"David Wang [Msft]" wrote:

> Let me reiterate what your question is:
> You want all users to automatically authenticate as their own
> domain\username to an IIS server.
>
> What you want is the way that it works by default. Nothing has really
> changed. You need to make sure:
> 1. All clients and servers are in a domain (or different domains, as long as
> you've established the cross-domain trusts)
> 2. Enabled only Integrated authentication on IIS (make sure anonymous access
> is disabled).
>
> When you have this configured, users just log onto their machines using
> their domain\username, and it automatically gets passed to IIS as
> domain\username. Works like this with NT4, W2K, XP, and WS03.
>
>
> If I've misunderstood your question, then please clarify what you mean by:
> > Windows XP tries to authenticate with IIS as
> > IIS_Machinename\Username
>
> Do you mean XP runs as IUSR_Machinename on IIS, or IIS_Machinename\Username
> ? Because the former means that the local user on XP is unrecognized on IIS
> (by-design -- machines not inside a domain have no knowledge of user
> accounts on other machines), so it authenticated as the anonymous user on
> IIS. The latter does not make any sense to me and would be something
> specific to your domain that you need to fix.
>
> --
> //David
> IIS
> http://blogs.msdn.com/David.Wang
> This posting is provided "AS IS" with no warranties, and confers no rights.
> //
> "Benjamin Chan" <bchan[nospam]@[nospam]controlproductsinc.com> wrote in
> message news:%23vLOgtSQFHA.4020@tk2msftngp13.phx.gbl...
> To Whom It May Concern:
>
> Problem:
> Windows XP tries to authenticate with IIS as IIS_Machinename\Username
>
> Where I'd like to get it to do it like Win2k used to do and authenticate
> with IIS as Domain\Username
>
> I recently migrated IIS from a domain controller where the way the WinXP
> machines authenticate would have worked. But all my users are untrained and
> I'd hate to send out a company wide e-mail telling people to start using
> Domainname\Username.
>
> If any of you know of some IIS setting I could change, or Group Policy
> setting or script I could run to change a setting please let me know.
>
> Regards,
> Benjamin Chan
>
>
>
>

"David Wang [Msft]" wrote:

> Let me reiterate what your question is:
> You want all users to automatically authenticate as their own
> domain\username to an IIS server.
>
> What you want is the way that it works by default. Nothing has really
> changed. You need to make sure:
> 1. All clients and servers are in a domain (or different domains, as long
as
> you've established the cross-domain trusts)
> 2. Enabled only Integrated authentication on IIS (make sure anonymous
access
> is disabled).
>
> When you have this configured, users just log onto their machines using
> their domain\username, and it automatically gets passed to IIS as
> domain\username. Works like this with NT4, W2K, XP, and WS03.
>
>
> If I've misunderstood your question, then please clarify what you mean by:
> > Windows XP tries to authenticate with IIS as
> > IIS_Machinename\Username
>
> Do you mean XP runs as IUSR_Machinename on IIS, or
IIS_Machinename\Username
> ? Because the former means that the local user on XP is unrecognized on
IIS
> (by-design -- machines not inside a domain have no knowledge of user
> accounts on other machines), so it authenticated as the anonymous user on
> IIS. The latter does not make any sense to me and would be something
> specific to your domain that you need to fix.
>
> --
> //David
> IIS
> http://blogs.msdn.com/David.Wang
> This posting is provided "AS IS" with no warranties, and confers no
rights.
> //
> "Benjamin Chan" <bchan[nospam]@[nospam]controlproductsinc.com> wrote in
> message news:%23vLOgtSQFHA.4020@tk2msftngp13.phx.gbl...
> To Whom It May Concern:
>
> Problem:
> Windows XP tries to authenticate with IIS as IIS_Machinename\Username
>
> Where I'd like to get it to do it like Win2k used to do and authenticate
> with IIS as Domain\Username
>
> I recently migrated IIS from a domain controller where the way the WinXP
> machines authenticate would have worked. But all my users are untrained
and
> I'd hate to send out a company wide e-mail telling people to start using
> Domainname\Username.
>
> If any of you know of some IIS setting I could change, or Group Policy
> setting or script I could run to change a setting please let me know.
>
> Regards,
> Benjamin Chan
>
>
>
>

