Authentication Prompt

Hi Guys,

I have 2 ISAPI filters setup on my IIS. Both locations of the filter DLLs are setup as virtual directories with the appropriate permissions. Now, I have specific information from the vendor of ISAPI A that I need to turn off Anonymous access and switch on Integrated Windows Auth on its virtual directory which I do. However, when this is applied the other ISAPI B starts requesting username and password like a Basic auth prompt. Removing ISAPI B removes the problem and the site behind ISAPI A correctly authenticates the logged in user using Integrated Windows Auth.

I need to get both ISAPI A and B running but I have to stop ISAPI B causing login prompts for ISAPI A traffic.

I tried setting on ISAPI B's security Anonymous, which is also the setting on the default website. The virtual directory for ISAPI A is the only place where I disable Anonymous and enable Integrated Windows auth.

Somewhere to start with solving this greatly appreciated!

Can you grant permissions to the offending isapi dll that allows any of the logged-in users access? As soon as a user logs in IIS will impersonate that user for subsequent activity rather than using the anonymous IIS user account.

Also, afaik IE is the only browser that supports integrated authentication.

Hi,

Yes I had tried this but to no avail. At the moment I have just created another wbsite on port 81 and separated the ISAPIs but I would prefer to understand what the problem was!

I'm not real familiar with custom ISAPI's. If you do find out what's wrong let us know!

Hello,

Maybe a custom authentication filter can help in this case? bcAuthenticate from bestcode.com
is an ISAPI filter that can map users to NT accounts using an ODBC datasource.
http://www.bestcode.com/html/bcauthenticate.html

Regards,
g.