NTLM Authentication on IIS 6.0

From: kaverorzi@xxxxxxxxx
Date: 7 Nov 2006 14:45:54 -0800

I have an Intranet site set up on IIS 6.0 and have an intermitten
problem. A couple of areas on the Intranet are restricted. We have
Windows Intergrated Authentication enabled on the couple of pages that
require access. I have a security group set up with only the users who
require access and the group has full control. No other account has
access. The problem happens to everyone in the security group.
Sometimes a user can go for two weeks without being prompted for
username/password and sometimes it happens two or three times a day.
When I click the link and am prompted, I use my userid/password and
authentacation fails. I use the administrator un/pw and that fails.
Other users use their logons and fails also. Now everytime I am
prompted and use the local administrator username/password for that
server, it works everytime. I know that NtAuthenticationProviders is
set to Negotiate,NTLM since that is supposed to be the default, and I
never changed it. The following is logged to the security log when
unable to access the intranet page:
11/7/2006 4:32:35 PM Security Failure Audit Account Logon 680 NT
AUTHORITY\SYSTEM FEC-2KNT4 "Logon attempt
by: MICROSOFT_AUTHENTICATION_PACKAGE_V1_0
Logon account: administrator
Source Workstation: IT_OPERATOR
Error Code: 0xC000006A

The 529 event it also will show up but that is the usual logon failure
I often see returned for all kinds of authentacition problems.

I can't seem to be able to figure out what I have configured wrong and
why it is intermitten. If it failed every single time this wouldn't
seem as strange to me. Any suggestions would be greatly appreciated.

Thanks!

Rick

.

Follow-Ups:
- Re: NTLM Authentication on IIS 6.0
  - From: kaverorzi
- Re: NTLM Authentication on IIS 6.0
  - From: Ken Schaefer

Prev by Date: Re: How do I make a local machine client certificate available to all users?
Next by Date: Re: inhability to display http://localhost
Previous by thread: How do I make a local machine client certificate available to all users?
Next by thread: Re: NTLM Authentication on IIS 6.0
Index(es):
- Date
- Thread

Relevant Pages

Re: NTLM Authentication on IIS 6.0
... A couple of areas on the Intranet are restricted. ... Windows Intergrated Authentication enabled on the couple of pages that ... I use the administrator un/pw and that fails. ... server, it works everytime. ...
(microsoft.public.inetserver.iis.security)
Re: Urgent - need help with logging anonymous and Active Dir users without login form
... networks behind the same firewall. ... automatically logged in to our intranet in. ... forms authentication for everything. ... the user back to the page the access which initiated the login request. ...
(microsoft.public.dotnet.framework.aspnet)
Re: Constant Password Authentication
... domain and server name in the URL. ... confirm that the same authentication methods are checkmarked as compared to ... Within our organisation there are staff who are ... > Up until recently a company that has had access to our intranet had been ...
(microsoft.public.inetserver.iis.security)
RE: Windows authentication from ASP.NET to SQL Server
... The easiest way is to turn off anonymous access for the Intranet site. ... will force authentication, usually through a login box (although the network ... > intranet server and our database server, both of which are on our local ... > Successful Network Logon: ...
(microsoft.public.dotnet.framework.aspnet)
Re: Intranet File Permissions Using Active Directory
... Open the IIS Manager, and for the Intranet website (or folder, or ... Disable "Allow Anonymous Authentication". ... access the resources should have Read permissions. ... I have a question regarding using IIS to host a Intranet site for my ...
(microsoft.public.inetserver.iis.security)