Re: Integrated authentication across domains

On Nov 8, 1:16 pm, jonas.berl...@xxxxxxxxx wrote:
Hi!

Our intranet is running IIS6 on Win2k3 and is using Windows Integrated
Authentication without SSL. It is working perfectly as long as the
users are on the same domain as the server.

The company has opened a new office abroad and staff from this office
are on a different domain. We would now want them to be able to access
our intranet over some leased lines and we have opened up the
firewalls accordingly. The users abroad are running IE6 and their IT
admin has set our domain into their browser's intranet zone.

The users can contact the server and are prompted for their login and
password and that's how it should be. They enter <Domain>\Login and
their password and press enter. The strange thing is that now nothing
more happens. The browsers appear to be loading some data but nothing
appears on the screen, it just stays white. There is no error message
and there is nothing in netiher the servers event log nor its web
server log and it just stays like this "forever". The user's browser
says "intranet" in the bottom right corner, so it appears to got that
one straight.

What could be the problem? Do we have to use SSL? Could it be some
strange setup in the firewalls - the web server is on port 80 and that
is what is opened in the firewalls. Suggestions, anyone?

Regards,

Jonas

Hello Jonas,

What domain are they using when the user types their creds? Their
domain or the domain of the resource? Is there a trust established
between the domains?

I would use netmon and see what is going on at the network layer. This
doesn't sound like any kind of behavior I've ever seen that could be
caused by an authentication issue.

HTH,
Dave

.

Relevant Pages

  • Re: Constant Password Authentication
    ... domain and server name in the URL. ... confirm that the same authentication methods are checkmarked as compared to ... Within our organisation there are staff who are ... > Up until recently a company that has had access to our intranet had been ...
    (microsoft.public.inetserver.iis.security)
  • RE: Windows authentication from ASP.NET to SQL Server
    ... The easiest way is to turn off anonymous access for the Intranet site. ... will force authentication, usually through a login box (although the network ... > intranet server and our database server, both of which are on our local ... > Successful Network Logon: ...
    (microsoft.public.dotnet.framework.aspnet)
  • RE: Cannot successfully reinstall Intranet
    ... Recap of steps taken to fix Intranet ... regsvr32 "C:\Program Files\Windows for Small Business ... Change Server Tools to Maintenance ... Windows SharePoint Services intranet site should be Web Service ...
    (microsoft.public.windows.server.sbs)
  • Re: NTLM Authentication on IIS 6.0
    ... A couple of areas on the Intranet are restricted. ... Windows Intergrated Authentication enabled on the couple of pages that ... I use the administrator un/pw and that fails. ... server, it works everytime. ...
    (microsoft.public.inetserver.iis.security)
  • Re: Web App Security and MSIE Settings
    ... "Intranet users" group have read access to the virtual directory. ... We access the server using the netbios name, ... >> In an AD mixed mode environment, MSIE clients running on WinXP have ... >> random authentication dialogs. ...
    (microsoft.public.dotnet.security)