D
dwilcoxen
In my intranet app, I have my web.config file's authorization section
defined as follows:
<authorization>
<allow roles="foo" />
<deny users="*" />
</authorization>
The IIS 6 virtual dir is set to anonymous=NO, Integrated Windows
Authentication = ON.
When I add a user to the "foo" group, IE prompts for the user name and
password. I don't understand why, but that's bearable I guess. So the
user checks "Remember my password" and logs in.
IE will not, however, remember the user's password. It does remember
the username, but he has to enter the password every time he opens the
page in a new browser session.
If I add the domain\user explicitly in an <allow users=....> tag,
there is no prompt and the user automatically logs in. I'd like it to
work this way with group members as well.
The site is in the "trusted sites" zone, with the User Authentication-
prompt? Am I missing something simple?
Thanks!
defined as follows:
<authorization>
<allow roles="foo" />
<deny users="*" />
</authorization>
The IIS 6 virtual dir is set to anonymous=NO, Integrated Windows
Authentication = ON.
When I add a user to the "foo" group, IE prompts for the user name and
password. I don't understand why, but that's bearable I guess. So the
user checks "Remember my password" and logs in.
IE will not, however, remember the user's password. It does remember
the username, but he has to enter the password every time he opens the
page in a new browser session.
If I add the domain\user explicitly in an <allow users=....> tag,
there is no prompt and the user automatically logs in. I'd like it to
work this way with group members as well.
The site is in the "trusted sites" zone, with the User Authentication-
Why does role-based authentication cause IE to insist on a passwordLogon setting: "Automatic logon with current username and password."
prompt? Am I missing something simple?
Thanks!