Did a telnet to localhost to get /localstart.asp which is protected by Integrated windows authentication. Response HTTP header is :
HTTP/1.1 401 Access Denied
Server: Microsoft-IIS/5.1
Date: Wed, 31 May 2006 04:09:56 GMT
WWW-Authenticate: Negotiate
WWW-Authenticate: NTLM
Content-Length: 4431
Content-Type: text/html
Now, the browser is required to authenticate using NTLM. This mode is supported only in IE. So, the same page(localstart.asp) when opened using firebox will retry sending username/password from the popup and will fail. Whereas In IE, it will render the page properly. So, to view the localstart.asp page in browsers other than IE, we can't use Integrated windows authentication. Rather we may use Basic authentication. HTTP Response headers in case of basic authentication:
HTTP/1.1 401 Access Denied
Server: Microsoft-IIS/5.1
Date: Wed, 31 May 2006 04:14:47 GMT
WWW-Authenticate: Basic realm="APPLICATIONS"
Content-Length: 4431
Content-Type: text/html
Subscribe to:
Post Comments (Atom)
No comments:
Post a Comment