Re: Alternative Access Mapping User Prompts

{\rtf1\ansi\ansicpg1252\deff0\deflang1033{\fonttbl{\f0\fnil\fprq2\fcharset0 MS Sans Serif;}}
\viewkind4\uc1\pard\f0\fs20 Hello Peter,
\par
\par By checking the AAM screen shot, the entries are OK in case ISA Server forwards https://portal.company.com to https://portal.company.com (no change).
\par
\par Also, you'd better to check the other authentication settings:
\par
\par 1. Go to Central Administration > Application Management > Authentication Providers.
\par 2. Select the Internet zone of your Web application.
\par 3. Make sure:
\par - Authentication Type is Windows
\par - Anonymous Access is not enabled
\par - IIS Authentication Settings is Integrated Windows authentication - NTLM
\par 4. From the client side, you can add the URL https://portal.company.com to IE trusted sites, and make sure the "Automatic logon with current user name and password" is selected under User Authentication section in the Trusted Sites Security Settings.
\par
\par Moreover, please tell me if the user is prompted to enter username and password for the first time to logon https://portal.company.com. If possible, test the ULR https://portal.company.com in the LAN, not through ISA Server to see if ISA Server does not forward the URL correctly.
\par
\par Please let me know the results.
\par
\par Sincerely,
\par Robert Zhao
\par Microsoft Online Support
\par Microsoft Global Technical Support Center
\par
\par Get Secure! - www.microsoft.com/security
\par =====================================================
\par When responding to posts, please "Reply to Group" via your newsreader so that others may learn and benefit from your issue.
\par =====================================================
\par This posting is provided "AS IS" with no warranties, and confers no rights.
\par
\par \pard\li720 --------------------
\par From: "PeterG012" <peterg012@xxxxxxxxxxxxxxxx>
\par References: <e0TDUZsoIHA.4292@xxxxxxxxxxxxxxxxxxxx> <8hdViu1oIHA.9028@xxxxxxxxxxxxxxxxxxxxxx>
\par Subject: Re: Alternative Access Mapping User Prompts
\par Date: Mon, 21 Apr 2008 10:04:04 +0200
\par Lines: 339
\par X-Priority: 3
\par X-MSMail-Priority: Normal
\par X-Newsreader: Microsoft Outlook Express 6.00.2900.3311
\par X-MimeOLE: Produced By Microsoft MimeOLE V6.00.2900.3311
\par X-RFC2646: Format=Flowed; Original
\par Message-ID: <OCy$da4oIHA.4292@xxxxxxxxxxxxxxxxxxxx>
\par Newsgroups: microsoft.public.sharepoint.portalserver
\par NNTP-Posting-Host: 196.212.28.10
\par Path: TK2MSFTNGHUB02.phx.gbl!TK2MSFTNGP01.phx.gbl!TK2MSFTNGP04.phx.gbl
\par Xref: TK2MSFTNGHUB02.phx.gbl microsoft.public.sharepoint.portalserver:12210
\par X-Tomcat-NG: microsoft.public.sharepoint.portalserver
\par
\par Hi,
\par
\par We setup our internal / external according to the below.
\par http://technet.microsoft.com/en-us/library/cc261814.aspx
\par
\par Attached is a screenshot our our AAM for our portal.
\par
\par Any more help would be great?
\par
\par Thanks
\par
\par
\par "Robert Zhao [MSFT]" <v-rozhao@xxxxxxxxxxxxxxxxxxxx> wrote in message
\par news:8hdViu1oIHA.9028@xxxxxxxxxxxxxxxxxxxxxxxxx
\par > Hello Peter,
\par >
\par > This issue can be divided into two sides, one for client side and the
\par > other for the server side - AAM.
\par >
\par > From the client side, you can add the URL https://portal.company.com to IE
\par > trusted sites, and make sure the "Automatic logon with current user name
\par > and
\par > password" is selected under User Authentication section in the Trusted
\par > Sites Security Settings. If this won't work, we should check the AAM
\par > settings.
\par >
\par > To be simple for your understanding of AAM, SharePoint receives the
\par > Internal URL and returns the Public URL based on the AAM settings. Take
\par > your
\par > current configuration for example:
\par >
\par > I guess https://portal.company.com is the public URL users type and see in
\par > the browser. I assume there is an internal URL like https://portal is
\par > mapped the
\par > public https://portal.company.com. So there should be an entry in AAM:
\par >
\par > Internal URL Zone Public URL for Zone
\par > https://portal Internet https://portal.company.com
\par >
\par > At the same time, the ISA Server 2006 should forward requests from
\par > https://portal.company.com to internal URL https://portal as SharePoint
\par > receives
\par > requests from https://portal.
\par >
\par > For more information, please refer to the following articles:
\par >
\par > Plan alternate access mappings (Office SharePoint Server)
\par > http://technet.microsoft.com/en-us/library/cc261814.aspx
\par >
\par > What every SharePoint administrator needs to know about Alternate Access
\par > Mappings (Part 1 of 3)
\par > http://blogs.msdn.com/sharepoint/archive/2007/03/06/what-every-sharepoint-administrator-needs-to-know-about-alternate-access-mappings-part-1.aspx
\par >
\par > What every SharePoint administrator needs to know about Alternate Access
\par > Mappings (Part 2 of 3)
\par > http://blogs.msdn.com/sharepoint/archive/2007/03/19/what-every-sharepoint-administrator-needs-to-know-about-alternate-access-mappings-part-2-of-
\par > 3.aspx
\par >
\par > What every SharePoint administrator needs to know about Alternate Access
\par > Mappings (Part 3 of 3)
\par > http://blogs.msdn.com/sharepoint/archive/2007/04/18/what-every-sharepoint-administrator-needs-to-know-about-alternate-access-mappings-part-3-of-
\par > 3.aspx
\par >
\par > If you are not sure how to configure the AAM, you can provide more details
\par > with your current environment, like:
\par >
\par > 1. What URL users type in the browser.
\par > 2. What are your current AAM settings.
\par > 3. What are your current IIS Web sites configurations.
\par > 4. How does ISA Server 2006 forward the URL.
\par >
\par > If there is anything unclear, please feel free to post back.
\par >
\par > Sincerely,
\par > Robert Zhao
\par > Microsoft Online Support
\par > Microsoft Global Technical Support Center
\par >
\par > Get Secure! - www.microsoft.com/security
\par > =====================================================
\par > When responding to posts, please "Reply to Group" via your newsreader so
\par > that others may learn and benefit from your issue.
\par > =====================================================
\par > This posting is provided "AS IS" with no warranties, and confers no
\par > rights.
\par >
\par > --------------------
\par > From: "PeterG012" <peterg012@xxxxxxxxxxxxxxxx>
\par > Subject: Alternative Access Mapping User Prompts
\par > Date: Sun, 20 Apr 2008 11:07:46 +0200
\par > Lines: 11
\par > X-Priority: 3
\par > X-MSMail-Priority: Normal
\par > X-Newsreader: Microsoft Outlook Express 6.00.2900.3311
\par > X-RFC2646: Format=Flowed; Original
\par > X-MimeOLE: Produced By Microsoft MimeOLE V6.00.2900.3311
\par > Message-ID: <e0TDUZsoIHA.4292@xxxxxxxxxxxxxxxxxxxx>
\par > Newsgroups: microsoft.public.sharepoint.portalserver
\par > NNTP-Posting-Host: 196.212.28.10
\par > Path: TK2MSFTNGHUB02.phx.gbl!TK2MSFTNGP01.phx.gbl!TK2MSFTNGP04.phx.gbl
\par > Xref: TK2MSFTNGHUB02.phx.gbl
\par > microsoft.public.sharepoint.portalserver:12205
\par > X-Tomcat-NG: microsoft.public.sharepoint.portalserver
\par >
\par > Hi,
\par >
\par > I have a problem with alternative access mapping. When opening /editing
\par > documents from a public zone (https://portal.company.com) the user gets
\par > prompted for their login details? We are using NTLM authentication
\par > (SharePoint) and Reverse Proxy Authentication via ISA Server 2006 (Forms
\par > with AD).
\par >
\par > Any ideas? Thanks!Peter
\par >
\par >
\par >
\par >
\par
\par
\par \pard
\par
\par }

