I am using Windows 2003 with IIS 6.0 and am trying to
lock down one folder of my web site. I have gone into
IIS then properties of the folder and select Directory
Security. I removed the "Allow anonymous connection" and
checked "Digest authentication for Domain servers".

This allows me to login under one users name but not
another. I have compared user groups and they are
members of the same groups. If I deselect the "Digest
authentication for Domain servers" and select "Basic
authentication" I can login under both users.

Any suggestions on what I might try would be appreciated.

Thank you,

Eric

Hello Eric,
What is the error you get when trying to login with the second user
account? Be sure to turn off friendly http error messages in IE before
checking for this error.
Is Digest authentication the only authentication method selected on that
tab?
Also, check out the following article:
http://support.microsoft.com/default.aspx?scid=kb;en-us;324276
Is the user account setup with the option "Store password using
reversible encryption" ?

Let me know how it goes.
Thanks,
Yogita Manghnani
Microsoft Developer Support
Internet Information Server

*********************************************************************
[quoted text, click to view]
account name for newsgroup participation only.<<

This posting is provided "AS IS" with no warranties, and confers no rights.
You assume all risk for your use.

© 2003 Microsoft Corporation. All rights reserved.
*********************************************************************