Tek-Tips is the largest IT community on the Internet today!

Members share and learn making Tek-Tips Forums the best source of peer-reviewed technical information on the Internet!

Register Log in
  • Congratulations bkrike on being selected by the Tek-Tips community for having the most helpful posts in the forums last week. Way to Go!

Avoid popups with integrated security

Status
Not open for further replies.
tvbruwae

tvbruwae

Programmer
Aug 9, 2001
224
EU
Hi

On our intranet we are using a combination of basic and integrated security. For most people access is granted transparently, but for others a popup is shown asking for credentials. When filling in their domain account and password they are granted access. If they choose to cancel, they get "HTTP 401.2 - Unauthorized: Logon failed due to server configuration"..

Is there an explanation why IIS sometimes shows a popup asking for user credentials and sometimes not? All users and computers are members of the domain and have fairly recent computers (IE 6).

Thanks!
Tim
 
Sort by date Sort by votes
IIS does not show the popup... the browser does.

Assuming Internet Explorer is the browser...

1. Browser sends HTTP Request to IIS.

2. IIS checks to see if requested resource exists, if not return 404 error to browser.

3. IIS checks to see if the credentials sent with HTTP Request are sufficient to access resource, if not return 401 error to browser.

4. [highlight]Upon receiving a 401 from the server[/highlight], if previous request did not include credentials, Internet Explorer may automatically re-submit the HTTP Request, this time using the credentials. If previous request DID include the credentials of the current user, or IE is unable to determine the correct credentials, then [highlight]IE will show the login promt. [/highlight]

5. All subsequent Requests made by the browser to this particular server will include these credentials until either IE is closed or another 401 is received from this particular server.



PS: By default the Firefox browser does not automatically resubmit HTTP Requests ... it always prompts on 401.
 
Upvote 0 Downvote
Hi Sheco, thank you for the info! We will do some more tests with the IE authentication options to see what happens, perhaps some settings are not set correctly on the client computers.
 
Upvote 0 Downvote
Status
Not open for further replies.

Similar threads

ravalos
  • Locked
  • Question
Problem with PDFs in IIS
Replies
1
Views
1K
gbaughma
gbaughma
DrB0b
  • Locked
  • Question
Windows 2016 IIS FTP server with a ton of user accounts
Replies
4
Views
806
DrB0b
DrB0b
DrB0b
  • Locked
  • Question
Hybrid on prem AD with Azure AD
Replies
2
Views
416
DrB0b
DrB0b
Scparks
  • Locked
  • Question
Trouble with setting up a SMTP Relay to Office 365
Replies
0
Views
283
Scparks
Scparks
lacked
  • Locked
  • Question
problem with windows update on windows server 2016
Replies
1
Views
291
maybeimaleo
maybeimaleo

Part and Inventory Search

Sponsor

Back
Top