Ethical Hacking

Learn to find vulnerabilities before the bad guys do! Gain real world hands on hacking experience in our state of the art hacking lab. Course designed and taught by expert instructors with years of penetration testing experience. 12 student maximum in every class. Certification attempt included in every package.
Computer Forensics Training at InfoSec Institute

Gain the in-demand skills of a certified computer examiner, learn to recover trace data left behind by fraud, theft, and cybercrime perpetrators. Discover the source of computer crime and abuse at your organization so that it never happens again. All of our class sizes are guaranteed to be 12 students or less to facilitate one-on-one interaction with one of our expert instructors.




Network Security Focus-Microsoft
[Top] [All Lists]
<prev [Date] next>
[Advanced]
 <prev [Thread] next>

RE: Kerberos & NTLM Auth in IIS6

from [Trevor] Network Security [Permanent Link]
Subject: RE: Kerberos & NTLM Auth in IIS6
Date: Thu, 9 Jun 2005 15:20:07 -0700 
Yes, Enable Integrated Auth is checked, as is Automatic logon only in
Intranet zone.

We have added *.domain.name to the intranet zone in case they wish to
use the FQDN.

Thanks,
Trevor

-----Original Message-----
From: Zack Schiel [mailto:ZSchiel@blueandco.com] 
Sent: Thursday, June 09, 2005 2:45 PM
To: Trevor; focus-ms@securityfocus.com
Subject: RE: Kerberos & NTLM Auth in IIS6

There is an 'Enable Integrated Windows Authentication' checkbox in IE's
Internet Options Advanced tab.  Is it checked?  

-Z-

-----Original Message-----
From: Trevor [mailto:trevor@rottdog.com]
Sent: Thursday, June 09, 2005 3:30 PM
To: focus-ms@securityfocus.com
Subject: Kerberos & NTLM Auth in IIS6

I have two machines, very similar patch level, both XP Pro SP1. They are
accessing an internal site (the website is identified as "Local
Intranet" by both machines) that is set up to use only Integrated
Authentication.

One machine sends NTLM authentication, which fails, prompting the user
with a username/password dialog box. The same user can log onto a
different machine and that machine uses Kerberos auth, which I get the
typical IE of attempting anon. access first, then using Integrated Auth
and succeeding without a username/password dialog box.

What should I be looking for to find out why one machine is not using
Kerberos while another machine is?

Thanks,

Trevor


------------------------------------------------------------------------
---
------------------------------------------------------------------------
---



---------------------------------------------------------------------------
---------------------------------------------------------------------------
[More with this subject...]




<Prev in Thread] Current Thread [Next in Thread>
Previous by Date:  Restricting file server to access to domain computers only., Kevin Green
Next by Date:  RE: Kerberos & NTLM Auth in IIS6, Trevor
Previous by Thread:  Re: Kerberos & NTLM Auth in IIS6, Burak BAYOGLU
Next by Thread:  RE: Kerberos & NTLM Auth in IIS6, Trevor
Indexes:  [Date] [Thread] [Top] [All Lists]