"David Wang [Msft]" wrote:

> What IIS version.
> What Authentication Protocol.
>
> By design, Integrated Authentication is going to require a domain. But if
> you configured it properly, Integrated Authentication should not result in a
> popup.
>
> --
> //David
> IIS
> http://blogs.msdn.com/David.Wang
> This posting is provided "AS IS" with no warranties, and confers no rights.
> //
> "kbob287" <kbob***@discussions.microsoft.com> wrote in message
> news:89A54696-C24E-47A8-80AA-4080512B15D0@microsoft.com...
> What if I want the users to authenticate as username and the domain is
> defaulted?  I have already defaulted the directory in the directory
> security,
> but it requires domain\username.  Help??
>
> "David Wang [Msft]" wrote:
>
> > Let me reiterate what your question is:
> > You want all users to automatically authenticate as their own
> > domain\username to an IIS server.
> >
> > What you want is the way that it works by default. Nothing has really
> > changed. You need to make sure:
> > 1. All clients and servers are in a domain (or different domains, as long
> as
> > you've established the cross-domain trusts)
> > 2. Enabled only Integrated authentication on IIS (make sure anonymous
> access
> > is disabled).
> >
> > When you have this configured, users just log onto their machines using
> > their domain\username, and it automatically gets passed to IIS as
> > domain\username. Works like this with NT4, W2K, XP, and WS03.
> >
> >
> > If I've misunderstood your question, then please clarify what you mean by:
> > > Windows XP tries to authenticate with IIS as
> > > IIS_Machinename\Username
> >
> > Do you mean XP runs as IUSR_Machinename on IIS, or
> IIS_Machinename\Username
> > ? Because the former means that the local user on XP is unrecognized on
> IIS
> > (by-design -- machines not inside a domain have no knowledge of user
> > accounts on other machines), so it authenticated as the anonymous user on
> > IIS. The latter does not make any sense to me and would be something
> > specific to your domain that you need to fix.
> >
> > --
> > //David
> > IIS
> > http://blogs.msdn.com/David.Wang
> > This posting is provided "AS IS" with no warranties, and confers no
> rights.
> > //
> > "Benjamin Chan" <bchan[nospam]@[nospam]controlproductsinc.com> wrote in
> > message news:%23vLOgtSQFHA.4020@tk2msftngp13.phx.gbl...
> > To Whom It May Concern:
> >
> > Problem:
> > Windows XP tries to authenticate with IIS as IIS_Machinename\Username
> >
> > Where I'd like to get it to do it like Win2k used to do and authenticate
> > with IIS as Domain\Username
> >
> > I recently migrated IIS from a domain controller where the way the WinXP
> > machines authenticate would have worked. But all my users are untrained
> and
> > I'd hate to send out a company wide e-mail telling people to start using
> > Domainname\Username.
> >
> > If any of you know of some IIS setting I could change, or Group Policy
> > setting or script I could run to change a setting please let me know.
> >
> > Regards,
> > Benjamin Chan
> >
> >
> >
> >
>
>
>

"Tom Kaminski [MVP]" wrote:

> "Jonathan Palmer" <JonathanPal***@discussions.microsoft.com> wrote in
> message news:807C90F4-B86C-4AA9-8C6F-CF9ABF521B8B@microsoft.com...
> > In my set up IIS 6 is running on a server machine in the domain but no a
> > domain controller.  When the user enters an unqualified user name and
> > password, authentication fails and the client user name is replaced by
> > IIS_server_name.domain_name.com\user_name
> >
> > how do I get the server to default to domain_name.com instead of
> > IIS_server_name.domain_name.com?
>
> Answered in your other post ... can we keep it to one thread?
>
> --
> Tom Kaminski IIS MVP
> http://www.microsoft.com/windowsserver2003/community/centers/iis/
> http://mvp.support.microsoft.com/
> http://www.iistoolshed.com/ - tools, scripts, and utilities for running IIS
>
>
> Hi,