Re: How to pass user credentials to IE



No longer possible for IE to automatically pass server-configured
username:password back to the server. That was deemed a security
vulnerability a few years ago and disallowed on IE with a security
patch and RegKey control.

You can try creating a vdir pointing to your Web application on IIS
with only Anonymous authentication enabled and set the Anonymous user
to be the specific user credential your application needs. Then make
your application call this vdir instead. This allows any anonymous
user to access your Web application, which may/not be what you want.

Basically, you need a custom "many-to-one" authentication mapping, and
since IIS does not come with any modules supporting it by default (but
it can and has been built by others), you have to implement it
somewhere on IIS. IIS only supports any-to-one (Anonymous) and one-to-
one (all other authentication protocols).


//David
http://w3-4u.blogspot.com
http://blogs.msdn.com/David.Wang
//




On Apr 13, 1:15 am, k...@xxxxxxxxxx wrote:
Hi,

My application needs to call a IIS web based application that requires
Windows based authentication. The user credentials that our
application will use is not the same as the user logged onto the
workstation. When calling the web page, IE prompts for a user ID and
password. I would like to know how I can pass the user credentials to
IE to avoid the browser prompt. My application is a Windows client
application.

Thanks


.



Relevant Pages

  • Re: Access Denied to share with anonymous access disabled
    ... > Integrated Windows authentication, then you are looking at the classic ... > server, why should the server automatically be able to use your ... > ASPNet local user account full access to the share. ... > anonymous access with integrated windows security on the web site. ...
    (microsoft.public.inetserver.iis.security)
  • Re: Potential vulnerabilities of the Microsoft RVP-based Instant Messaging
    ... >> Further to Greg's comments about this Encode Security Labs ... >> NTLM for authentication, ... > NTLM is a unilateral authentication protocol where the server ...
    (NT-Bugtraq)
  • Re: WCF security advice (and clarification) needed
    ... You, the client, resolve the foo.mycompany.com hostname within your ... TCP/IP) with that ticket as the security token. ... There are two parties participating in a security scenario, the server ... HTTP supports other authentication ...
    (microsoft.public.dotnet.framework.webservices)
  • unified authentication
    ... and a single Windows 2000 Server. ... I have recently been plagued by the security audit ... as employees have left the company and new ... and very fast authentication system with vpopmail + MySQL. ...
    (FreeBSD-Security)
  • RE: ASP.NET + SQL Server Windows authentication
    ... The problem is actually related to ASP.NET security. ... | Trying to understand why I can not get SQL server to trust my IIS server. ... | applications access to the DB server via NT Authentication. ... Basic Authentication will transfer the PW ...
    (microsoft.public.sqlserver.security)