|
security
newsgroups
|
|||||||||||||||||||||||
|
|||||||||||||||||||||||
Problem with Integrated Windows authentication on SSL connectionI'm using a https web site with SSL certificate on a IIS 6 and now I'm
trying to configure the access to this site with "Integrated Windows authentication". If I access the site from my notebook which is connected to the LAN it works fine after I added the site to the trusted sites in the IE of the local machine. Next step is to connect the https site from out site the LAN with a dialup connection to the internet. If the https site is in my trusted sites settings I get the error message that the site can't be found. If I try it again after I deleted the https site out of the trusted sites I get a user logon window and already works fine. Have anybody a idea what I have to do that the "Integrated Windows authentication" works in the LAN AND with the dialup connection and the cached profile? Hi,
try putting site in Local Intranet Zone (https://www.domain.com) instead of Trusted sites. -- Show quoteHide quoteMike Microsoft MVP - Windows Security "Matze" <mbe***@gmx.de> wrote in message news:4ff6750e.0503140549.5ee3b77d@posting.google.com... > I'm using a https web site with SSL certificate on a IIS 6 and now I'm > trying to configure the access to this site with "Integrated Windows > authentication". If I access the site from my notebook which is > connected to the LAN it works fine after I added the site to the > trusted sites in the IE of the local machine. > Next step is to connect the https site from out site the LAN with a > dialup connection to the internet. If the https site is in my trusted > sites settings I get the error message that the site can't be found. > If I try it again after I deleted the https site out of the trusted > sites I get a user logon window and already works fine. > Have anybody a idea what I have to do that the "Integrated Windows > authentication" works in the LAN AND with the dialup connection and > the cached profile? Mike,
thanks for your feedback but it doesn't work with local sites settings. The same error message "Can not find site or dns error" Any other ideas? Greetings, Matthias When outside of LAN run:
In Internet Explorer (IE) click on Tools -> Internet Options -> Content and here click on "Clear SSL State" ... Try to connect... Few more tests to run: nslookup www.domain.com (where www.domain.com is site you are connecting to). What do you get? Do you get public IP address? Try to telnet to public IP address that you get. E.g. telnet 193.2.1.87 443 Do you get any response? -- Show quoteHide quoteMike Microsoft MVP - Windows Security "Matze" <mbe***@gmx.de> wrote in message news:4ff6750e.0503142349.11a65254@posting.google.com... > Mike, > thanks for your feedback but it doesn't work with local sites > settings. The same error message "Can not find site or dns error" > > Any other ideas? > > Greetings, Matthias > When outside of LAN run: -> Cache cleared > > In Internet Explorer (IE) click on Tools -> Internet Options -> Content and > here click on "Clear SSL State" ... Try to connect... > nslookup www.domain.com -> get the right IP> > (where www.domain.com is site you are connecting to). What do you get? Do > you get public IP address? > -> works fine> Try to telnet to public IP address that you get. E.g. > Do you get any response? But the website doesn't work :-((( Can you try on another computer? Do you get same result?
-- Show quoteHide quoteMike Microsoft MVP - Windows Security "Matze" <mbe***@gmx.de> wrote in message news:4ff6750e.0503160805.1d1273c8@posting.google.com... >> When outside of LAN run: >> >> In Internet Explorer (IE) click on Tools -> Internet Options -> Content >> and >> here click on "Clear SSL State" ... Try to connect... > > -> Cache cleared > >> nslookup www.domain.com >> >> (where www.domain.com is site you are connecting to). What do you get? Do >> you get public IP address? > > -> get the right IP > >> >> Try to telnet to public IP address that you get. E.g. >> Do you get any response? > > -> works fine > > But the website doesn't work :-((( > Can you try on another computer? Do you get same result? Right; another computer works fine - ThanksBut I can't find the diffenrence between two computers. Both have WinXP with SP1 alls all releated updates via SUS Matthias OK; I find that the patch for KB831167 isn't installed. After I can
authenticate with two different notebooks (W2K Prof and WinXP Prof) I think it's only a local probelm of one notebook. Thanks a lot Best regards, Matthias Show quoteHide quote mbe***@gmx.de (Matze) wrote in message news:<4ff6750e.0503170650.14eb2752@posting.google.com>... > > Can you try on another computer? Do you get same result? > > > Right; another computer works fine - Thanks > But I can't find the diffenrence between two computers. Both have WinXP with > SP1 alls all releated updates via SUS > > Matthias 
Other interesting topics
How to create a client side certificate on a Windows 2000 Server
Web Application cannot create folder in wwwroot\ Server security localhost vs IP address in IE SSL setup problem on IIS 5 Problem with securing of Windows 2000 SP4 IIS with AD Windows 2003 Requisites for a very unsafe IIS5! IIS 401 Error System.UnauthorizedAccessException //got stuck IServerXMLHTTPRequest authentication problem |
|||||||||||||||||||||||
