Re: Authentication doesnt work when using non - microsoft browsers :-(

From: David Wang [Msft] (
Date: 05/13/05

  • Next message: Ken Schaefer: "Re: Authentication doesnt work when using non - microsoft browsers :-("
    Date: Fri, 13 May 2005 03:46:59 -0700

    If the server is configured to require a particular authentication protocol
    and the browser refuses to support it, then you get a 401.2. That behavior
    is by-design.

    Either fix the browser to support the authentication protocol of the server,
    or change the authentication protocol required by the server.

    I do not know what you mean by "windows forms authentication " -- can you
    give me the Authentication configuration of /secure inside of IIS Manager UI
    (web.config is not involved).

    I am pretty certain that Firefox supports Integrated Windows Authentication.
    So, either your configuration is not what you said, or you've got something
    else misconfigured.

    This posting is provided "AS IS" with no warranties, and confers no rights.
    "thechaosengine" <none> wrote in message
    Hi eveyone,
    If anyone could advise on the following I would be truly greatful:
    I have a fairly standard set up. An IIS 5.1 website set up with anonymous
    access allowed in all areas of the site but a secure subdirectory called
    I am using windows forms authentication and this is configured in my
    All of this works perfectly when using IE. If i attempt to jump straight
    into the secure directory without logging in - it boots me back to the login
    page. If I log in, it lets me through no problems.
    The problem is that this doesnt work in firefox or netscape.
    When I put in my username and password they either popup a box asking for
    another username and password (which i don't know) or it takes me directly
    to the standard 401.2 page which tells me the following:
    > HTTP 401.2 - Unauthorized: Logon failed due to server configuration
    > Background:
    This is usually caused by a server-side script not sending the proper
    header field. Using Active Server Pages scripting this is done by using the
    AddHeader method of the Response object to request that the client use a
    certain authentication method to access the resource.
    Can anyone advise me why IE is working and the other browsers arent. I have
    read some information that suggests that it could be because the secure
    is set up to use Windows Integrated Security but I'm sure that hasnt
    before with other sites and I don't know how else to set the sites up. I
    don't want usernames etc sent in plain text etc
    Thanks to anyone who can share any information
    Thanks all

  • Next message: Ken Schaefer: "Re: Authentication doesnt work when using non - microsoft browsers :-("