|
Home > Archive > IIS Server Security > March 2007 > Windows authentication fails locally but not remotely
You are viewing an archived Text-only version of the thread.
To view this thread in it's original format and/or if you want to reply to
this thread please [click here]
| Author |
Windows authentication fails locally but not remotely
|
|
| Jon Davis 2007-03-22, 7:29 am |
| I cannot access a Windows-authenticated web site locally even though I can
access it remotely.
I have a simple web implementation that hosts an IIS / ASP.NET based web
site. I recently "upgraded" Windows XP 32-bit to Windows Vista 64-bit in a
fresh installation on a seperate hard drive. In IIS I just point a new web
site to the old hard drive that hosted the files.
This worked great, but tonight I decided to lock the site down for access
only by me. I access this computer on four computers (including from the
console). So I turned off Anonymous login and enabled ASP.NET Impersonation
and Windows Authentication. The web files are, of course, fully accessible
by administrators (myself).
Now my web site *can* be accessed from one of my other computers, a Vista
32-bit box. But it *cannot* be accessed locally on the machine hosting it; I
try to log in and authentication fails. Yes, I carefully entered the
password. ;) AFAIK I made no security setting changes in setting up Vista on
the two boxes, i.e. kerberos settings or whatever, I generally used default
installation settings so both the web hosting machine and the remote machine
are identical in configuration except IIS/ASP.NET and 32 vs. x64 bit.
Any ideas?
Jon
| |
| David Wang 2007-03-25, 7:27 am |
| On Mar 21, 11:09 pm, "Jon Davis" <j...@REMOVE.ME.PLEASE.jondavis.net>
wrote:
> I cannot access a Windows-authenticated web site locally even though I can
> access it remotely.
>
> I have a simple web implementation that hosts an IIS / ASP.NET based web
> site. I recently "upgraded" Windows XP 32-bit to Windows Vista 64-bit in a
> fresh installation on a seperate hard drive. In IIS I just point a new web
> site to the old hard drive that hosted the files.
>
> This worked great, but tonight I decided to lock the site down for access
> only by me. I access this computer on four computers (including from the
> console). So I turned off Anonymous login and enabled ASP.NET Impersonation
> and Windows Authentication. The web files are, of course, fully accessible
> by administrators (myself).
>
> Now my web site *can* be accessed from one of my other computers, a Vista
> 32-bit box. But it *cannot* be accessed locally on the machine hosting it; I
> try to log in and authentication fails. Yes, I carefully entered the
> password. ;) AFAIK I made no security setting changes in setting up Vista on
> the two boxes, i.e. kerberos settings or whatever, I generally used default
> installation settings so both the web hosting machine and the remote machine
> are identical in configuration except IIS/ASP.NET and 32 vs. x64 bit.
>
> Any ideas?
>
> Jon
I suggest you report the IIS log entries for the failing requests to
see what is wrong.
Integrated Authentication is not supposed to pop up a dialog box on
the local machine, so you have some non-default configuration.
Possibly the non-default ACLs on the files of the old hard drive.
//David
http://w3-4u.blogspot.com
http://blogs.msdn.com/David.Wang
//
|
|
|
|
|