Internet Information Services
Microsoft web server software.
1,584 questions
IIS Web Server
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(224.00000000000003, 21%, 31%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3ESA%3C/text%3E%3C/svg%3E)
SONI Anupam
0
Reputation points
Hello Team.
I need someone’s help who is expert in IIS window authentication settings. The problem is about IIS window authentication provider Negotiate Vs NTLM.
I have Intranet an application which is being planned to provide access from Open Internet using MS Azure proxy app.
So, the URL https://www.something.com/ - works fine when I include window authentication provider Negotiate and NTLM, but it doesn’t work with Edge browser from company network.
This is due to “Negotiate” provider and if we remove it then it will work on Edge & Chrome from company Network only, not from Open Internet.
Can someone help on this please?
{count} votes
-
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(150.4, 0%, 24%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EXP%3C/text%3E%3C/svg%3E)
XuDong Peng-MSFT 10,101 Reputation points Microsoft Vendor2024-04-04T10:12:11.96+00:00 Hi @SONI Anupam,
What does it mean about
it doesn’t workyou mentioned? Did you encounter any errors? If possible, please provide detailed error information.Based the description, I think you want to know something about Microsoft Negotiate, just refer to this doc: Microsoft Negotiate. Depending on your environment, you will choose between Kerberos and NTLM.
-
Deleted
This comment has been deleted due to a violation of our Code of Conduct. The comment was manually reported or identified through automated detection before action was taken. Please refer to our Code of Conduct for more information.
-
Deleted
This comment has been deleted due to a violation of our Code of Conduct. The comment was manually reported or identified through automated detection before action was taken. Please refer to our Code of Conduct for more information.
-
Deleted
This comment has been deleted due to a violation of our Code of Conduct. The comment was manually reported or identified through automated detection before action was taken. Please refer to our Code of Conduct for more information.
-
Lex Li (Microsoft) 4,742 Reputation points Microsoft Employee2024-04-04T17:05:04.0566667+00:00 People usually set up two sites for such scenarios, so that external users can go through an external facing site with less strict authentication, while the internal users go through an internal site with stricter checks.
Sign in to comment