Hi,

I have IIS 6 installed on win3k server and hosted on it are few websites
with .asp and some are sharepoint websites.

My question is, is it possible that if a user access one of the website
(web.domain.com) and prompted for a username and password and logged in
successfully, when he go to another website hosted on the same IIS
(web2.domain.com) either via a link or response.redirect using the same
browser, they will not be prompted for a username and password anymore?
Authentication for all websites are based on AD and configured to use Basic
Authentication.

Please advise.

One

this is because the user remains authenticated. what you can do is restrict access on a file system basis (NTFS permissions) alternatively you can set up something along the lines of IIS-Password from troxo to use .htaccess

EggHeadCafe.com - .NET Developer Portal of Choice
http://www.eggheadcafe.com

IIS 5.0 Manage for non-admin rights
Monitor IIS for http and https ussage!
configure host name? localhost to localhost/(dir)
IIS Always asking for credentials
IIS 6 Directory Services Mapping ACL Problems
ISAPI filter with Basic Authentication and Asp.net impersonation
Web Site Access requires UserID and Password - Resolved
Extranet Authentication
The minimum right to be granted at user to manage IIS
Import Cert without pfx or pending request