Internet Related/Filtering/Firewall Thread, Intranet access off domain requires authentication in Technical; As most, we run an internal intranet server which is accessed by all as the home page. This only works ...
22nd November 2011, 10:56 AM #1
Intranet access off domain requires authentication
As most, we run an internal intranet server which is accessed by all as the home page. This only works fine for users connected, and accessing via their domain account login (domain networked clients).
Some staff use standalone laptops and in these cases we map network drives, printers etc manually but when they try and access our intranet site it asks them for a username/password (from the intranet server, not their domain one).
Anyone any idea why this is or how we'd resolve it?
IDG Tech News
22nd November 2011, 10:59 AM #2
It depends on if your intranet is static or requires logon to grab stuff lipe helpdesk/email status on the main page. If not just enable annonymous authentication on the site and set your file permissions so that the IIS_USR account has read perms or just give the everyone group read perms to the intranet files themselves.
Thanks to SYNACK from:
dgsmith (22nd November 2011)
22nd November 2011, 12:17 PM #3
Something so simple, something so effective, thanks
22nd November 2011, 12:54 PM #4
Seems that enabled anon auth throws back 500 errors to domain users on authentation-based areas of the intranet.
For example, we use MRBS and when I enabled anon auth the intranet worked except for this, which when loading gave a 500 access error. I disabled anon auth again and it worked..
Not sure how to get around that??
22nd November 2011, 12:56 PM #5
For areas that require auth, they'll need auth. Just disable annon for those folders in IIS and it will prompt for only those areas that need it.
Last edited by SYNACK; 22nd November 2011 at 12:59 PM.
22nd November 2011, 04:28 PM #6
Ok, so disabled anon auth for the specific folders that require a more local-level, however in the case of MRBS, with anon auth disabled, it again works fine for domain users but for standalone/non-domain access, it pops up a server credentials box (obviously the users cannot auth directly with the intranet server) and because of this, it prevents access to actually getting to the MRBS area.
Still rather confused!
22nd November 2011, 04:41 PM #7
Users need to logon to get to domain resources otherwise it defeats the purpose of user tracking and authentication for stuff like helpdesks. They should still be able to logon by using yourdomain\username as the username.
you can also set the default domain for some types of authentication How to configure IIS Web site authentication in Windows Server 2003
I think basic does this but it does send the password in cleartext which is not overly safe.
By gjames in forum Internet Related/Filtering/Firewall
Last Post: 8th February 2010, 10:16 AM
By link470 in forum Windows
Last Post: 4th September 2009, 10:08 PM
By browolf in forum Wireless Networks
Last Post: 23rd October 2008, 08:24 PM
By binky in forum Windows
Last Post: 10th April 2007, 09:40 AM
Users Browsing this Thread
There are currently 1 users browsing this thread. (0 members and 1 guests)