Scenario:
There are 2 servers.
server1.domain1.microsoft.com and server2.domain2.microsoft.com.

There are 2 users.
domain1\user1 and domain2\user2

I need to provide Digest Authentication at both the servers. Both the
servers are Windows 2003 Server. Users have a valid Windows user
account stored in Active Directory® on the domain controller.

Problem:

In server1.domain1.microsoft.com, only user1 is getting authenticated
while in server2.domain2.microsoft.com, only user2 is getting
authenticated. I am checking this by trying to access an html file in
a virtual directory at both the servers.

What should I do so that user2 also gets authenticated in
server1.domain1.microsoft.com and similarly user1 also gets
authenticated in server2.domain2.microsoft.com?

What settings need to be enabled so that the above is possible?

Also server1.domain1.microsoft.com allows both user1 and user2 to be
added in its local group. But server2.domain2.microsoft.com allows
only user2 to be added in its local group

My Knowledge:
The requirements as identified by Digest Authentication are:

The user and the server running IIS must be members of, or be trusted
by, the same domain.
An authenticating domain controller and the server that is running IIS
must exist in a trusted environment.

How should I create this trusting relationship between 2 domains?

Regards,

This is not an IIS question. You can create trusts using the Active
Directory Domains and Trusts MMC Snapin.

HOWEVER - before you do that, do some reading up on Active Directory
concepts. If you are unfamiliar with trusts, then you should get a handle on
the basics before you go around changing settings.

Cheers
Ken


[quoted text, click to view]
: Scenario:
: There are 2 servers.
: server1.domain1.microsoft.com and server2.domain2.microsoft.com.
:
: There are 2 users.
: domain1\user1 and domain2\user2
:
: I need to provide Digest Authentication at both the servers. Both the
: servers are Windows 2003 Server. Users have a valid Windows user
: account stored in Active Directory® on the domain controller.
:
: Problem:
:
: In server1.domain1.microsoft.com, only user1 is getting authenticated
: while in server2.domain2.microsoft.com, only user2 is getting
: authenticated. I am checking this by trying to access an html file in
: a virtual directory at both the servers.
:
: What should I do so that user2 also gets authenticated in
: server1.domain1.microsoft.com and similarly user1 also gets
: authenticated in server2.domain2.microsoft.com?
:
: What settings need to be enabled so that the above is possible?
:
: Also server1.domain1.microsoft.com allows both user1 and user2 to be
: added in its local group. But server2.domain2.microsoft.com allows
: only user2 to be added in its local group
:
: My Knowledge:
: The requirements as identified by Digest Authentication are:
:
: The user and the server running IIS must be members of, or be trusted
: by, the same domain.
: An authenticating domain controller and the server that is running IIS
: must exist in a trusted environment.
:
: How should I create this trusting relationship between 2 domains?
:
: Regards,
: Anshuk Jain