Prevent autologin in SharePoint site

Hi Everyone,

Currently when accessing the SharePoint 2010 site, the user is automatically logged in according to their Windows domain principal (e.g. DOMAIN\user1).

Is there a way to disable this automatic log-in? e.g. disable the Integrated Windows Authentication (NTLM?) from the SharePoint configuration?

The reason why we want to do this is to mimic the situation where the site is viewed by a user over the Internet. i.e. the user *is not* logged into a Windows domain.

We also want to be able to log-in as different users in order to test the site, including *not* logging in to simulate viewing the "public" site.

Thanks.

LVL 1
jjozAsked:
Who is Participating?
 
Justin SmithConnect With a Mentor Sr. System EngineerCommented:
Stop!

This is controlled through IE settings.  Just place your SharePoint url in the "internet zone".
0
 
NomohoCommented:
Hi Jioz,

You must deactivate NTLM in IIS for sharepoint site (sharepoint - 80 for example):
Start menu > run > inetmgr > ok
In the folder Web Sites, right click the IIS web site of your sharepoint application > properties > tab directory security > click on edit authentication and access control > uncheck Integrated Windows Authentication > check another one,

for example digest or basic (caution with this one, you must use an SSL certification on your IIS web site because the password is sent in clear text).
0
 
jjozAuthor Commented:
oh, sounds like this is a security issue if the password is sent as text over the network when I disable the NTLM authentication.
0
Easily manage email signatures in Office 365

Managing email signatures in Office 365 can be a challenging task if you don't have the right tool. CodeTwo Email Signatures for Office 365 will help you implement a unified email signature look, no matter what email client is used by users. Test it for free!

 
jjozAuthor Commented:
ah... so this can be automated from the Active Directory using Group Policy object ?
I was thinking if there is server setting that can be disabled from the CA site.
0
 
Justin SmithSr. System EngineerCommented:
Yes it can be controlled through GP.   I suggest testing first, obviously.
0
 
jjozAuthor Commented:
ok, thanks for the info, how about using this AAM configuration ? is it the same effect ?
AAM.jpg
0
 
Justin SmithConnect With a Mentor Sr. System EngineerCommented:
Again, auto-logon is an IE setting.  Not a SharePoint setting.  AAM Zones have nothing to do with it.
0
 
jjozAuthor Commented:
ah ok, so the above setting is useless ?
0
 
jjozAuthor Commented:
thanks man !
0
All Courses

From novice to tech pro — start learning today.