| Author |
 Topic  |
|
|
ebblerking
Starting Member
Germany
10 Posts |
 Posted - 03 April 2003 : 02:55:52
|
Hi there,
i'm running two Snitz forums on my Server. one is for testing purposes only and has a Access Backend.
Now, that I want to go into production, I installed a second instance of Snitz on my server under another Folder. This forum uses SQL Server 2000 db. Both forums are set to NT Authentication. The Testing platform works well, but the production environment won't let me in. One funny thing though is: When i log onto the test-forum an then go to the production-forum, it will grant access to the forum with the right userid. What's going wrong here....? I definately DO need NT Authentication there's no alternative for me  |
|
|
Nikkol
Forum Moderator
USA
6907 Posts |
|
|
Davio
Development Team Member
Jamaica
12217 Posts |
Posted - 03 April 2003 : 11:52:00
|
quote:
The Testing platform works well, but the production environment won't let me in.
What do you mean it won't let you in? |
Support Snitz Forums
|
 |
|
|
ebblerking
Starting Member
Germany
10 Posts |
Posted - 04 April 2003 : 07:51:00
|
@Nikkol: Anonymous Access is turned on.
@Davio: If you're trying to access the forum, it will redirect you to the login site. That is okay for me, but if you're trying to log in, it says "Login and/or password wrong!". The same goes for the "admin_login.asp". I am completly locked out, until I'll go to the testforum and then back to the production platform. This is so weird.
I have doublechecked the configuration a hundred times and it is exactly the same (exept from some minor changes, that have no affect on this)... |
Edited by - ebblerking on 04 April 2003 07:51:51 |
|
|
|
Nikkol
Forum Moderator
USA
6907 Posts |
|
|
ebblerking
Starting Member
Germany
10 Posts |
Posted - 04 April 2003 : 09:51:12
|
no, i don't think so.
The forum is on an internal website and i dont want anonymous access to the forum. With NT-Auth everybody can be identified by his Login. That is the main argument for NT-Auth... |
|
|
|
Davio
Development Team Member
Jamaica
12217 Posts |
Posted - 04 April 2003 : 11:05:24
|
Then how did you turn on NT Authorization without turning off Anonymous Access??
IIS checks to see if anonymous access is turned, then allows any user access to the site. If anonymous access is turned off, it uses the next level of authentication, which is Basic Authentication (if turned on). If Basic Authentication is not turned on, it uses the windows file system permissions to request a username and password. Which is what NT Authorization is. But NT Authorization cannot work with Anonymous Access being On. |
Support Snitz Forums
|
|
|
|
ebblerking
Starting Member
Germany
10 Posts |
Posted - 04 April 2003 : 12:55:06
|
I'm afraid it does....???
"everyone" User has access to both shares. And anonymous access is definately _NOT_ turned off. I doublecheked that. Both shares are configured equally, the only difference between them is the database backend.
To avoid misunderstandings:
The thing is NOT that i want to prohibit other Users from logging onto the forum, but i want to log their windows accounts, so that they cannot have a "anonymous" Nickname. |
|
|
|
Nikkol
Forum Moderator
USA
6907 Posts |
Posted - 04 April 2003 : 13:58:34
|
you need to UNCHECK anonymous access in IIS for NT auth to work. If it is checked, then your web page will assume the person visiting the page is the IUSR_Machinename account and will not force the person to log in.
Again, UNCHECK anonymous access. |
Nikkol ~ Help Us Help You | ReadMe | 3.4.03 fixes | security fixes ~ |
|
|
|
Davio
Development Team Member
Jamaica
12217 Posts |
Posted - 04 April 2003 : 22:23:53
|
quote:
The thing is NOT that i want to prohibit other Users from logging onto the forum, but i want to log their windows accounts, so that they cannot have a "anonymous" Nickname.
The forum cannot use the Windows account of the user when anonymous access is ON. |
Support Snitz Forums
|
|
|
|
geoffr
Starting Member
16 Posts |
Posted - 01 May 2003 : 12:53:40
|
I think you guys are getting confused with Anonymous access terms. Anonymous access is set in two different places to accomplish two seperate thins. Anonymous access on the forum is specifically for allowing anyone access to the site. This is seperate from anonymous access in IIS.
To use the NT account in the forum, you need to have anonymous access unchecked in both places. Uncheck the Anonymous box in IIS along with basic authentication. Leave Integrated windows/NT Authentication as the only one checked.
Then in the admin area, turn off anonymous authentication.
Hope this helps.
|
|
|
| |
Topic |
|
Topic Locked
