IIS Server Security - IIS basic authentication login prompt - 3 attempts

This is Interesting: Free IT Magazines  
Home > Archive > IIS Server Security > September 2004 > IIS basic authentication login prompt - 3 attempts





You are viewing an archived Text-only version of the thread. To view this thread in it's original format and/or if you want to reply to this thread please [click here]

Author IIS basic authentication login prompt - 3 attempts
VJ

2004-09-02, 6:45 pm

Hi,

IIS raises login dialog box prompt on browser for
resources protected using basic authentication. That login
prompt gives user 3 attempts to enter correct
userid/password. IIS throw 401.1 error if third attempt
fails. Does anyone know how to change this number of
attempts. Is it possible or impossible to do ?

Thanks
Andrew Pasco [MSFT]

2004-09-02, 6:45 pm

|
| Hi,
|
| IIS raises login dialog box prompt on browser for
| resources protected using basic authentication. That login
| prompt gives user 3 attempts to enter correct
| userid/password. IIS throw 401.1 error if third attempt
| fails. Does anyone know how to change this number of
| attempts. Is it possible or impossible to do ?
|
| Thanks
|

Hi Mane,

This behaviour is comming from the client not IIS.

It is the Client Browser (IE) which decieds after three attempts of
providing Basic credientials that it will display the 401.1 error message.

If we look in a network trace we will see that IIS responds back to the
client with the same 401.1 response for each request.

I am not aware of this being a configurable setting for Internet Explorer
but it would be possible to write a client that could configure the number
of attemps.

HTH,
Andrew

This posting is provided "AS IS" with no warranties, and confers no rights


Sponsored Links






Free braindumps | Software forum | Database administration forum

Copyright 2003 - 2008 webservertalk.com