|
OK – so where it didn’t work someone was changing the
default. Suggestion: 1.
Figure out what regkey it is, set it via a
custom ADM or use IEAK 2.
Don’t allow the users to change the
security zones MS GPOs work that way that you are defining a setting and making
sure that users don’t have the rights to change them again. Gruesse - Sincerely, Ulf B. Simon-Weidner MVP-Book
"Windows XP - Die Expertentipps": http://tinyurl.com/44zcz From: [EMAIL PROTECTED]
[mailto:[EMAIL PROTECTED] On Behalf Of Kamlesh Parmar I was testing the integrated
authentication with IIS, and even though site was is local intranet, IE prompted
for username and password on some machines and on some it didn't. On 1/4/06, Ulf B. Simon-Weidner
<[EMAIL PROTECTED]>
wrote: The IIS site must be
set up to allow windows integrated authentication and not to allow anonymous
access. By default the IE Security Zone "Local Intranet" is enabled
to allow Integrated Authentication (while Trusted Sites does not), if you
haven't changed that you can configure the systems in question to be within the
local intranet zone. I don't know if you are
able to change IEs settings per GPO, propably only if you created an ADM
yourself, but you may be able to change it with IEAK. But that shouldn't be
necessary if you use the correct security zones, and I'd recommend not enabling
it for "Trusted Sites" or other Zones which are outside your DMZ. Gruesse - Sincerely, Ulf B. Simon-Weidner MVP-Book
"Windows XP - Die Expertentipps": http://tinyurl.com/44zcz From: [EMAIL PROTECTED]
[mailto:[EMAIL PROTECTED]]
On Behalf Of Salandra, Justin A. How does someone enable Windows
Integrated Authentication through a Group Policy. You will find
this on the Advanced tab of Internet Options.
Justin A. Salandra MCSE Windows 2000 & 2003 Network and Technology Services Manager Catholic Healthcare System 646.505.3681 - office 917.455.0110 - cell
|
- Re: [ActiveDir] Enable Windows Integrated Authenticat... Kamlesh Parmar
- RE: [ActiveDir] Enable Windows Integrated Authen... Ulf B. Simon-Weidner
