6 client to use Intergarted Authentcation. This
is set to use the Negotiate header and try Kerberos first.
setspn.exe -A HTTP/saorder.domain.com TESTWEB1
setspn.exe -A HOST/saorder.domain.com TESTWEB1
setspn.exe -A HOST/TESTWEB1 DomainName\m11111
setspn.exe -A HOST/TESTWEB1.domain.com DomainName\m11111
Do I need to set the Trusted Delegation on the computer account
"TESTWEB1" and/or user account DomainName\M11111, since our set uses a
none predefined Domain account?
Thanks for any help with this issue!
- Next message: Tom Kaminski [MVP]: "Re: IIS permissions error"
- Previous message: Keith W. McCammon: "Re: Password is cancelled"
- Next in thread: Ken Schaefer: "Re: IE 6 connecting to IIS 6.0 using NTLM and not Kerberos"
- Reply: Ken Schaefer: "Re: IE 6 connecting to IIS 6.0 using NTLM and not Kerberos"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Relevant Pages
|
