Cannot authenticate when Microsoft IIS is configured on Windows NT with challenge response and basic authentication enabled

Technote (FAQ)
Problem
When security is enabled on WebSphere® Application Server with Basic Challenge Type, and the Microsoft® Internet Information Server is enabled with Challenge/Response and Basic Authentication, valid usernames and passwords fail when trying to log in and access a secured resource.
Cause
This symptom occurs when WebSphere Application Server security is enabled and Basic Challenge Type is chosen. Logging in with a valid username and password fails when you try to access secured resources.

The reason might be that in IIS, the Windows NT® challenge/response and basic authentication is enabled on the Microsoft Management Console.
Solution
Environment:
  • Microsoft Windows NT or Windows® 2000
  • WebSphere Application Server
  • Microsoft Internet Information Server (IIS) 4.x or 5.x

For Windows NT running IIS 4.x:
  1. Start the Microsoft Management Console.
  2. Disable the IIS Windows NT challenge/response and basic authentication.
  3. Use WebSphere Application Server to handle these activities.

For Windows 2000 running IIS 5.x:
  1. Start the Windows 2000 Administrative Tool.
  2. Select Internet Services Manager.
  3. Highlight the Web site service.
  4. Display properties.
  5. Click the Directory Security tab.
  6. Click Edit for Anonymous access and authentication control.
  7. Clear all check boxes in the Authenticated access section.
  8. Click OK.
  9. Cancel the dialog box that asks what else should be default for authenticated access.
  10. Use WebSphere Application Server to handle these activities.











Document Information

Product categories: Software, Application Servers, Distributed Application & Web Servers, WebSphere Application Server, Servlet Engine/Web Container
Operating system(s): Windows 2000, Windows NT
Software version: 3.0, 3.0.1, 3.0.2, 3.0.2.1, 3.0.2.2, 3.0.2.3, 3.0.2.4, 3.5, 4.0
Software edition: Edition Independent
Reference #: 1003415
IBM Group: Software Group
Modified date: 2004-09-02