Does this application has several applications inside with separate web.config?
-Nauman.
Main Topics
Browse All TopicsI have an ASP.NET (Visual Studio 2003) application that uses windows authentication. IIS is running on our company Intranet server which runs Windows Server 2003 and IIS 6. We also use Active Directory. When you open the start page it prompts you to login using the same information you already used to get logged on to the network. Since the user is already “in”, how can I prevent the IIS server from prompting for their credentials again?
Thanks!
This Question has been solved and asker verified All Experts Exchange premium technology solutions are available to subscription members.
Experts Exchange has been collecting answers to technology questions since 1996…3 million and counting! If you have a question, chances are we already have your answer.
If you can't find the exact answer you're looking for, ask our exclusive community of 50,000 experts. You’ll get a personalized answer from a trusted professional.
Thousands of free tech tips, tricks, how-to’s and tutorials are available in our peer reviewed articles section. See for yourself how smart our experts are, no login required.
Access the answers to your technology questions today.
30-day free trial. Register in 60 seconds.
Members of the expert community talk about why the experience at Experts Exchange is different than what you will find anywhere else.

Try it out and discover for yourself.
30-day free trial. Register in 60 seconds.
Join the community of experts here and help other tech pros by answering question in your area of expertise. You can earn FREE access to all Experts Exchange's premium features and resources.
remember to uncheck "Anonymous Access".
BTW, under "directory security" > you need to click "Edit" to go to "Authentication" windows where you can select "Integrated Windows Authentication" and uncheck "Anonymouse Access" and also uncheck "Basic Authentication".
Think currently your "Basic Authentication" is ticked.
Nauman Ahmed,
The app has its own web.config file and its own virtual directory in IIS.
Bsdotnet,
We already had all the directory security options set as you suggested. We think the problem might be that we are hitting the server through the internet even though it's on our intranet, so we're trying to see if we can get a different server that is on the LAN instead of that one. I'll post back with more information. It may be that there is no problem if we get to IIS through a private IP instead of a public one, you think?
Thanks!
Even if you use Private IP it will still prompt you for user-pwd. But if you use the name of the server instead of IP Address, windows authentication will work fine.
Also in some of the IE Internet Options - Security - Custom Level - At the bottom of it - User Authentication - Prompt for Username and Password is selected then browser will always prompt for user/pass no matter what.
Thanks,
Amit
from AJesani> "Even if you use Private IP it will still prompt you for user-pwd. But if you use the name of the server instead of IP Address, windows authentication will work fine."
That was the magic bullet! Once we started using the server's name instead of its IP address, the login went away entirely and all my System.Security.Principal code worked perfectly. That was the only change required. No change to the code whatsoever.
Thanks for the heads-up about the IE options too.
Business Accounts
Answer for Membership
by: bsdotnetPosted on 2006-03-21 at 14:06:57ID: 16252185
go to iis > right click your application folder > Properties > go to "Directory Security Tab" > select "Integrated Windows Authentication
REmember to uncheck the other options.