[THIN] Re: Integrated authentication with IIS and Citrix

  • From: "Josh Pepper" <Josh.Pepper@xxxxxxxxxxxxxxxx>
  • To: <thin@xxxxxxxxxxxxx>
  • Date: Thu, 4 May 2006 13:05:57 -0500



I could be phrasing this wrong (I am not a Citrix expert, I am a
developer trying to get a website to work).  The Secure Gateway
autheticates against Active Directory, does it not (if you have it setup
that way)?


Also, when you suggest checking "Authenticated Users", are talking about
the local Users group on the IIS server?  Or on the Presentation Server?






From: thin-bounce@xxxxxxxxxxxxx [mailto:thin-bounce@xxxxxxxxxxxxx] On
Behalf Of Joe Shonk
Sent: Thursday, May 04, 2006 12:39 PM
To: thin@xxxxxxxxxxxxx
Subject: [THIN] Re: Integrated authentication with IIS and Citrix


Not quite sure what you are asking...   The only authentication Secure
Gateway does is validate the STA ticket.   


Did you remove "Authenticated Users" from the local Users group?  If you
did,  you need to add it back to the local Users group.  Otherwise the
IUSR_SERVNAME account does not have rights and prompts the users for
alternate credentials. 




On 5/4/06, Josh Pepper <Josh.Pepper@xxxxxxxxxxxxxxxx> wrote: 

Hi all-

I have published Internet Explorer opening a specific website (like
"iexplore.exe website.com").  This website is https and has both
"integrated Windows authentication" and "basic authentication" checked
in "Authentication methods" in IIS setup.  All users are authenticated
as domain members via the Secure Gateway. 

My problem is that IIS prompts the user to re-authenticate when logging
into the site.  Isn't there some way that I can get the Secure Gateway
(or is it the Presentation Server) to pass-through the AD credentials to
prevent having to enter them twice? 





PS. Hello to all that gave me great advice at BriForum!  


Josh Pepper
Lead Software Developer

333 Washington Ave N
Suite 5000
Minneapolis MN 55401
(612) 767-1946 office
(612) 767-1903 fax 



Other related posts: