On Thu, 13 Feb 2003, Norris, Joseph wrote:
> the user gets a pop-up for user/password combination. I have the notion
> (please correct me if wrong) that on IIs the same
> thing happens but the pop-up checks against the magic secrete windows stash
> of users/passwords. So am I correct in thinking
> that if a user uses his logon/password to get onto the windows network, that
> he would have to enter this again if he logs on to a IIs web page that is
> protected via the IIs user/password scenario?
I have done what you're describing and in general, you're right.
You get the logon prompt to logon to your workstation then you get it
again to logon to the web page. However, I've had cases where you don't
have to logon twice. I think when I used the "NT/Challenge Response"
authentication on IIS 4 and used a new version of Internet Explorer (I
think it was 5 and newer - didn't work for Netscape) and was logged onto
my workstation with a domain account that was valid for the web page, I
was not prompted again when going to the web. Originally I thought that
authentication wasn't working on the web page but later I found that I was
authenticated just that Internet Explorer seemed to have pulled the
credentials from my workstation logon information. Perhaps this is
something you can enable in Internet Explorer and on IIS. I never used
this authentication method because most of my users used Netscape.
_______________________________________________
Perl-Win32-Admin mailing list
[EMAIL PROTECTED]
To unsubscribe: http://listserv.ActiveState.com/mailman/mysubs
