|
Home > Archive > IIS Server Security > February 2007 > IE7, IIS and digest authentication
You are viewing an archived Text-only version of the thread.
To view this thread in it's original format and/or if you want to reply to
this thread please [click here]
| Author |
IE7, IIS and digest authentication
|
|
|
| I have a web server with Win 2003 Server and IIS 6 installed with the
HttpAuthentication update KB 904942. I installed IE7 on the windows 2003
server.
The website uses digest authentication.
I used the IE7 installed on windows 2003 and it was able to authenticate the
user successfully on the website with digest. The browser sent the right
authentication headers
I then installed IE7 on a Windows XP system and used to fiddler to spoof the
headers. The authentication always fails because the IE7 on Windows XP never
sends any authentication headers? I cannot get a XP client with IE7 to digest
authenticate it self on windows 2003 3 IIS 6 webserver. Can some one tell me
how to sort this out?
| |
| Ken Schaefer 2007-02-14, 7:20 am |
| Hi,
Are you saying that IIS sends back a 401 with the necessary WWW-Authenticate
headers, but IE never sends back any credentials (even after you provide
them)?
What happens if you take Fiddler out of the loop?
Cheers
Ken
"sri" <sri@discussions.microsoft.com> wrote in message
news:1493CD19-7484-48E4-8B48-E7028EB38985@microsoft.com...
>I have a web server with Win 2003 Server and IIS 6 installed with the
> HttpAuthentication update KB 904942. I installed IE7 on the windows 2003
> server.
> The website uses digest authentication.
> I used the IE7 installed on windows 2003 and it was able to authenticate
> the
> user successfully on the website with digest. The browser sent the right
> authentication headers
>
> I then installed IE7 on a Windows XP system and used to fiddler to spoof
> the
> headers. The authentication always fails because the IE7 on windows XP
> never
> sends any authentication headers? I cannot get a XP client with IE7 to
> digest
> authenticate it self on windows 2003 3 IIS 6 webserver. Can some one tell
> me
> how to sort this out?
>
>
| |
| David Wang 2007-02-14, 7:20 am |
| Are you saying that IE7 on XP Pro with KB 904942 does not complete
Digest Auth with IIS6?
Take Fiddler out of the picture.
FYI: I have IE7 on XP Pro with KB 904942 which does Digest Auth
against IIS6 just fine.
//David
http://w3-4u.blogspot.com
http://blogs.msdn.com/David.Wang
//
On Feb 14, 2:25 am, sri <s...@discussions.microsoft.com> wrote:
> I have a web server with Win 2003 Server and IIS 6 installed with the
> HttpAuthentication update KB 904942. I installed IE7 on the windows 2003
> server.
> The website uses digest authentication.
> I used the IE7 installed on windows 2003 and it was able to authenticate the
> user successfully on the website with digest. The browser sent the right
> authentication headers
>
> I then installed IE7 on a Windows XP system and used to fiddler to spoof the
> headers. The authentication always fails because the IE7 on Windows XP never
> sends any authentication headers? I cannot get a XP client with IE7 to digest
> authenticate it self on windows 2003 3 IIS 6 webserver. Can some one tell me
> how to sort this out?
|
|
|
|
|