iis security: How to Combine Anonymous IUSR and Integrated Windows on one site -- iis security

How to Combine Anonymous IUSR and Integrated Windows on one site

tyrus
8/29/2006 7:00:02 AM

iis security:

I have an Intranet site served from IIS6 which I need to allow anonymous
access to because it gets used by Blackberries. I get header infor from the
blackberries to identify those users, But I would also like to be able to use
HttpContext.Current.User.Identity.Name to identify a PC based user on our
network. This doesn't work unless I disable anonymous.

Does anyone know if this is possible to combine the two. Or a way to make it
work.

Re: How to Combine Anonymous IUSR and Integrated Windows on one site

Miha Pihler [MVP]
8/29/2006 4:45:40 PM

Hi,

You can't do this with one site. Anonymous is used first before any other
authentication option. When browser (or client) tries to access the website
it will always try anonymous first. If it succeeds then it will load the
page and no authentication options are enforced (if NTFS permissions are set
correctly).
If the IIS website is has disabled Anonymous access it will return Access
Denied to the client and ask it to authenticate with most secure option
first (e.g. Integrated and then Basic if selected).

--
Mike
Microsoft MVP - Windows Security

[quoted text, click to view]