Hi All,
We have an ASP.NET 2.0 intranet application sitting on a (multihomed, with only one default gateway configured and static routes in the routing table) W2K3 IIS6 box. IWA is the only authentication method enabled in IIS and our web.config handles authentication based on domain group memebership.
The IE6 clients within our domain have the intranet site FQDN within their “Trusted Sites” zone (pushed via GP) and IWA is enabled on the IE6 clients. Within our offices, the IE6 clients are logging into the site automatically, as we would expect. All is good.
Naturally, when users attempt to connect to the site from home (or anywhere else outside the organisation), they are prompted to authenticate with a standard NTLM login dialog. However, in IE6 and IE7, the username field in the dialog is pre-populated as “FQDN of siteusername”. If the user types in their password, login fails. If they change the username field to “domainusername” and enter their password, they authenticate OK.
Why is the username field pre-populated with “FQDN of siteusername”? Is it something to do with SPN (which I haven’t set for this site/web app yet?)? Can I change this behaviour somehow, so that the username field is pre-populated correctly in “domainusername” format?
Note that I’m not sure what other browsers prompt with, so I’m interested to know if I can change something so that all browsers pre-populate the username field with the “domainusername” format.
TIA,
