Lame, John <[EMAIL PROTECTED]>:
> "Server"="Microsoft-IIS/4.0"
> "Date"="Wed, 10 Mar 1999 00:07:08 GMT"
> "Connection"="keep-alive"
> "WWW-Authenticate"="NTLM"
> "Content-Type"="text/html"
> "Content-Length"="265"
> "WWW-Authenticate"="BASIC realm="xtLqRyz293""
> "Connection"="Keep-alive"
>
>Apparently IIS is prepending an additional request for authorization
>to the header (thanks a lot bill!). Now if the browser is anything
>other than Internet Explorer, this is not a problem since the "NTLM"
>(NT Lan Manager) Authorization Type is apparently ignored and a
>nice Base64 encoded "username:password" string is sent back.
>However, if the Browser is Internet Explorer, then it sends back
>something completely different.
Have you tried changing the authentication options in the Internet Service
Manager (or whatever it's called)? I can't get to my IIS server now, but if
I remember correctly, if you go to your web site's properties window and
click on "security" or something, there are three choices. One of them is
basic, and the second two are NT security. (It's all a bit fuzzy in my mind;
I haven't looked at it in a while.) Perhaps turning of the NT checkboxes
would help.
Just a blind guess...
Erik
___________________________________________________________________________
To unsubscribe, send email to [EMAIL PROTECTED] and include in the body
of the message "signoff SERVLET-INTEREST".
Archives: http://archives.java.sun.com/archives/servlet-interest.html
Resources: http://java.sun.com/products/servlet/external-resources.html
LISTSERV Help: http://www.lsoft.com/manuals/user/user.html
