0

We have an intranet site on our network which uses NTLM to perform single sign on that works without issues. I wrote a C# application which spawn's an IE window with the site URL. Because the application also installs other applications from a protected folder and the users on the domain have restricted rights it is ran with a local administrative account.

I have tried:

System.Diagnostics.Process.Start("IExplore.exe", "http://MyIntranetSite/");
// and
System.Diagnostics.Process.Start("http://MyIntranetSite/");

This works without any sort of issue on Windows 7, however on Windows XP it is prompting for user credentials for NTLM authentication.

Could someone point me in the right direction of how to get around this issue?

John Saunders
  • 160,644
  • 26
  • 247
  • 397
Dave
  • 1,823
  • 2
  • 16
  • 26
  • Which version of IIS are you using? – Cameron Tinker Mar 19 '13 at 20:46
  • It is a Windows 2003 Server which means it should be Microsoft-IIS/6.0. – Dave Mar 19 '13 at 21:24
  • I also discovered there was a misconfiguration in the NTLM handshaking from IIS due to a bug in 6.x which is resolved in later versions. As a Kludge, if the user opens an IE window before running the program they do not get prompted for credentials... fun! – Dave May 02 '13 at 15:28

1 Answers1

0

The most likely reason would be IE settings. NTLM SSO only works, on the client side, when IE chooses to use SSPI and handshakes with the server. IE parses the URL and uses its security settings to decide whether to do SSO or prompt for creds. http://support.microsoft.com/kb/258063

Mark Gamache
  • 16