Common Tasks
Search
  • Advanced search options...
Tags
Archives
Archives

Integrated Authentication does not work with domain name

MSDN Blogs > Never doubt thy debugger > Integrated Authentication does not work with domain name

Integrated Authentication does not work with domain name

19 Apr 2007 1:49 AM
  • Comments 2

 

This is an easy one, but we got cases like this every now and then... maybe worth repeating.

If you use Windows Integrated Authentication in IIS, everything works fine if you browse "http://netbiosname", but Integrated Authentication fails is you browse "http://dnsname". Why?

Because if the DNS machine name contains a dot ("."), the web site automatically belongs to the "Internet" zone, and by default IE does not sent the account credentials.

How to solve this? Easy, you have two options:

  1. Add the URL to the "Trusted Sites" in Internet Explorer
  2. Modify the security parameter to allow "Automatic logon with current user name and password" (Control Panel -> Internet Options -> Security tab -> Internet -> Custom level...)

    internet security zone setting

Update:
By the way, I forgot to mention that this is also true if you use the IP address instead of the netbios name: e.g. http://xxx.xxx.xxx.xxx

 

Cheers

,
Leave a Comment
  • Please add 7 and 7 and type the answer here:
  • Post
Comments
  • Tad
    19 Apr 2007 9:39 AM

    You can also just add http://*.domain.com to take care of all your domain's sites.

  • 20 Apr 2007 12:37 AM

    Yep, nice variation of point 1., thanks :-)

Page 1 of 1 (2 items)