|
Home > Archive > IIS Server Security > December 2004 > anonymous access and integrated windows authentication
You are viewing an archived Text-only version of the thread.
To view this thread in it's original format and/or if you want to reply to
this thread please [click here]
| Author |
anonymous access and integrated windows authentication
|
|
| isunshine 2004-12-10, 5:54 pm |
| I noticed that when both Anonymous Access and Integrated Windows
Authentication are enabled, AA takes priority over IWA. Is there any way I
can reverse that order? I have some functionalities available for the users
who have been authenticated through IWA. If they are not authenticated, then
I would like to have these functionalities disbled but still want them to
access and navigate the site.
| |
| Miha Pihler 2004-12-10, 5:54 pm |
| Hi,
This is by design and as far as I know can't be changed. If anonymous is
selected then it will always be used first. If you disable anonymous end
enable multiple authentication methods (e.g. IWA and Basic), IIS will first
try more secure method. If this fails it will try less secure method (e.g.
basic)...
How To Configure IIS Web Site Authentication in Windows Server 2003
http://support.microsoft.com/defaul...duct=winsvr2003
Mike
"isunshine" <isunshine@discussions.microsoft.com> wrote in message
news:4F872652-7892-44CF-A5CD-705CCDFA13ED@microsoft.com...
>I noticed that when both Anonymous Access and Integrated Windows
> Authentication are enabled, AA takes priority over IWA. Is there any way I
> can reverse that order? I have some functionalities available for the
> users
> who have been authenticated through IWA. If they are not authenticated,
> then
> I would like to have these functionalities disbled but still want them to
> access and navigate the site.
| |
| samson 2004-12-15, 6:38 pm |
| Then there's no point for enabling both anonymouse and IWA together since
that would be as same as enabling only anyonymous, correct?
"Miha Pihler" wrote:
> Hi,
>
> This is by design and as far as I know can't be changed. If anonymous is
> selected then it will always be used first. If you disable anonymous end
> enable multiple authentication methods (e.g. IWA and Basic), IIS will first
> try more secure method. If this fails it will try less secure method (e.g.
> basic)...
>
> How To Configure IIS Web Site Authentication in Windows Server 2003
> http://support.microsoft.com/defaul...duct=winsvr2003
>
> Mike
>
> "isunshine" <isunshine@discussions.microsoft.com> wrote in message
> news:4F872652-7892-44CF-A5CD-705CCDFA13ED@microsoft.com...
>
>
>
| |
| Miha Pihler 2004-12-16, 3:37 am |
| Hi,
In general yes, but this would also not allow access to any restricted parts
of your website to your administrator since he would not be able to
authenticate.
Mike
"samson" <samson@discussions.microsoft.com> wrote in message
news:10222162-57D3-420B-A234-D3B9B01D33AE@microsoft.com...[vbcol=seagreen]
> Then there's no point for enabling both anonymouse and IWA together since
> that would be as same as enabling only anyonymous, correct?
>
> "Miha Pihler" wrote:
>
|
|
|
|
|