Authentication Question
Date: Thu, 13 Apr 2006 17:32:46 -0400
From: Don <donhollisteratadelphiadotnet>
Newsgroups: microsoft.public.sharepoint.portalserver
Subject: Authentication Question
We have a mixed environment were some users authenticate to AD and some don't. The users that don't log on to there pc's via a local account. One such user clicked his sharepoint link and was prompted to authenticate and did so using <domain>\<username> and then entered his password. While doing so, he checked the box to remember username and password. Since then, he has not been prompted again.
My question, when you check this box, where is your username and password stored?
**************************************
From: "Engelbert" <Engelbertatdiscussionsdotnospamtodcom>
Subject: Re: Authentication Question
Date: Fri, 14 Apr 2006 11:26:23 +0300
Newsgroups: microsoft.public.sharepoint.portalserver
I would imagine that this user is (as his domain name) a member of an AD Group that has permissions to access the site (if he hasn't been allocated as a domain user directly).
So he has two ways to access the site (local user / domain name) and now that he has once accessed the site with his domain account, future accesses will use the same information.
(Not answering the final question because I a) don't know the answer and b) I think the reason for the present functionaliy lies elsewhere)
Engelbert
**************************************
Date: Fri, 14 Apr 2006 16:07:48 -0400
From: Don
Newsgroups: microsoft.public.sharepoint.portalserver
Subject: Re: Authentication Question
You are correct in that he has an ad account which he initially used to authenticate to sharepoint. Since his workstation logon is not associated with ad, we are curious why he is no longer prompted for his ad credentials.
**************************************
From: "Chris Jones" <chrjonesatgmaildotcom>
Newsgroups: microsoft.public.sharepoint.portalserver
Subject: Re: Authentication Question
Date: 18 Apr 2006 03:21:48 -0700
If you are using Internet Explorer then when you check the "remember username and password" checkbox IE encrypts the details are stores them on the local machine.
(I don't know exactly where IE stores the details, but Windows XP does have an area for securly storing passwords (e.g. for file shares) and I would expect IE would use this area).
One thing to note is that if an administrator resets or changes the users password then the saved passwords will be deleted and the user will need to reenter them. This is because the encryption used to encrypt the username and password is partially based on the users password.
Hope this helps,
Chris
Posted using 