Solved

WebDAV authentication

Posted on 2006-11-08
7
803 Views
Last Modified: 2009-07-29
There may be no answer for this one but I am giving it one last shot. I have configured WebDAV on IIS 6 so users can access home drives from outside our organization. I removed all authentication but Basic (using SSL) and added our domain (I do not have anonymous log on for the server or any virtuals). On the virtual directories I have checked "Always use the authenticated user's credentials when...." along with Read, Write and Dir Browsing. ACL's are set to give the users modify (even tried full control). I created a simple page that the user clicks a link to open the page. So here is what happens:

go to site - user is asked for authentication
user clicks on link - user is asked for authentications again
user clicks on a document - user is asked for autentication again

I would think that with the virtuals set to pass on the credentials we should not see this. I have tried to set the IE web browser to "Automatic logon with users logon and password". I have tried removing the domain from Basic auth. I have tried domain\user for logon. I have verified the server variables (username and password) are on the server correctly. It seems to be unfixable at this point and may have to live with it but incase anyone else has an answer...   Please do not forward me EE articles I have read them all, one person gave up on finding the solution I am just having some hope.
0
Comment
Question by:adom27
  • 5
  • 2
7 Comments
 
LVL 7

Expert Comment

by:CharliePete00
ID: 17899383
Does this also happen with systems connected from inside your network or just external users?  Is your web server a member of an AD domain?

Pass-through authentication makes use of the netlogon service.

On the client side (basically):

1.  Computer finds a DC and authenticates its computer account
2.  User authenticates to domain
3.  DC issues access token to client and netlogon sevice is started
4.  When client atempts to access domain resource server challenges client for authorization
5.  Client's netlogon service intercepts challenge and passes access token provided by DC
6.  Server validates access token with DC and allows access per permissions/rights sets

Unless both your clients and the web server are authenticated to the domain simple pass-though authentication is not going to work for you.
0
 
LVL 1

Author Comment

by:adom27
ID: 17899547
Thank you CharliePete00.

Yes the webserver is an AD member and it happens inside and outside the network.

So is my assumption correct that there is no way around this issue?
0
 
LVL 7

Accepted Solution

by:
CharliePete00 earned 500 total points
ID: 17899632
You are correct...


...but you said this also happens with users inside the network?  If those users are logged on to the network this should not be happening for them.
0
Netscaler Common Configuration How To guides

If you use NetScaler you will want to see these guides. The NetScaler How To Guides show administrators how to get NetScaler up and configured by providing instructions for common scenarios and some not so common ones.

 
LVL 1

Author Comment

by:adom27
ID: 17899796
I only have basic auth on to force authentication. I do not have intergrated turned on.
0
 
LVL 1

Author Comment

by:adom27
ID: 17899912
So here is another wrench. It acts differently every session. Sometimes it for auth on parent and subfolders. Sometimes is it is only subfolders, sometimes it is only files. It does not happen on other browsers though. Could this be a behavior of web folders?
0
 
LVL 1

Author Comment

by:adom27
ID: 17899917
"It does not happen on other browsers though"

Other then IE, like firefox.
0
 
LVL 1

Author Comment

by:adom27
ID: 17906858
Thank you for the info Charlie, I am going to close and consider this a bug. If any one does have an answer please email me.
0

Featured Post

Zoho SalesIQ

Hassle-free live chat software re-imagined for business growth. 2 users, always free.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

I guess it is not common knowledge to most Wintel engineers/administrators: If you have an SNMP-based monitoring system in your environment (and it's common to have SNMP or Syslog) it's reasonably easy to enable monitoring of the Windows Event logs,…
This may not be a text book method to resolve VSS backup issues but it seemed to have worked on few of the Windows 2003 servers we had issues while performing a Volume Shadow Copy backup. If you have issues while performing a shadow copy backup usin…
Here's a very brief overview of the methods PRTG Network Monitor (https://www.paessler.com/prtg) offers for monitoring bandwidth, to help you decide which methods you´d like to investigate in more detail.  The methods are covered in more detail in o…
With Secure Portal Encryption, the recipient is sent a link to their email address directing them to the email laundry delivery page. From there, the recipient will be required to enter a user name and password to enter the page. Once the recipient …

947 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question

Need Help in Real-Time?

Connect with top rated Experts

22 Experts available now in Live!

Get 1:1 Help Now