[Sorry if this gets re-posted. I tried sending to this NG using
Thunderbird, but it didn't appear.]
Hi,
I am having a problem with Firefox failing to do "manual" NTLM
authentication. By "manual", I mean where, when you access the
website, you get a popup login window and enter domain\username and
password. When I do this, instead of being able to access the website,
the popup login window just re-appears.
Some background:
The webserver is an IIS6 webserver on Windows 2003 Server. Hostname
is idmiwa.whatever.com.
This (both manual and automatic NTLM login with Firefox with IIS6)
works fine in a different, parallel environment.
When I configure the ntlm.trusted-uris in Firefox about:config with
".whatever.com", AUTOMATIC ntlm authentication works, and in the IIS
Event Viewer, I can see the logon event and it says "NTLM".
However, during testing, with the trusted-uris empty/default, I cannot
login manually.
So, it appears that, for some reason, when Firefox does the automatic
NTLM login (ntlm.trusted-uris set), it works, but when Firefox is not
configured for automatic NTLM login (ntlm.trusted-uris default/not
set) it doesn't work.
It's puzzling to me why the manual NTLM authentication would not work,
since in both cases (automatic and manual), NTLM is being used. Can
anyone suggest why that would be the case?
Thanks,
Jim
P.S. I am aware that Firefox can do automatica login using Kerberos,
using the negotiate.trusted-uris setting, but in our case, we need to
do NTLM rather than Kerberos.
___
dev-security mailing list
dev-security@lists.mozilla.org
https://lists.mozilla.org/listinfo/dev-security
