Re: Current User Credential Security settings don't seem to allow access when they should.
- From: "Ken Schaefer" <kenREMOVE@xxxxxxxxxxxxxxxxxxxx>
- Date: Sun, 2 Apr 2006 16:57:56 +1000
You need to ensure that Kerberos authentication is being used, and that
delegation is properly enabled. It doesn't "just work"
Is the IIS box trusted for delegation in Active Directory?
Is the user account not marked as "sensitive" and unabled to be delegated?
Do the correct SPNs exist for the remote CIFS server?
Is the client actually using Kerberos to authN to the IIS box?
Lots of unanswered questions there. :-)
Cheers
Ken
"D Witherspoon" <dwitherspoon@xxxxxxxxx> wrote in message
news:OdY83YBVGHA.4900@xxxxxxxxxxxxxxxxxxxxxxx
: IIS 6 Win2K3.
:
: I created a new virtual folder. That points to \\fileshare\myfolder.
:
: the virtual folder is set to use integrated windows authentication and the
: "connect as" is set to "Always use the authenticated user's credentials
when
: validating access to the network directory."
:
: So.. I go ang test this. I have full access to \\fileshare\myfolder and
: it's contents.
: But when I browse to http:\\myweb\myfolder\anyfile.htm I get "You are not
: authorized to view this page".
:
: If I change the "Connect As" to use my currently logged in acount username
: and password I can access http:\\myweb\myfolder\anyfile.htm just fine.
:
: Am I missing something here. It seems straightforward to me that this
: should work.
:
: To let you know \\fileshare is a fileshare that is located on another
server
: but within the same domain.
:
: All help is appreciated.
:
:
.
- Prev by Date: Re: IIS and enterpise sub CA on different machines
- Next by Date: Re: Iusr_Servername NetworkPrinter
- Previous by thread: Re: IIS and enterpise sub CA on different machines
- Next by thread: Re: Security of Webpage
- Index(es):
Relevant Pages
|
