Forums (Obsolete)

Old Forums

Installation and deployment Questions on installation, system configuration and deployment to the live server.

Version 5.x > Installation and deployment > Intranet - Windows Authentication Enabled

View modes:

Member

martinagency - 2/1/2011 7:24:46 PM

Intranet - Windows Authentication Enabled

So we have successfully enabled Windows Authentication but now we have an issue with users not being able to access the website. The server administrators can access the intranet but any other user is promoted to enter the network credentials andwhen they do they are never able to access the site. I'm thinking this is an issue with permissions or IIS? Any thoughts?

Kentico Developer

kentico_ivanat - 2/2/2011 3:36:26 AM

RE:Intranet - Windows Authentication Enabled

Hi,

The others users are public users visiting your site?

If so, could you please check if you did not add following code into your web.config file?


<location path="">
 <system.web>
   <authorization>
     <deny users="?"/>
   </authorization>
 </system.web>
</location>

With the above settings all users would be prompted to authorize before visiting the live site.

Please take a look in this section of Devguide for more information.

Best regards,
Ivana Tomanickova

Member

martinagency - 2/2/2011 6:23:35 AM

RE:Intranet - Windows Authentication Enabled

By public users do you mean the employees trying to access the intranet? We want them to be able to access the intranet using windows authentication. Currently only the server admins can access the intranet and successfully login using their network credentials. I'll take another look at the dev guide. Maybe I missed something.

Kentico Developer

kentico_ivanat - 2/2/2011 7:38:17 AM

RE:Intranet - Windows Authentication Enabled

Hi,

could you please confirm that both system admins (who are able to access) and the other intranet users (without access) are in the same domain?

Could you please give us some example of login username which is authorized successfully and the one which is not?

Is there some error message, which receive the user who is not able to access the system?

Best regards,
Ivana Tomanickova

Member

martinagency - 2/2/2011 8:32:26 AM

RE:Intranet - Windows Authentication Enabled

Yes, we are all in the same domain. I am able to login with the username moserh which is tied to the domain martin. My account created by Kentico is martin-moserh. This is the same of the other users except with theiir own username.

No error message. The user is asked to enter in their network crendentials and when they do it asks for the credentials again. But the three server admins have no issue logging in.

Security permissions are granted to Network Service and we are using IIS7on Windows 2008 Server.


Member	martinagency - 2/2/2011 12:13:18 PM RE:Intranet - Windows Authentication Enabled We identified the issue, is was very simple really, almost embarrassing to mention. The security permissions for the directory were only set for Network Service and Administrators. We also needed to add Users. I don't think this was in the documentation, but it could be helpful.

Top