NTLM and Kerberos
- From: "Joe" <joe@xxxxxxx>
- Date: Mon, 20 Feb 2006 18:48:42 -0600
I have a website using Windows Authentication and Delegation to access a
backend SQL Server.
Everything works when I am on the LAN. When I try to access the website
from home I get the Login failed for User NULL...
I am using the same name to access when I am on the LAN as when I am at home
and it resolves to the same IP address.
http://server.domain.com
I have put this into my trusted sites in IE (I have also tried Local
Intranet).
I can see in the event log on the web server that when I am at home it is
using NTLM authentication wheras when I am on the network it is using
Kerberos.
I added the SPN for the FQDN with this:
setspn -A http/sever.domain.com NtDomain\ServerName
(not sure if that is required)
IIS is running under the local system account
I have delegation set to Trust this computer for delegation to any service
(Kerberos only)
The server is Windows 2003
IIS Security is set up for Integrated Windows Authention
The only differences that I can think of are (1) my computer at home is not
a memeber of the domain and (2) I only have port 80 open when I am at home.
Anyone know how to get this to work?
.
- Follow-Ups:
- Re: NTLM and Kerberos
- From: Joe
- Re: NTLM and Kerberos
- Prev by Date: Re: Forcing SSL with custom error messages
- Next by Date: Re: NTLM and Kerberos
- Previous by thread: Re: Keep having to reset security for .NET
- Next by thread: Re: NTLM and Kerberos
- Index(es):
Relevant Pages
|
