Re: Default authentication scope

From: Ken Schaefer (kenREMOVE_at_THISadOpenStatic.com)
Date: 04/27/04 

Date: Tue, 27 Apr 2004 22:48:09 +1000

If you use Basic or Digest, authentication you can specify a default domain,
or realm (respectively) for HTTP Auth in the IIS Manager properties for the
website/folder/whatever you are securing. This is not possible for IWA.

If you are using IWA auth, then add the server to the user's Intranet
security zone. IE will attempt to autologon by default if the site is in the
intranet security zone (by default all http://servername servers are in this
zone).
http://support.microsoft.com/?id=258063

Can't help you with the FTP auth stuff.

Cheers
Ken

"Vernalex" <vernalex@vernalex.com> wrote in message
news:14cfecf3.0404261515.5dc8faf4@posting.google.com...
: I maintain a Windows Server 2003 member server in an active directory.
: The member server provides file shares, FTP and HTTP access to a few
people
: on our internal network. It works the way it was designed, but I was
curious
: if anyone had any ideas about an annoying feature. If a computer attempts
to
: access a file share, the FTP, the HTTP (or anything else that requires
: authentication) on the member server and the client is not a member of
that
: active directory it requires authentication (as it should).
:
: However, for the username I must provide username@domain or
: domain\username so it knows to authenticate to the domain rather than to
the
: local accounts. Is there anyway to make the server pass the authentication
: automatically on to the domain without having to supply the domain in the
: username login? Is there a registry setting, or better yet, a group policy
I
: can apply to the member server to alter this behavior? If possible it
could
: be best if the server checks the local accounts for that username /
password
: combination and if fails it checks the domain for it, but just forwarding
: the request or the reverse would be just perfect too. Oh, and it cannot be
a
: fix that I have to apply to the workstation.
:
: Any help anyone can provide me would be extremely helpful. Thanks a
lot
: :)
:
: Joseph Dowden

Relevant Pages

  • Re: Properly configuring SMTP Service
    ... server, but no one else. ... you) to "anonymous" as an SMTP authentication method, ... SMTP protocol is very specific about where and what authentication ... the SMTP AUTH mechanisms that your server will support. ...
    (microsoft.public.inetserver.iis.smtp_nntp)
  • Re: 802.1x Wired Auth and Authentication
    ... i've got user auth working for EAP-TLS, but computer auth still won't work. ... But it sounds to me like you didn't even install an ... This means that you have an IAS authentication extension DLL ... I assume you have issued a server ...
    (microsoft.public.internet.radius)
  • Chess grandmaster problem of zero knowledge proof of identity
    ... can identify herself as Alice in Dave's shop; or when bad authentication ... server can authenticate itself as your on third-side during your ... limited in communications to third parties) and using of clock (when "auth. ...
    (sci.crypt)
  • PEAP based 802.1x LAN authentication
    ... I am currently trying to configure an Active Directory (w2K server) ... I have successfully tried 802.1x with auth methods ... I should install MS CA and generate a certificate for the win2K server ... used with this Extensible Authentication Protocol". ...
    (Focus-Microsoft)
  • Re: Domain accounts not visible from Member Server
    ... I tried adding the member server to the domain twice. ... Authentication is usually a DNS issue. ...
    (microsoft.public.windows.server.active_directory)