Link to home
Create AccountLog in
Avatar of moorthy_kulumani
moorthy_kulumani

asked on

IIS6 & Integrated windows authentication prompts login window !!!

We have an intranet application running on healthcare.yourdomain.co.uk.

We have deployed this application in a server belonging to mydomain.com domain. We have configured this application to use integrated windows authentication.

We have configured this application in server100.mydomain.com. (NetBIOS name DOMAIN).
Windows 2003 SP2 & IIS6.

We have created one more DNS entry healthcare.yourdomain.co.uk pointing to server100.mydomain.com.

We have configured the website for healthcare.yourdomain.co.uk on server100.mydomain.com
And I have placed a header healthcare.yourdomain.co.uk.

Our users PCs are in mydomain.com. (NetBIOS name DOMAIN).Whenever user types healthcare.yourdomain.co.uk in IE they are prompted for login window, it never consider integrated windows authentication. When I enter DOMAIN\myuserid and password it comes up with the website.

But when we try to access the application using server100.mydomain.com (we have configured this application default website and configured server100.mydomain.com & healthcare.yourdomain.co.uk as host headers), no auth prompt is shown; users are directly logged into the application

Ideally, when we try to access healthcare.yourdomain.co.uk the authentication prompt should not have come and users should be seamlessly logged into the application. What is the resolution of this problem?

Our users in mydomain.com. (NetBIOS name DOMAIN) should be able to access healthcare.yourdomain.co.uk without any prompt (it should use integrated windows authentication).

Thoughts?
Avatar of Ted Bouskill
Ted Bouskill
Flag of Canada image

I'm assuming you are using IE, Firefox doesn't have a fix for this and will always show a prompt dialog.

Any in IE if you look at the bottom right of IE it shows an icon for the current zone.  Intranet, Trusted or Internet are the standard three.  By default the automatic login for username and password will ONLY work for Intranet (local) sites.  However, for IE to decide that you are local is that the domain of the computer and the website have to be the same! (Which yours are not)

The only way to fix this is to change the IE policy settings so that the website is trusted and to autologon onto trusted sites.
ASKER CERTIFIED SOLUTION
Avatar of EDDYKT
EDDYKT
Flag of Canada image

Link to home
membership
Create a free account to see this answer
Signing up is free and takes 30 seconds. No credit card required.
See answer
SOLUTION
Link to home
membership
Create a free account to see this answer
Signing up is free and takes 30 seconds. No credit card required.
SOLUTION
Link to home
membership
Create a free account to see this answer
Signing up is free and takes 30 seconds. No credit card required.