Hi,
When enabling the Kerberos, the user credential(password etc) will not be
passed in the domain networking. AD passes the hash value of the user
credential instead. This resource will explain the Kerberos in Windows 2003
very well to us:
Kerberos Authentication in Windows Server 2003
http://www.microsoft.com/technet/prodtechnol/windowsserver2003/technologies/ featured/kerberos/default.mspx
So for your scenario, the two kb articles introduces how to enable the
kerberos in IIS5.1:
326089 How to enable IIS to use Kerberos authentication on a computer that
is
http://support.microsoft.com/?id=326089 215383 How to configure IIS to support both Kerberos and NTLM authentication
http://support.microsoft.com/?id=215383 For enabling kerberos in IIS6.0, this article from operation guide
introduces the steps:
Configuring Constrained Delegation for Kerberos (IIS 6.0)
http://www.microsoft.com/technet/prodtechnol/WindowsServer2003/Library/IIS/d f979570-81f6-4586-83c6-676bb005b13e.mspx
Furthermore, after enabling kerberos, we will also need to configure the
SQL server to support it.
Information about SQL Server 2000 Kerberos support, including SQL Server
virtual servers on server clusters
http://support.microsoft.com/?id=319723 At last, for any configuration issue at IIS, this kb article will be some
helpful:
326985 HOW TO: Troubleshoot Kerberos-Related Issues in IIS
http://support.microsoft.com/?id=326985 Please feel free to let me know if you have any further question on this
matter.
Best Regards,
Wei-Dong XU
Microsoft Product Support Services
This posting is provided "AS IS" with no warranties, and confers no rights.
It is my pleasure to be of assistance.