Relevant Pages

  • [NEWS] Multiple Vulnerabilities with Pingtel xpressa SIP Phones
    ... remote administrative configuration of the phone's settings. ... The Pingtel xpressa SIP-based phone ships with no administrator password, ... Requiring Authentication of Incoming Calls ... Altering the Behavior of the Web Server ...
    (Securiteam)
  • Re: error 0x85010004 on wm5 with exchange sp1
    ... this issue occurs when the related settings in IIS is ... Microsoft CSS Online Newsgroup Support ... This newsgroup only focuses on SBS technical issues. ... Select Edit in Authentication and access control box. ...
    (microsoft.public.windows.server.sbs)
  • Re: Question For Any FrontPage Users Publishing Webs from SBS 2003
    ... | Subject: Re: Question For Any FrontPage Users Publishing Webs from SBS ... Produced By Microsoft MimeOLE V6.00.2900.2670 ... Please disable request authentication on ISA to allow the anonymous ... |> Microsoft CSS Online Newsgroup Support ...
    (microsoft.public.windows.server.sbs)
  • Re: DCPromo Error
    ... Have looked at the below, and all the settings are correct as listed below, ... Windows Server 2003-based computer, follow these steps: ... Microsoft CSS Online Newsgroup Support ... This newsgroup only focuses on SBS technical issues. ...
    (microsoft.public.windows.server.sbs)
  • Re: Remote Web Workplace Issues-Please help!
    ... Microsoft CSS Online Newsgroup Support ... <825763 How to configure Internet access in Windows Small Business Server ... <client after Authentication" right. ... <38110201-Remote Web Workplace Issues-Please help! ...
    (microsoft.public.windows.server.sbs)