I enabled windows authentication for asp.net mvc project. I'm in company domain, and when I send an get request to server side, I don't see any special stuff like username/pwd in header/body. How does server know who am I? And if I send an ajax call to server, do I need to include username/pwd as part of this call? Please help.
Asked
Active
Viewed 45 times
0
serenesat
- 4,611
- 10
- 37
- 53
user3033715
- 163
- 6
-
Can you please explain what you have done so far? your web.config for authentication, any other authentication related changes? – Arghya C May 22 '15 at 18:33
1 Answers
0
Integrated Windows Authentication uses Negotiate (Kerberos) or NTLM authentication work the same way that Basic Authentication works.
When you send an initial request, the server responds with a 400 not authorized response. The browser sees the accepted types of authentication, and prompts the user for the username/password, or if it knows how to use the current windows login token and is configured to do so, it uses that token automatically.
JJS
- 6,431
- 1
- 54
- 70