Welcome to MobyThreads.com!
FAQFAQ      ProfileProfile    Private MessagesPrivate Messages   Log inLog in
All support for the MobyThreads Threaded phpBB MOD can now be found on welsolutions at this forum

Host headers and integrated windows authentication problems

  
   Web Hosting and Web Master Forums (Home) -> IIS RSS
Next:  IIS and Other Services Problems - XP Pro  
Author Message
adamnickells

External


Since: Oct 20, 2003
Posts: 2



(Msg. 1) Posted: Mon Oct 20, 2003 6:25 pm
Post subject: Host headers and integrated windows authentication problems
Archived from groups: microsoft>public>inetserver>iis (more info?)
Hi,

here's the problem. It's fairly long......and it is seriously starting to
annoy me too! Smile

IIS5 - Windows 2000 Server

I've created a new website called Systems Team. It's running on port 80,
same port as the default site, so I've given it a host header of
systems.test.co.uk. The bit after systems is our domain name.

I've created a DNS entry in our test.co.uk zone called Systems pointing to
the IP of the server.

No problems so far. All website access is fine using a URL of
http://systems.test.co.uk.

Now, when I restrict permissions on the folder that the website maps to it
all goes pear shaped. I have permissions set so that only Domain Admins have
rights to the folder. The website is configured for Integrated
Authentication and Basic Authentication. Basic is so that we can access it
if we're not logged into a PC as ourselves.

Now when I go to systems.test.co.uk, I get prompted for a username and
password. If I enter my details which I'm already logged on with, I get in
fine. So for some reason, the integrated authentication isn't working.

Now if I remove this new site, add a Virtual Directory under the default
site, so I just reference the site by http://servername/systems I get in
with no problems.

Soooo...it seems to be a problem with using Host Headers and permissions on
the website folder.

Anyone got any ideas?

Cheers,

Adam

 >> Stay informed about: Host headers and integrated windows authentication problems 
Back to top
Login to vote
user641

External


Since: Aug 22, 2003
Posts: 1637



(Msg. 2) Posted: Mon Oct 20, 2003 6:25 pm
Post subject: Re: Host headers and integrated windows authentication problems [Login to view extended thread Info.]
Archived from groups: per prev. post (more info?)
"Adam Nickells" <adamnickells.TakeThisOut@hotmail.com> wrote in message
news:1066659813.588339@ananke.eclipse.net.uk...
 > Hi,
 >
 > here's the problem. It's fairly long......and it is seriously starting to
 > annoy me too! Smile
 >
 > IIS5 - Windows 2000 Server
 >
 > I've created a new website called Systems Team. It's running on port 80,
 > same port as the default site, so I've given it a host header of
 > systems.test.co.uk. The bit after systems is our domain name.
 >
 > I've created a DNS entry in our test.co.uk zone called Systems pointing to
 > the IP of the server.
 >
 > No problems so far. All website access is fine using a URL of
<font color=purple> > <a style='text-decoration: underline;' href="http://systems.test.co.uk.</font" target="_blank">http://systems.test.co.uk.</font</a>>
 >
 > Now, when I restrict permissions on the folder that the website maps to it
 > all goes pear shaped. I have permissions set so that only Domain Admins
have
 > rights to the folder. The website is configured for Integrated
 > Authentication and Basic Authentication. Basic is so that we can access it
 > if we're not logged into a PC as ourselves.
 >
 > Now when I go to systems.test.co.uk, I get prompted for a username and
 > password. If I enter my details which I'm already logged on with, I get in
 > fine. So for some reason, the integrated authentication isn't working.
 >
 > Now if I remove this new site, add a Virtual Directory under the default
 > site, so I just reference the site by <a style='text-decoration: underline;' href="http://servername/systems" target="_blank">http://servername/systems</a> I get in
 > with no problems.
 >
 > Soooo...it seems to be a problem with using Host Headers and permissions
on
 > the website folder.
 >
 > Anyone got any ideas?

Are you sure IE has been configured correctly to know that the FQDN is part
of your intranet? By default, it knows that a simple servername is.

In IE, Go to Tools -> Internet Options -> Security -> Custom Level -> User
Authentication -> Logon and make sure it's not prompting for intranet use.
You can also add your domain or IP to the no proxy setting to get IE to
recognize it as the intranet. Tools -> Internet Options -> Connections ->
LAN Settings -> Advanced.

For security configuration you need to go Tools > Internet Options >
Security > Local intranet > Sites... > Advanced > Add this web site or IP to
the zone.

