Avatar of skykingjwc
 asked on

Is it possible to set up IIS7 Windows Authentication so that users inside the domain using IE will not see a password prompt?

I have a folder on our IIS7 server that should only be acessible by domain users.  While they are inside the building and logged into the domain I would like them to be able to browse to this folder without being bothered by the password prompt.  Is there a way to have IIS use the id of the currently logged in user?

I would also like them to be able to access the folder from outside the network (from home) in this case a password prompt is acceptable.
Web ServersMicrosoft IIS Web ServerWindows OS

Avatar of undefined
Last Comment

8/22/2022 - Mon

If you use Integrated Authentication in IIS, and set NTFS permissions on the home directory to authenticated users, it should auto-authenticate them when they are logged in to the domain, and prompt them when they are at home (since their browser will not send domain credentials).

This is all assuming that the server you have this hosted on is available to outside users.

I already tried that and it still pops up the box asking for a password.
I am doing this from inside the buildings while logged into the domain. Our server is on our internal network and is also a domain member.

When I type in my domain credientials it lets me in, but I would like to be able to skip this if I am already logged in.

Just wondering, Is anonymous access turned off? I know you can have both anonymous and integrated turned on at the same time.

Since IE will attempt anonymous first, it may be prompting because anonymous does not have access.
Experts Exchange is like having an extremely knowledgeable team sitting and waiting for your call. Couldn't do my job half as well as I do without it!
James Murphy

Anonymous authentication is off,  if i turn it on everyone can get it because the anonymous user is the ASP.NET user.

My current settings are
Anonymous Auth : Off
ASP.NET Impersonation : On
Basic Auth: Off
Forms Auth: Off
Windows Auth: Enabled


View this solution by signing up for a free trial.
Members can start a 7-Day free trial and enjoy unlimited access to the platform.
See Pricing Options
Start Free Trial
Ask your own question & get feedback from real experts
Find out why thousands trust the EE community with their toughest problems.

A bit late probably, but you should be aware that supplying domain credentials across the Internet is a *BAD THING*, as these will be sent plain text!

If you have to then use SSL to encrypt at least the web-facing connections (enable both HTTP and HTTPS on the server, but only allow incoming Port 443 through the external firewall).