IIS Server Security - digest authentication

Author

digest authentication - which port

Mike Schwarz

2004-03-26, 11:54 am

hi

we have some folders with member logins
i have defined a new user called "member"
and saved the password as "reversed" (found under account options)

then i have ticked in IIS security the folder "member" as:

- windows authentication
- cleartext
- digest

(all 3 boxes)

it works perfectly for most users, even with netscape
but we have some people behind a firewall, where this is not working

must have something to do with hash password sending or something like this

which ports and protocolls must a admin open in his firewall, so digest
resp.
password protected folders in IIS do work ?

thank you for any hint

Ken Schaefer

2004-03-26, 11:54 am

Hi,

The server sends the authentication options in order of the strongest to the
weakest. The browser picks the highest option that it supports. So, IE, and
Mozilla will always pick Windows Authentication (NTLM) before Digest. NTLM
does not work through most proxy servers.

Digest authentication requires no other ports than port 80, and works
through proxy servers, *but* you need to uncheck IWA.

Cheers
Ken

"Mike Schwarz" <ctek@ctek.ch> wrote in message
news:eWXvfxyEEHA.3812@TK2MSFTNGP10.phx.gbl...
: hi
:
: we have some folders with member logins
: i have defined a new user called "member"
: and saved the password as "reversed" (found under account options)
:
: then i have ticked in IIS security the folder "member" as:
:
: - windows authentication
: - cleartext
: - digest
:
: (all 3 boxes)
:
: it works perfectly for most users, even with netscape
: but we have some people behind a firewall, where this is not working
:
: must have something to do with hash password sending or something like
this
:
: which ports and protocolls must a admin open in his firewall, so digest
: resp.
: password protected folders in IIS do work ?
:
: thank you for any hint
:
: