|
security
newsgroups
|
|||||||||||||||||||||||
|
|||||||||||||||||||||||
Problem with Integrated Windows authentication on SSL connection - second timestrying to configure the access to this site with "Integrated Windows authentication". If I access the site from my notebook which is connected to the LAN it works fine after I added the site to the trusted sites in the IE of the local machine. Next step is to connect the https site from out site the LAN with a dialup connection to the internet. If the https site is in my trusted sites settings I get the error message that the site can't be found. If I try it again after I deleted the https site out of the trusted sites I get a user logon window and already works fine. This is the situation on some notebooks after installing WinXP SP2. On these notebooks the IE has the version 6.0.2900.2180.XPSP_SP2_RTM.040803-2158 On another notebook with WinXP SP2 it wokrs fine on both connections. Here the IE has the version 6.0.2900.2149.XPSP_SP2_GDR.050301-1519IS All notebooks get their update via SUS ina domain. Any ideas? Matthias Your problem does not sound like it has anything to do with IIS.
Browser-side configuration fixed your issue, so I would start there. The IE versions on the two notebooks are different, so it looks like either SUS or the laptop is not configured correctly. -- //David IIS http://blogs.msdn.com/David.Wang This posting is provided "AS IS" with no warranties, and confers no rights. // "Matze" <mbe***@gmx.de> wrote in message I'm using a https web site with SSL certificate on a IIS 6 and now I'mnews:4ff6750e.0504270639.8d9e981@posting.google.com... trying to configure the access to this site with "Integrated Windows authentication". If I access the site from my notebook which is connected to the LAN it works fine after I added the site to the trusted sites in the IE of the local machine. Next step is to connect the https site from out site the LAN with a dialup connection to the internet. If the https site is in my trusted sites settings I get the error message that the site can't be found. If I try it again after I deleted the https site out of the trusted sites I get a user logon window and already works fine. This is the situation on some notebooks after installing WinXP SP2. On these notebooks the IE has the version 6.0.2900.2180.XPSP_SP2_RTM.040803-2158 On another notebook with WinXP SP2 it wokrs fine on both connections. Here the IE has the version 6.0.2900.2149.XPSP_SP2_GDR.050301-1519IS All notebooks get their update via SUS ina domain. Any ideas? Matthias Hi @ all,
now I've found the solution for my problem by a colleague with knowledge in single sign on projects. The problem is that the DC is not reachable from outsite the lan to verify the kerberos ticket. One solution is to deactivate the kerberos function in the IIS. See also the KB entry: http://support.microsoft.com/?id=215383 Regards, Matthias 
Other interesting topics
Cannot find server or DNS error
401 Unauthorized trying to read SPList Attachment - owssrv.dll Access Denied to share with anonymous access disabled How to remove version of IIS 6.0 on Windows 2003 Server? Permission Denied when writing text file from ASP Site access only through Local groups SSL doesn't work IWA with multiple AD Traverse rights - yet can read files. Help? Issiung certifcates by a Windows 2000 Enterprise CA |
|||||||||||||||||||||||