--
Tom Kaminski IIS MVP
<a style='text-decoration: underline;' href="http://www.iistoolshed.com/" target="_blank">http://www.iistoolshed.com/</a> - tools, scripts, and utilities for running IIS
<a style='text-decoration: underline;' href="http://mvp.support.microsoft.com/" target="_blank">http://mvp.support.microsoft.com/</a>
<a style='text-decoration: underline;' href="http://www.microsoft.com/windowsserver2003/community/centers/iis/" target="_blank">http://www.microsoft.com/windowsserver2003/community/centers/iis/</a><!-- ~MESSAGE_AFTER~ -->

 >> Stay informed about: Host headers and integrated windows authentication problems 
Back to top
Login to vote
kenremove

External


Since: Aug 23, 2003
Posts: 2901



(Msg. 3) Posted: Tue Oct 21, 2003 4:39 pm
Post subject: Re: Host headers and integrated windows authentication problems [Login to view extended thread Info.]
Archived from groups: per prev. post (more info?)
Please post to one newsgroup only.

Cheers
Ken


"Adam Nickells" <adamnickells.DeleteThis@hotmail.com> wrote in message
news:1066659813.588339@ananke.eclipse.net.uk...
: Hi,
:
: here's the problem. It's fairly long......and it is seriously starting to
: annoy me too! Smile
:
: IIS5 - Windows 2000 Server
:
: I've created a new website called Systems Team. It's running on port 80,
: same port as the default site, so I've given it a host header of
: systems.test.co.uk. The bit after systems is our domain name.
:
: I've created a DNS entry in our test.co.uk zone called Systems pointing to
: the IP of the server.
:
: No problems so far. All website access is fine using a URL of
: http://systems.test.co.uk.
:
: Now, when I restrict permissions on the folder that the website maps to it
: all goes pear shaped. I have permissions set so that only Domain Admins
have
: rights to the folder. The website is configured for Integrated
: Authentication and Basic Authentication. Basic is so that we can access it
: if we're not logged into a PC as ourselves.
:
: Now when I go to systems.test.co.uk, I get prompted for a username and
: password. If I enter my details which I'm already logged on with, I get in
: fine. So for some reason, the integrated authentication isn't working.
:
: Now if I remove this new site, add a Virtual Directory under the default
: site, so I just reference the site by http://servername/systems I get in
: with no problems.
:
: Soooo...it seems to be a problem with using Host Headers and permissions
on
: the website folder.
:
: Anyone got any ideas?
:
: Cheers,
:
: Adam
:
:
 >> Stay informed about: Host headers and integrated windows authentication problems 
Back to top
Login to vote
adamnickells

External


Since: Oct 20, 2003
Posts: 2



(Msg. 4) Posted: Tue Oct 21, 2003 5:30 pm
Post subject: Re: Host headers and integrated windows authentication problems [Login to view extended thread Info.]
Archived from groups: per prev. post (more info?)
After posting this message I saw the other newsgroup and thought that would
be more appropriate. I did say that at the top of the other post.

Cheers,

Adam

"Ken Schaefer" <kenREMOVE.RemoveThis@THISadOpenStatic.com> wrote in message
news:%23k7erT4lDHA.2140@TK2MSFTNGP09.phx.gbl...
 > Please post to one newsgroup only.
 >
 > Cheers
 > Ken
 >
 >
 > "Adam Nickells" <adamnickells.RemoveThis@hotmail.com> wrote in message
 > news:1066659813.588339@ananke.eclipse.net.uk...
 > : Hi,
 > :
 > : here's the problem. It's fairly long......and it is seriously starting
to
 > : annoy me too! Smile
 > :
 > : IIS5 - Windows 2000 Server
 > :
 > : I've created a new website called Systems Team. It's running on port 80,
 > : same port as the default site, so I've given it a host header of
 > : systems.test.co.uk. The bit after systems is our domain name.
 > :
 > : I've created a DNS entry in our test.co.uk zone called Systems pointing
to
 > : the IP of the server.
 > :
 > : No problems so far. All website access is fine using a URL of
<font color=purple> > : <a style='text-decoration: underline;' href="http://systems.test.co.uk.</font" target="_blank">http://systems.test.co.uk.</font</a>>
 > :
 > : Now, when I restrict permissions on the folder that the website maps to
it
 > : all goes pear shaped. I have permissions set so that only Domain Admins
 > have
 > : rights to the folder. The website is configured for Integrated
 > : Authentication and Basic Authentication. Basic is so that we can access
it
 > : if we're not logged into a PC as ourselves.
 > :
 > : Now when I go to systems.test.co.uk, I get prompted for a username and
 > : password. If I enter my details which I'm already logged on with, I get
in
 > : fine. So for some reason, the integrated authentication isn't working.
 > :
 > : Now if I remove this new site, add a Virtual Directory under the default
 > : site, so I just reference the site by <a style='text-decoration: underline;' href="http://servername/systems" target="_blank">http://servername/systems</a> I get in
 > : with no problems.
 > :
 > : Soooo...it seems to be a problem with using Host Headers and permissions
 > on
 > : the website folder.
 > :
 > : Anyone got any ideas?
 > :
 > : Cheers,
 > :
 > : Adam
 > :
 > :
 >
 ><!-- ~MESSAGE_AFTER~ -->
 >> Stay informed about: Host headers and integrated windows authentication problems 
Back to top
Login to vote
timcof

External


Since: Sep 02, 2003
Posts: 912



(Msg. 5) Posted: Mon Nov 10, 2003 11:30 am
Post subject: RE: Host headers and integrated windows authentication problems [Login to view extended thread Info.]
Archived from groups: per prev. post (more info?)
Ensure that the request is not going out a proxy, etc, as integrated won't work in that fashio. Try setting up some NetBIOS names and see if that will work.
The reason is that IE will know that this is an internal request, whereas when it sees what appears to be a FQDN, it thinks internet.

