Link to home
Start Free TrialLog in
Avatar of Brentxhange
BrentxhangeFlag for Canada

asked on

IIS7 Authentication with multiple sites

I have multiple web sites in IIS 7.0 all running on port 80 responding to different http headers. All the sites use Digest Authentication.  Whenever a user changes sites (site1.mycompany.com -> site2.mycompany.com) they have to re-authenticate.  How can i allow them to log in once, using digest authentication, and never have to log in again during that Internet Explorer session? Implimenting a forms-based authentication solution is NOT a viable option.
Avatar of Ted Bouskill
Ted Bouskill
Flag of Canada image

Each web site runs as it's own web application with it's own threads and doesn't share memory.  So, each has to do it's own authentication.

If you are in an intranet and the clients belong to 'mycompany.com' and their NIC domain suffix is 'mycompany.com' then IE will automatically log them into the web application.  At least it does for Windows Authentication which is what I use.

If you add the 'http://*.mycompany.com' to the Trusted Sites and set automatic log in it should work as well.
Avatar of Brentxhange

ASKER

Windows Authentication is not an option because people are connecting through a firewall from the internet.
Have you tried it?  I didn't say it won't work for Digest.  I just said it will work for Windows Authentication.

Also, what type of firewall are you using?  It's been my experience that when the firewall is set correctly Windows Authentication can pass through firewalls.
i have tried it.  for users to authenticate, they have to manually type in the domain name + their username because it tries to authenticate as "subsite.domainname\username" if they just input their username, which doesn't work, so they have to change it to "domainname\username".
ASKER CERTIFIED SOLUTION
Avatar of Ted Bouskill
Ted Bouskill
Flag of Canada image

Link to home
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
Start Free Trial
Sometimes the correct answer is 'No there isn't a solution'
I completly disagree with you, but it's not worth the fight