Setup is as follows:
Server1: W2K3 R2 Std (DC/IIS6/Exchange 2003 SP2)
Server2: W2K3 R2 Std (Not a domain member)
Clients: XP Pro SP2 (All domain members)
IIS6 has two sites:
Default site is used for OWA (iwa/basic auth, host header added for
mail.domain.com in addition to default headers)
Second site added for Intranet (iwa/basic auth, host header added for
www.domain.com)
When accessing sites using the client machines, everything works fine for
both administrators & users, integrated authentication works and both sites
are displayed with no prompts for authentication. Any of the set host
headers work ok for accessing the sites.
On Server 2, the standalone non member server, IWA obvisouly doesn't work,
but when prompted for a username and password, both administrators and users
can authenticate ok using basic authentication. Any of the set host headers
work ok for accessing the sites.
However, when logged onto server 1 (dc & iis6) as an administrator,
integrated authentication doesn't work on either of the sites, and I'm
prompted for a username/password. But this doesn't accept the administrator
usernname/password and after 3 attempts a 401.1 error is received. But, if I
access the default site using the netbios name, integrated authentication
works and it displays ok.
Why, when logged on to the DC/IIS6 server, do FQDNs not work?
To make matters slighly more confusing, IIS6 was reinstalled 10 days ago to
try and sort a problem with installing WSUS, before this basic
authentication used to work ok with FQDNs and my problem was only with
integrated windows authentication.
Any advice would be very appreciated!