Thank you. I hope this information is helpful.

Tim Coffey [MSFT]

This posting is provided “AS IS” with no warranties, and confers no rights. You assume all risk for your use. © 2001 Microsoft Corporation. All rights reserved.
--------------------
| From: "Adam Nickells" <adamnickells DeleteThis @hotmail.com>
| Subject: Host headers and integrated windows authentication problems
| Date: Mon, 20 Oct 2003 15:25:07 +0100
| Lines: 41
| X-Priority: 3
| X-MSMail-Priority: Normal
| X-Newsreader: Microsoft Outlook Express 6.00.2800.1158
| X-MimeOLE: Produced By Microsoft MimeOLE V6.00.2800.1165
| Organization: Ye 'Ol Disorganized NNTPCache groupie
| Message-ID: <1066659813.588339 DeleteThis @ananke.eclipse.net.uk>
| Cache-Post-Path: ananke.eclipse.net.uk!unknown@gatekeeper.onthinice.net
| X-Cache: nntpcache 2.4.0b5 (see http://www.nntpcache.org/)
| Newsgroups: microsoft.public.inetserver.iis
| NNTP-Posting-Host: ananke.eclipse.net.uk 212.104.129.36
| Path: cpmsftngxa06.phx.gbl!TK2MSFTNGP08.phx.gbl!TK2MSFTNGP11.phx.gbl
| Xref: cpmsftngxa06.phx.gbl microsoft.public.inetserver.iis:280396
| X-Tomcat-NG: microsoft.public.inetserver.iis
|
| Hi,
|
| here's the problem. It's fairly long......and it is seriously starting to
| annoy me too! Smile
|
| IIS5 - Windows 2000 Server
|
| I've created a new website called Systems Team. It's running on port 80,
| same port as the default site, so I've given it a host header of
| systems.test.co.uk. The bit after systems is our domain name.
|
| I've created a DNS entry in our test.co.uk zone called Systems pointing to
| the IP of the server.
|
| No problems so far. All website access is fine using a URL of
| http://systems.test.co.uk.
|
| Now, when I restrict permissions on the folder that the website maps to it
| all goes pear shaped. I have permissions set so that only Domain Admins have
| rights to the folder. The website is configured for Integrated
| Authentication and Basic Authentication. Basic is so that we can access it
| if we're not logged into a PC as ourselves.
|
| Now when I go to systems.test.co.uk, I get prompted for a username and
| password. If I enter my details which I'm already logged on with, I get in
| fine. So for some reason, the integrated authentication isn't working.
|
| Now if I remove this new site, add a Virtual Directory under the default
| site, so I just reference the site by http://servername/systems I get in
| with no problems.
|
| Soooo...it seems to be a problem with using Host Headers and permissions on
| the website folder.
|
| Anyone got any ideas?
|
| Cheers,
|
| Adam
|
|
|
 >> Stay informed about: Host headers and integrated windows authentication problems 
Back to top
Login to vote
Display posts from previous:   
Related Topics:
IIS 6 and host headers - We seem to be having an issue with host headers and name resolution. The ASP.NET application was moved from IIS 5 to IIS 6 (Win2003). The host headers were set as below 80, MySite 80, MySite.Mycompany.net 10000 Trying to navigate to http://MySite..

host headers - I actually dont know if the answer of this question has anything to do with host headers. I got IIS 6.0 installed on a Windows 2003 Server. I got two different websites configured with two different host headers and two different dynamic dns adresses..

Please Help with IIS 5.0 Host Headers - I have Small Business Server 2000, with SQL Server, Exchange 2000, DNS Server, DHCP Server, Active Directory, and IIS 5.0 installed on the server. I have no problems with SQL or Exchange, but the host headers do not always load up on IIS 5.0. The..

Integrated Windows Authentication - Hi, I'm trying to find out if anyone knows if it is possible to check if this setting is checked in IE. This setting is located here: 1. In Internet Explorer, select Tools > Internet Options. 2. Click the Advanced tab. 3. Scroll down to the Secur...

Integrated Windows Authentication - I am using Integrated Windows Authentication to protect a directory on a web server. All clients connect and authenticate using MSIE using W2k or better. It works fine inside my LAN, and on some other places outside my LAN, but on some computers when I..
   Web Hosting and Web Master Forums (Home) -> IIS All times are: Pacific Time (US & Canada) (change)
Page 1 of 1

 
 You can post new topics in this forum
You can reply to topics in this forum
You cannot edit your posts in this forum
You cannot delete your posts in this forum
You cannot vote in polls in this forum



[ Contact us | Terms of Service/Privacy Policy ]