?
Solved

IE Authentication Prompt, Pass-through authentication stops working

Posted on 2009-07-15
3
Medium Priority
?
610 Views
Last Modified: 2013-12-08
We use Business Portal 2.0 (built on Sharepoint 2.0) for our intranet.  We use pass-through authentication for the intranet.  

Through AD (2003) we enforce a 90-day password expiration policy.

On random machines (WinXP, IE7), when they have to reset their password, IE fails to register the change and the authentication prompt begins to pop-up every time they try to go to the intranet.  They can manually enter the credentials every time and it works, but we want the pass through authentication to work.

This does not seem to happen consistently across the network (e.g. not all IE7 users have this issue as far as we can assess).  

Our really lame workaround has been to uninstall IE and reinstall and that mostly works.  However, I have a machine on hand for which this is not resolving the issue.  

Can anyone give me pointers on where I can look to see if I can flush out the old password...Clearing the cache, cookies, temp internet files, etc., does not cut it?  

Thanks in advance for any feedback.
0
Comment
Question by:12handle
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
  • 2
3 Comments
 
LVL 26

Accepted Solution

by:
Shaun Kline earned 1000 total points
ID: 24860487
On of the items we have found is that when a user is prompted, they click the "Save Password". On subsequent attempts to access the site, the saved password is used instead of the trying to re-authenticate against the network. Most users do not notice until they change their password, at which time the saved password is now incorrect. To remove the saved password, Go to the "User Accounts" control panel, switch to the Advanced Tab (it appears that you need administrator permissions to see this tab) and click the Manage Passwords button. From there, just remove any stored passwords listed for your site(s).
0
 
LVL 26

Expert Comment

by:Shaun Kline
ID: 24860519
If you do not see the Advanced tab mentioned above, try the following from the Run dialog box:
rundll32.exe keymgr.dll,KRShowKeyMgr
0
 

Author Closing Comment

by:12handle
ID: 31603792
Thank you very much.  Pretty obvious, but just couldn't make my brain look in that direction...wanted it to be something in IE.  You solved the issue right away, thank you very much.
0

Featured Post

Free Tool: ZipGrep

ZipGrep is a utility that can list and search zip (.war, .ear, .jar, etc) archives for text patterns, without the need to extract the archive's contents.

One of a set of tools we're offering as a way to say thank you for being a part of the community.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Auditing domain password hashes is a commonly overlooked but critical requirement to ensuring secure passwords practices are followed. Methods exist to extract hashes directly for a live domain however this article describes a process to extract u…
Had a business requirement to store the mobile number in an environmental variable. This is just a quick article on how this was done.
This tutorial will walk an individual through the process of transferring the five major, necessary Active Directory Roles, commonly referred to as the FSMO roles from a Windows Server 2008 domain controller to a Windows Server 2012 domain controlle…
Microsoft Active Directory, the widely used IT infrastructure, is known for its high risk of credential theft. The best way to test your Active Directory’s vulnerabilities to pass-the-ticket, pass-the-hash, privilege escalation, and malware attacks …
Suggested Courses

801 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question