IIS Win Auth Logon with "/" negates Security?

T

ThomasS28

This problem is happening on a Gov network with an Application on a IIS server (32bit)

The Server is Win 2012 R2 64 bit 4GB, member of Domain and AD but not the Domain controller.

The IIS server has a Vendor supplied Application that runs in 32 Bit mode, only works in IE 11.

Note: Only Basic Authentication is Turned On.

The Application uses Groups on the AD/Domain to grant permissions.

Currently if a user logins with domain\username everything works.

However if the user logins with domain/username the User is granted full rights and has Admin controls to the Web Application.

Please Help, I have been over everything the Vendor has provided, and I've been down so many rabbit holes troubleshooting this, I really hope someone has experience and has seen this some where. Please refrain from generalized suggestions like restart etc.. etc.. been working on this for several weeks with the vendor, the number of attempts would fill a novel, so just throwing this out there looking for someone that has seen the problem.

And Thank-you in advance!


~Tom

Continue reading...
 
You must log in or register to reply here.

Similar threads

D
Doublehop problem with iis 6 and sql 2016
Replies
0
Views
43
David Kafrissen
D
A
.Net8.0 WebAPI Deployment Not Working with IIS on Windows Server 2012 R2 aspnetcore.dll and Asp.Net Core Module\V2\aspnetcorev2.dll not found
Replies
0
Views
51
Arvind Sharma3
A
I
The trust relationship between this workstation and the primary domain failed
Replies
0
Views
87
Iam SEA
I
J
Event ID 5158 (Filtering Platform Connection) filling up Security Log
Replies
0
Views
56
Jim-Old
J
J
Need some help/advice on authentication issues to a web page using Active Directory Credentials that have changed from using the NetBIOS name to the f
Replies
0
Views
56
Jeramy G
J
Back
Top Bottom