New Community Website

Ordinarily, you'd be at the right spot, but we've recently launched a brand new community website... For the community, by the community.

Yay... Take Me to the Community!

Welcome to the DNN Community Forums, your preferred source of online community support for all things related to DNN.
In order to participate you must be a registered DNNizen

HomeHomeDNN Open Source...DNN Open Source...Provider and Extension ForumsProvider and Extension ForumsAuthenticationAuthenticationINTERNET EXPLORER CANNOT SHOW THE PAGE SSO From Internet...INTERNET EXPLORER CANNOT SHOW THE PAGE SSO From Internet...
Previous
 
Next
New Post
3/29/2011 2:56 PM
 

Good evening, I have the following issue

I´ve installed the module of validation integrated of activate directory01.00.06 for the version 4.9.5 satisfactorily.

I also have configured into DNN in order that it fulfils AUTOLOGON in pcs of our LAN in a proper way.
 The link is http: // www.dominio.com/DesktopModules/Authen....

The inconvenient that I have is that the notebooks  having connected in an external way and  having sign-in to the principal page (before indicated) it( gives mistake of page. The concrete mistake is INTERNET EXPLORER CANNOT SHOW THE PAGE.

I hope that someone has had a similar experience and could give me a hand.

TKS.

 
New Post
3/30/2011 10:56 AM
 
I'm not sure what you mean when you say you've setup your pcs to autologon by pointing them to WindowsSignin.aspx? Where did you set this? As for your laptops..... when you say they connect in an external way, what do you mean? Are they remoting into the network or do you mean they're hitting your site just like any computer from outside the intranet would? Are they also being redirected to WindowsSignin.aspx? Are they on the domain as well?
 
New Post
3/30/2011 11:16 AM
 

Mike, thank you very much for answering.

The notebooks who access from Internet belong to the domain.

On having acceded directly to: www.dominio.com / …./WindowsSignin.aspx : the request show me “INTERNET EXPLORER CANNOT SHOW THE PAGE”.

"The site was added in Internet Explorer as Thrust Site- DOWN."

Sorry for my poor English

 
New Post
3/30/2011 1:53 PM
 
It's been a long time since I tried connecting to our website externally with a system that was on the domain (DNN 3 was the version at the time I think). It should in theory work as it's passing the user's domain credentials. But I've got other questions...

What's the URL that you have in their Trusted Sites list? www.dominio.com or something else? Have you looked at the Auto-login IP Address section of the settings and set it up so that only the internal network goes to WindowsSignin.aspx and your external users manually login?
 
New Post
3/30/2011 7:46 PM
 
Hello Mike, 
I have found the solution to the problem
Thank you very much for the offered help

Copy:
IE7 fails to automatically authenticate with enable integrated windows authentication checked
by Greg on Mar.15, 2008, under Internet, Networking, Web Design
In Internet Explorer 7, Tools, Internet Options, Advanced tab. The checkbox for “enable integrated windows authentication” is very confusing. You would think this means “just log me in with my windows credentials”, but no, there’s more to it than that. And what I found was, it simply enables “Negotiate”. It set’s this registry key to 1: 

HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Internet Settings\EnableNegotiate


After some research, this actually means that IE will negotiate between NTLM or Kerberos authentication. In some situations, Kerberos will fail. I don’t understand well enough to explain this one. But that’s ok, because the point of all this is… I want IE to authenticate automatically on my Intranet! Anyway, if you uncheck this setting in IE, it will set Negotiate to disabled. (0) If Negotiate is disabled, IE will use NTLM by default. BAM! I can login automatically. 

Wouldn’t it be much more helpful if Microsoft had labeled that for what it was? Like: Negotiate Kerberos or NTLM Authentication. 

Word of caution… some Intranet apps might depend on Kerberos, so this might cause more problems down the road of you disable this on all your client systems. 

Another note… IE6, as I understand it, does not behave this way. It has a similar setting to enable windows authentication and I believe it uses NTLM by default. I HAVE NOT TESTED THIS, and I don’t know for sure if this is true, but according to my Googling, this is the case. 


I found this site with info regarding EnableNegotiate: 


http://ie7triage.spaces.live.com/blog/cns!3B6634EF5458F389!422.entry


In Internet Explorer 7, Tools, Internet Options, Advanced tab. The checkbox for “enable integrated windows authentication” is very confusing. You would think this means “just log me in with my windows credentials”, but no, there’s more to it than that. And what I found was, it simply enables “Negotiate”. It set’s this registry key to 1: 


HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Internet Settings\EnableNegotiate




After some research, this actually means that IE will negotiate between NTLM or Kerberos authentication. In some situations, Kerberos will fail. I don’t understand well enough to explain this one. But that’s ok, because the point of all this is… I want IE to authenticate automatically on my Intranet! Anyway, if you uncheck this setting in IE, it will set Negotiate to disabled. (0) If Negotiate is disabled, IE will use NTLM by default. BAM! I can login automatically. 


Wouldn’t it be much more helpful if Microsoft had labeled that for what it was? Like: Negotiate Kerberos or NTLM Authentication. 


Word of caution… some Intranet apps might depend on Kerberos, so this might cause more problems down the road of you disable this on all your client systems. 


Another note… IE6, as I understand it, does not behave this way. It has a similar setting to enable windows authentication and I believe it uses NTLM by default. I HAVE NOT TESTED THIS, and I don’t know for sure if this is true, but according to my Googling, this is the case. 

I found this site with info regarding EnableNegotiate: 


http://ie7triage.spaces.live.com/blog/cns!3B6634EF5458F389!422.entry
 
Previous
 
Next
HomeHomeDNN Open Source...DNN Open Source...Provider and Extension ForumsProvider and Extension ForumsAuthenticationAuthenticationINTERNET EXPLORER CANNOT SHOW THE PAGE SSO From Internet...INTERNET EXPLORER CANNOT SHOW THE PAGE SSO From Internet...


These Forums are dedicated to discussion of DNN Platform and Evoq Solutions.

For the benefit of the community and to protect the integrity of the ecosystem, please observe the following posting guidelines:

  1. No Advertising. This includes promotion of commercial and non-commercial products or services which are not directly related to DNN.
  2. No vendor trolling / poaching. If someone posts about a vendor issue, allow the vendor or other customers to respond. Any post that looks like trolling / poaching will be removed.
  3. Discussion or promotion of DNN Platform product releases under a different brand name are strictly prohibited.
  4. No Flaming or Trolling.
  5. No Profanity, Racism, or Prejudice.
  6. Site Moderators have the final word on approving / removing a thread or post or comment.
  7. English language posting only, please.