"Jeff Cochran" <jeff.nospam@zina.com> wrote in message
news:43210eab.216349343@msnews.microsoft.com...
> On Mon, 5 Sep 2005 08:25:25 +0200, "Kim Kragh" <kkr@dxp.dk> wrote:
>
>>Hi.
>>
>>I have a general issue where I would like a website to handle both
>>authenticated and non-authenticated users. I will try to explain further:
>>
>>The maschine is dt1 (on the domain), the website is vt and the domain is
>>intranet. From the inside, if authenticated users go to http://dt1/vt
>>they
>>are on and everything is fine. This website is actually a virtual
>>directory
>>on the default website.
>>
>>Now I would like users to use the app (IssueTracker) from home. Here they
>>are not authenticated and should be prompted for their domain credentials.
>>The address is issuetracker.comp.dk and they first have to supply
>>username/password to get nat'ed through the firewall. The firewall
>>redirects
>>to the IP of dt1.
>>
>>To catch these request I have set up a new website on dt1 with hostheader.
>>Same path to the app and same security settings.
>>I have not tried it from outside yet, but using this new website from the
>>inside now prompts the already authenticated users? As is it does not
>>recognize the authenticated users? Is that due to a outsite address
>>(issuetracker.comp.dk)?
>
> Add the "issuetracker.comp.dk" domain to the intranet zone in IE's
> security tab.
>
> Jeff
>
>
>>Furthermore, when supplying the credentials, the user is rejected with the
>>issuetracker.comp.dk/username in the new password prompt. If they replace
>>issuetracker.comp.dk with intranet, he's in.
>>
>>So I'm back to Jonathans question: Why is dt1 not using the domain as
>>default?
>>I will get back with info of how the thing behaves from the outside.
>>
>>At last (if still not clear) I would like to have all users use the
>>issuetracker.comp.dk address and of course; the inside users get right in,
>>the home users supply their domain credentials (but without intranet\....)
>>
>>Thanks in advance!
>>
>

On Tue, 6 Sep 2005 10:03:08 +0200, "Kim Kragh" <kkr@dxp.dk> wrote:

>Thanks Jeff
>
>Is that the only way?
>I would prefer not to do this on all clients...

>
>"Jeff Cochran" <jeff.nospam@zina.com> wrote in message
>news:43210eab.216349343@msnews.microsoft.com...
>> On Mon, 5 Sep 2005 08:25:25 +0200, "Kim Kragh" <kkr@dxp.dk> wrote:
>>
>>>Hi.
>>>
>>>I have a general issue where I would like a website to handle both
>>>authenticated and non-authenticated users. I will try to explain further:
>>>
>>>The maschine is dt1 (on the domain), the website is vt and the domain is
>>>intranet. From the inside, if authenticated users go to http://dt1/vt
>>>they
>>>are on and everything is fine. This website is actually a virtual
>>>directory
>>>on the default website.
>>>
>>>Now I would like users to use the app (IssueTracker) from home. Here they
>>>are not authenticated and should be prompted for their domain credentials.
>>>The address is issuetracker.comp.dk and they first have to supply
>>>username/password to get nat'ed through the firewall. The firewall
>>>redirects
>>>to the IP of dt1.
>>>
>>>To catch these request I have set up a new website on dt1 with hostheader.
>>>Same path to the app and same security settings.
>>>I have not tried it from outside yet, but using this new website from the
>>>inside now prompts the already authenticated users? As is it does not
>>>recognize the authenticated users? Is that due to a outsite address
>>>(issuetracker.comp.dk)?
>>
>> Add the "issuetracker.comp.dk" domain to the intranet zone in IE's
>> security tab.
>>
>> Jeff
>>
>>
>>>Furthermore, when supplying the credentials, the user is rejected with the
>>>issuetracker.comp.dk/username in the new password prompt. If they replace
>>>issuetracker.comp.dk with intranet, he's in.
>>>
>>>So I'm back to Jonathans question: Why is dt1 not using the domain as
>>>default?
>>>I will get back with info of how the thing behaves from the outside.
>>>
>>>At last (if still not clear) I would like to have all users use the
>>>issuetracker.comp.dk address and of course; the inside users get right in,
>>>the home users supply their domain credentials (but without intranet\....)
>>>
>>>Thanks in advance!
>>>
>>
>