IIS7 Authentication with multiple sites

Brentxhange
Brentxhange used Ask the Experts™
on
I have multiple web sites in IIS 7.0 all running on port 80 responding to different http headers. All the sites use Digest Authentication.  Whenever a user changes sites (site1.mycompany.com -> site2.mycompany.com) they have to re-authenticate.  How can i allow them to log in once, using digest authentication, and never have to log in again during that Internet Explorer session? Implimenting a forms-based authentication solution is NOT a viable option.
Comment
Watch Question

Do more with

Expert Office
EXPERT OFFICE® is a registered trademark of EXPERTS EXCHANGE®
Ted BouskillSenior Software Developer
Top Expert 2009

Commented:
Each web site runs as it's own web application with it's own threads and doesn't share memory.  So, each has to do it's own authentication.

If you are in an intranet and the clients belong to 'mycompany.com' and their NIC domain suffix is 'mycompany.com' then IE will automatically log them into the web application.  At least it does for Windows Authentication which is what I use.

If you add the 'http://*.mycompany.com' to the Trusted Sites and set automatic log in it should work as well.

Author

Commented:
Windows Authentication is not an option because people are connecting through a firewall from the internet.
Ted BouskillSenior Software Developer
Top Expert 2009

Commented:
Have you tried it?  I didn't say it won't work for Digest.  I just said it will work for Windows Authentication.

Also, what type of firewall are you using?  It's been my experience that when the firewall is set correctly Windows Authentication can pass through firewalls.
Acronis in Gartner 2019 MQ for datacenter backup

It is an honor to be featured in Gartner 2019 Magic Quadrant for Datacenter Backup and Recovery Solutions. Gartner’s MQ sets a high standard and earning a place on their grid is a great affirmation that Acronis is delivering on our mission to protect all data, apps, and systems.

Author

Commented:
i have tried it.  for users to authenticate, they have to manually type in the domain name + their username because it tries to authenticate as "subsite.domainname\username" if they just input their username, which doesn't work, so they have to change it to "domainname\username".
Senior Software Developer
Top Expert 2009
Commented:
Based on your requirements there is no solution.
Ted BouskillSenior Software Developer
Top Expert 2009

Commented:
Sometimes the correct answer is 'No there isn't a solution'

Author

Commented:
I completly disagree with you, but it's not worth the fight

Do more with

Expert Office
Submit tech questions to Ask the Experts™ at any time to receive solutions, advice, and new ideas from leading industry professionals.

Start 7-Day Free Trial