autherntication methods IIS 6

From: BJM (barrymockett_at_hotmail.com)
Date: 05/28/04 

Date: Thu, 27 May 2004 23:56:08 +0100

Guys

I have a thorny problem which I hope someone can shed a little light on for
me.

I have an windows 2000 machine running a secured virtual directory (VD),
inasmuch as that the anonymous access has been disallowed for that VD.
Instead the VD is set to use integrated windows authentication, which works
beautifully when my users connect from a same domain (as the webserver)
machine whilst connected to the same physical LAN.

However, these users connect from the outside world using an OPENVPN
connection to a Linux server. Now, when these same users connect from the
outside, they cannot connect to the aforementioned VD, but here is the
kicker, I was getting frustrated one night and forgot to take home my laptop
power supply, needed to check some stuff from home (after flattening my
battery) so connected my personal PC to the VPN and jumped onto the network
at my office. The virtual directory served me all the content from the
secured VD after prompting me for a username and password.

So my issue is this, Microsoft states that security settings on the VD
should keep trying until it finds an authentication match, but, my domain
machines across the VPN are failing to connect to the VD properly and pass
through the credentials, whereas my non-domain personal machine seems to be
defaulting to digest authentication. Is this the case, or is it that the
domain machines will never try digest authentication unless I have it
enabled?

This is tearing me up as I have some stupid users who do not understand the
words: "It works fine on a citrix desktop - please connect to that for the
time being and call me every day...!Grr" Strangely the CEO is not that
upset - go figure.

Anyway

Can anyone help me with this - I am loathe just to click buttons on
production servers and could do with some pointers.

Regards

BJM

Quantcast