Re: access issue

---

• From: "Ken Schaefer" <kenREMOVE@xxxxxxxxxxxxxxxxxxxx>
• Date: Tue, 25 Mar 2008 11:06:04 +1100

---

Sounds like you are running into this behaviour:
http://support.microsoft.com/?id=258063

The website requires authentication. In the case of http://servername your application meets all the requirements for IE to attempt auto-logon. with http://ip.address the site is in the "internet" security zone by default, and IE does not attempt autologon.

Cheers
Ken


"Greg M" <GregM@xxxxxxxxxxxxxxxxxxxxxxxxx> wrote in message news:732050EA-6331-494F-851D-35B0846B1468@xxxxxxxxxxxxxxxx

Thanks Ken. I probably was not clear in my question. I am a novice with IIS.

The url http://servername/appname works fine, but if I put in
http://serverip/appname, i get a pop up box for credentials. We user a round
robin DNS entry that uses the ip addresses of the server to "balance" the
load. Since the http://serverip/appname link asks for credentials, the DNS
entry does as well. All works fine if the user goes to
http://servername/appname

"Ken Schaefer" wrote:

Hi,

\\servername\app is a UNC path. It is not a HTTP URI. IIS does not serve
requests based on UNC paths (that's the responsibility of the CIFS/SMB
server). IIS only serves requests that start with http://... (or ftp:// or
https://... etc)

Cheers
Ken

"Greg M" <GregM@xxxxxxxxxxxxxxxxxxxxxxxxx> wrote in message
news:32DD8661-E4DA-43B7-AB56-637052ADB23A@xxxxxxxxxxxxxxxx
> Last night, I updated an application running on IIS6 to use trusted
> logins.
>
> If the user go to \\servername\app
>
> all is fine and the app opens
>
>
>
> If the user goes to the ip address of the server then the app
> (i.e \\10.10.10.10\app), it prompts the user for a login (generic > windows
> username password box)
>
> Any idea why this would happen?
>
>

.

---

• References:
  • access issue
    • From: Greg M
  • Re: access issue
    • From: Ken Schaefer

• Prev by Date: Re: Integrated Windows Authentication
• Next by Date: ftproot permissions
• Previous by thread: Re: access issue
• Next by thread: (IIS) problems with virtual directory
• Index(es):
  • Date
  • Thread

---

Relevant Pages [NT] Heap Overrun in HTR Chunked Encoding Could Enable Web Server Compromise ... This patch eliminates a newly discovered vulnerability affecting Internet ... in IIS 4.0 and 5.0, and could likewise be used to overrun heap memory on ... allowing code to be run on the server. ... * Microsoft has long recommended disabling HTR functionality unless there ... (Securiteam) Re: Problem with connect computer wizard ... Make sure the Windows XP client is pointing to the SBS 2003 server as ... Please collect the IIS metabase and the latest IIS log files further ... This newsgroup only focuses on SBS technical issues. ... (microsoft.public.windows.server.sbs) RE: IIS Key pairs (how to export an IIS 4.0 self-issued Root CA a nd import into new IIS 4.0 box) ... IIS key to an Intel SSL acelerator ... it issues client certificates to the end users. ... Step I - Installing the New Server ... Install NT SP 3 ONLY ... (Focus-Microsoft) Re: SBS 2003 After Service Pack 1 for SBS ... we can conclude the SBS 2003 SP1 has been applied ... Please help me collect the IIS metabase to check ... and using server management console to reproduce the problem. ... This newsgroup only focuses on SBS technical issues. ... (microsoft.public.windows.server.sbs) FW: Microsoft Security Advisory MS 03-007 ... am trying to find a vulnerability tester/script and I could test it out ... Department of the Army server that had been compromised and that this ... announcement covers IIS 5.1 but not IIS 6, ... How a Hacker Uses SQL Injection to Steal Your SQL Data! ... (Focus-Microsoft)

---

• Security
• UNIX
• Linux
• Coding
• Usenet

• News
• Mailing-Lists
• Newsgroups
• Service
• About
• Privacy
• Search
• Imprint

www.derkeiler.com  > Newsgroups  > microsoft.public.inetserver.iis.security  > 2008-03