AboutPricingCommunityTeamsStart Free TrialLog in
Avatar of skykingjwc
skykingjwc
 asked on

Is it possible to set up IIS7 Windows Authentication so that users inside the domain using IE will not see a password prompt?

I have a folder on our IIS7 server that should only be acessible by domain users.  While they are inside the building and logged into the domain I would like them to be able to browse to this folder without being bothered by the password prompt.  Is there a way to have IIS use the id of the currently logged in user?

I would also like them to be able to access the folder from outside the network (from home) in this case a password prompt is acceptable.
Web ServersMicrosoft IIS Web ServerWindows OS
Avatar of undefined
Last Comment
davidcornes
8/22/2022 - Mon
WebDOT
If you use Integrated Authentication in IIS, and set NTFS permissions on the home directory to authenticated users, it should auto-authenticate them when they are logged in to the domain, and prompt them when they are at home (since their browser will not send domain credentials).

This is all assuming that the server you have this hosted on is available to outside users.
skykingjwc
ASKER
I already tried that and it still pops up the box asking for a password.
I am doing this from inside the buildings while logged into the domain. Our server is on our internal network and is also a domain member.

When I type in my domain credientials it lets me in, but I would like to be able to skip this if I am already logged in.
WebDOT
Just wondering, Is anonymous access turned off? I know you can have both anonymous and integrated turned on at the same time.

Since IE will attempt anonymous first, it may be prompting because anonymous does not have access.
Experts Exchange is like having an extremely knowledgeable team sitting and waiting for your call. Couldn't do my job half as well as I do without it!
James Murphy
skykingjwc
ASKER
Anonymous authentication is off,  if i turn it on everyone can get it because the anonymous user is the ASP.NET user.

My current settings are
Anonymous Auth : Off
ASP.NET Impersonation : On
Basic Auth: Off
Forms Auth: Off
Windows Auth: Enabled

ASKER CERTIFIED SOLUTION
Storm-ENT
THIS SOLUTION ONLY AVAILABLE TO MEMBERS.
View this solution by signing up for a free trial.
Members can start a 7-Day free trial and enjoy unlimited access to the platform.
See Pricing Options
Start Free Trial
GET A PERSONALIZED SOLUTION
Ask your own question & get feedback from real experts
Find out why thousands trust the EE community with their toughest problems.
davidcornes
A bit late probably, but you should be aware that supplying domain credentials across the Internet is a *BAD THING*, as these will be sent plain text!

If you have to then use SSL to encrypt at least the web-facing connections (enable both HTTP and HTTPS on the server, but only allow incoming Port 443 through the external firewall).
Plans and Pricing
Resources
Product
Podcasts
Careers
Contact Us
Teams
Certified Expert Program
Credly Partnership
Udemy Partnership
Privacy Policy
Terms of Use

© 1996-2023 Experts Exchange, LLC. All rights reserved. Covered by US Patent