Re: Integrated authentication and IE proxy settings

Hi,

This behavior is governed by the security settings of IE.

IE by default will not provide integrated authentication to sites that are
not local. For this IE assumes that if the name includes a dot ('.') then it
is external and won't do integrated authentication.

On the other hand, once the automatic detection is configured then the
script tells IE which sites are internal.

You can control these settings in IE/Options/Security and also in the
Advance settings.



---------------------

This posting is provided "AS IS" with no warranties, and confers no rights.

---------------------


"Leonid Bogdanov" <leonidbogdanov n o s p a m@xxxxxxxxxxxxxxxxxx> wrote in
message news:O5e1033VGHA.1868@xxxxxxxxxxxxxxxxxxxxxxx
Hello,

I'm investigating how to connect our application to the external website
from the network with ISA configured as proxy with the authentication
mode= Integrated and "Require all user to authenticate" checked. I tested
my configuration from the Internet Explorer.

1. If "Automatically detect setting" option is checked on the internet
options dialog in IE, then the browser connects to external sites without
any problem. In the ISA log I can see that my requests went through and
were authenticated under my domain user name.

2. If I uncheck "Automatically detect setting" and check "Use a proxy
server .." option, and provide the server name in the text box, then
whenever I try to access internet, IE prompts me for my user
name/password. ISA log shows attempts to anonymously access external
website.

My question is - why the behavior is so different for these two options in
the IE? Why it is asking me for credentials if I explicitly set the proxy
server?

Thank you,
Leonid.





.

Relevant Pages

  • Re: OWA Issues
    ... Note that I didn't say that it was a "security" issue to have Integrated ... the issue here is that either Integrated authentication is ... I would check the IE settings, goto tools Internet options and to the ...
    (microsoft.public.exchange.admin)
  • RE: OWA Issue
    ... The cause of the problem is due to the Integrated authentication being set ... Users should, with the above settings, be able to log into OWA, internally ... accessing OWA over the Internet, ...
    (microsoft.public.exchange2000.admin)
  • RE: some client need to authenticate, some dont
    ... The authentication used on the server is Basic+Integrated ... > Have you verified that the proxy settings are setup correctly in their ... >> who are granted access rights to the internet are part of a Global Security ... >> On cliënt system there is een WSP client. ...
    (microsoft.public.isa.clients)
  • re:simple problem setting up the security on my test web servic
    ... If its just set to no auth mode then you can also look at the IIS ... Application running on "integrated windows authentication" (directory ... settings allow that in local network). ... When it is an external application (internet), ...
    (microsoft.public.dotnet.framework.aspnet.webservices)
  • [NEWS] Multiple Vulnerabilities with Pingtel xpressa SIP Phones
    ... remote administrative configuration of the phone's settings. ... The Pingtel xpressa SIP-based phone ships with no administrator password, ... Requiring Authentication of Incoming Calls ... Altering the Behavior of the Web Server ...
    (Securiteam)