Losing NT Authentication Credentials when using DNS

TheMSsForum.com: The Microsoft Software Forum

Hi folks. We are having a problem with DNS and NT Credentials. We
manage an IIS 6.0 Intranet Server in our network. For some reason we
get different security results when we access the Intranet server
using the DNS name and the IP address. The Webmaster wants NT
Authentication turned on so he can capture the users login id. When
we have NT Authentication turned on and the web server is accessed
using the DNS name, the NT credentials are stripped away. When we use
the IP address to access the Intranet, the NT credentials are passed
to the web application. The personnel who manage the network don't
know why this is happening. Any thoughts on what would cause this?

Here are the various scenarios:

Using the IP Address in the URL:
Anonymous Only - No credentials are passed.
NT Authentication Only - Credentials are passed.
Both Anonymous & NT Authentication - No credentials are passed.

Using the DNS Name in the URL:
Anonymous Only - No credentials are passed.
NT Authentication Only - No credentials are passed.
Both Anonymous & NT Authentication - No credentials are passed.

Thanks. Grant.
Top

Re: Losing NT Authentication Credentials when using DNS by Matthew

Matthew
Wed Jan 17 18:45:35 CST 2007

What does "credentials are passed" mean? That you're prompted for
credentials? Does DNS mean "Netbios" name like "Computer1" or more like
"mydomain.com"?


Using the IP Address in the URL:
Anonymous Only - No credentials are passed. -They shouldn't be passed,
this is anonymous authentication.
NT Authentication Only - Credentials are passed. - Does this mean that
you are prompted?
Both Anonymous & NT Authentication - No credentials are passed. - They
shouldn't be passed, this is anonymous authentication taking precendence
over IWA.


Using the DNS Name in the URL -
Anonymous Only - No credentials are passed - They shouldn't be passed,
this is anonymous authentication.
NT Authentication Only - No credentials are passed. - if this is a
netbios name, then credentials are passed automatically without a prompt.
Both Anonymous & NT Authentication - No credentials are passed. - They
shouldn't be passed, this is anonymous authentication taking precendence
over IWA.

Please explain a little more, this sounds like proper operation if I
interpret this correctly.

- Matt Small



"Grant" <grant.macdonald@hp.com> wrote in message
news:1169040571.348752.73250@38g2000cwa.googlegroups.com...
> Hi folks. We are having a problem with DNS and NT Credentials. We
> manage an IIS 6.0 Intranet Server in our network. For some reason we
> get different security results when we access the Intranet server
> using the DNS name and the IP address. The Webmaster wants NT
> Authentication turned on so he can capture the users login id. When
> we have NT Authentication turned on and the web server is accessed
> using the DNS name, the NT credentials are stripped away. When we use
> the IP address to access the Intranet, the NT credentials are passed
> to the web application. The personnel who manage the network don't
> know why this is happening. Any thoughts on what would cause this?
>
> Here are the various scenarios:
>
> Using the IP Address in the URL:
> Anonymous Only - No credentials are passed.
> NT Authentication Only - Credentials are passed.
> Both Anonymous & NT Authentication - No credentials are passed.
>
> Using the DNS Name in the URL:
> Anonymous Only - No credentials are passed.
> NT Authentication Only - No credentials are passed.
> Both Anonymous & NT Authentication - No credentials are passed.
>
> Thanks. Grant.
>

Top

Re: Losing NT Authentication Credentials when using DNS by Neobyte

Neobyte
Wed Jan 17 20:58:01 CST 2007

At a guess, Internet Explorer may be seeing the IP as in the local
Intranet (and therefore passing along credentials) and the DNS name as
some other zone. Try adding the DNS name you are using to the
"Intranet" zone in IE and see if that works.


Grant wrote:

> Hi folks. We are having a problem with DNS and NT Credentials. We
> manage an IIS 6.0 Intranet Server in our network. For some reason we
> get different security results when we access the Intranet server
> using the DNS name and the IP address. The Webmaster wants NT
> Authentication turned on so he can capture the users login id. When
> we have NT Authentication turned on and the web server is accessed
> using the DNS name, the NT credentials are stripped away. When we use
> the IP address to access the Intranet, the NT credentials are passed
> to the web application. The personnel who manage the network don't
> know why this is happening. Any thoughts on what would cause this?
>
> Here are the various scenarios:
>
> Using the IP Address in the URL:
> Anonymous Only - No credentials are passed.
> NT Authentication Only - Credentials are passed.
> Both Anonymous & NT Authentication - No credentials are passed.
>
> Using the DNS Name in the URL:
> Anonymous Only - No credentials are passed.
> NT Authentication Only - No credentials are passed.
> Both Anonymous & NT Authentication - No credentials are passed.
>
> Thanks. Grant.

Top