Re: IIS6 Basic Authentication and Kerberos
- From: "Christian Paparelli" <cpaparelli_nospam@xxxxxxxxx>
- Date: Wed, 11 Jan 2006 08:52:18 +0100
"pcarfan via WinServerKB.com" <u17416@uwe> ha scritto nel messaggio news:5a28f07b4d57c@xxxxxx
Greetings,
Hi
I have a web site on IIS6 using Basic Authentication. The account used to
access the site is a Domain Account on my Windows 2003 domain. The IIS server
is a member of the Windows 2003 Domain.
This IIS6 site is setup to run under its own Application Pool with a
configured identity that is a Domain User Account with the appropriate rights.
Everything is working great, however, I am trying to understand the underlying Kerberos.
1. Someone types in the wrong password for the domain account used to login
to the site.
2. On the web server a security event log is logged (expected).
3. On the first domain controller, an event log is logged about the failure
4. On the second domain controller an event log is logged about the failure.
Why does the web server attempt the authentication twice (once against each
domain controller)? Is this because it is failing twice (once at the IIS
Basic Auth and once at the underlying file perms)?
I suggest to read this document http://support.microsoft.com/?id=319723
--
Christian Paparelli
http://www.ithost.ch
.
- References:
- IIS6 Basic Authentication and Kerberos
- From: pcarfan via WinServerKB.com
- IIS6 Basic Authentication and Kerberos
- Prev by Date: Re: How do I block visitors via referrer in IIS6 ?
- Next by Date: Re: How do I block visitors via referrer in IIS6 ?
- Previous by thread: IIS6 Basic Authentication and Kerberos
- Next by thread: How do I block visitors via referrer in IIS6 ?
- Index(es):
Relevant Pages
|
Loading
