.NET Tutorials, Forums, Interview Questions And Answers
Welcome :Guest
Sign In
Win Surprise Gifts!!!

Top 5 Contributors of the Month
david stephan
Gaurav Pal
Post New Web Links

Some users are unable to access my intranet site with windows authentication

Posted By:      Posted Date: October 15, 2010    Points: 0   Category :ASP.Net

Hi All

I have an intranet site that i set up to windows authentication. It works fine most of the time but some departments wont be able to access the site and will be asked to enter user name and password.
I checked their Active Directory account and the only difference i could see was that the  organizational unit parameter was different than the rest of the users. But im puzzled on what i can do to fix it and have them accessing the application.

Any ideas?

View Complete Post

More Related Resource Links

allow outside users to access sharepoint intranet site


Hi techies,

I would like to create a new site on Sharepoint, Access to the site is required by both internal and external users, so it means they will be few people outside the  domain that we need to give access to the site.how to achive this.


thanks in advance.


Nag: http://nagaraju-sharepoint.blogspot.com. Posting is provided with no warranties.

Intranet Users Challenged When Using Windows Integrated Security


We've setup an intranet site using Windows Integrated Security. Its up and running and users can access it. However, they are being challenged with a login dialog for the server when they initially access the site.

Isn't is possible to configure the server so that the users aren't challenged AND are recognized as being already authenticated by Windows? We're trying to go with a seamless experience, whereby all they have to do is login to their machine like normal and then go from there.

Using windows authentication to access SQL when using ASP.NET 4.0 via COM+


I am using SQL Server 2008 under windows authentication, front end is ASP.NET which uses COM+ to access database.

COM+ components are configured to run as domain user.

When looking through the logs (SQL Profiler), I can see the login name as the configured identity instead of windows indentity.

I have got Website running under "Intergrated Windows Authentication" and database is running locally on webserver.

Web configure contains entry for <identity impersonate="true"/>.

My connection string is

connectionString="data source=db01\test01;initial catalog=test; integrated security=SSPI;persist security info=False; Trusted_Connection=Yes"

Any ideas?




Forms based users being prompted for windows authentication login for My Sites photos in user lists

Here's an issue I didn't see coming for our forms based authentication users. 

We have a web application extended to an external url to handle forms based authentication for users outside of our domain. Our setup looks like this...

Internal Users/Windows Authentication - moss.domain.com
External Users/Forms Based - mossext.domain.com
My Site for Internal Users - mysites.domain.com

When our forms based users are accessing user lists, or discussion pages that display user pictures, they are getting a windows authentication login for our internal users (mysites.domain.com) who have populated their my site with personal photo.

How do we fix this? 

Unable to call an asmx web service using windows authentication from a Service workflow

Hello, I need to use an existing asmx service from inside my service workflow and I am unable to call it. This asmx service is hosted in a web application with iis set to windows authentication, anonymous is not allowed. I need to send the authentication, only way seems too be using transport for basicHttpBindings. Every time I try to call the service I get an error saying that there is nothing listening to the url of the service generated automatically by VS when I added the Service Reference ? my web config <configuration> <configSections> </configSections> <system.web> <compilation debug="true" targetFramework="4.0" /> </system.web> <system.serviceModel> <protocolMapping> <add scheme="http" binding="wsHttpBinding" bindingConfiguration="WindowsCreds" /> </protocolMapping> <bindings> <basicHttpBinding> <binding name="UtilitiesSoap" closeTimeout="00:01:00" openTimeout="00:01:00" receiveTimeout="00:10:00" sendTimeout="00:01:00" allowCookies="false" bypassProxyOnLocal="false" hostNameComparisonMode="StrongWildcard" maxBufferSize="65536" maxBufferPoolSize="524288" maxReceivedMessageSize="65536"

All Users (Including Site Collection Admins) receiving Access Denied from one Site Collection

I usually spend my time in the forums answering questions.  But this time I need the help. I’ve got a client who somehow has succeeded in locking EVERYONE out of one of their Site Collections.  Users can authenticate to the site, but get an accessdenied page when you try to access anything in the site collection, including pages served from the _Layouts virtual directory.  The AccessDenied page shows that they are authenticated, but not authorized.  This is true for Site Collection admins and user’s who have been given Grant Full Control via a Web Application Permission Policy.  Central Admin and one other site collection are behaving normally.  I've already checked for database permissions - the service account can access the database fine. I've also checked for a locked database or overextended quota.  It's not that either. The accessdenied page url references the users list in the root of the site collection as the offending list denying access.   Does anyone have any ideas?Paul Stork SharePoint Server MVP

Authentication for External Users to Access MOSS 2007 Resources

Our MOSS 2007 supports users from two domains that authenticate using windows.  Our clients WindowsXP in domain#1 and WindowsVista in domain#2 (which has presented problems authenticating to MOSS 2007.  I would like to give access to external users outside of those two domains.  However, our management does not want to establish trusts between domains.  What would be the best practice to accomplish this?  Additionally, will MOSS 2010 or Forefront resolve these issues?

Allowing internal users access to Sharepoint site externally

Good afternoon.   This may be a simple answer (I hope so actually) but I haven't been able to figure this out. What I need: I have internal users who can access my Sharepoint site easily while logged onto my network, and external users who I have added to our Active Directory system who can access the site using our external URL.  Both work fine. What I am having problems with:  One of my users (internal) is on a different AD (he is on our European network) and he can not access the site either from the VPN (when he is in the US) nor from the external site (it will take him to the logon screen, but since he doesn't have an account on our AD, it won't let him in). I understood from our European IS department that all we had to do was give him both internal and external access to the Sharepoint site, and he would be able to connect from anywhere. So, how do I do that (give him both)?  Do I need to have our IS team turn on MOSS2007 to do this (it is not turned on today). Many thanks, I am still a newb at Sharepoint, but trying to learn quickly. Thanks, Jim  

Alternate Access mapping - Intranet site

Hi All, I'm banging my head against a brick wall here trying to setup an alternate access mapping for an intranet site in SharePoint 2007. I have a default site setup which has the following public default URL: http://SERVERNAME:2586 I want users to access the site using the URL http://Intranet Now from reading about alternate access mappings I thought this should be as simple as adding an internal url of http://intranet under the intranet zone. With this set up I preceded to add the binding to the IIS website. I added the binding with All Assigned IP addresses, port 2586, and host as Intranet. The final thing I did to check this was to add an entry to the hosts file for the server IP address with the host name of intranet. This was followed by a flush of the DNS cache on the server. Whgen trying to access the site using the URL i now get the IIS7 welcome page, but not the SharePoint site I expected. Can anyone point me in the direction of what i've done wrong, Its got me stumped. Cheers, Grant

Changed to claims based authentication, now I can't access my site. Please help! Time is of the ess

I am in a pretty big bind. I have a sharepoint 2010 site, that was using classic windows authentication. It worked fine from the inside, and I was able to extend it to the outside and it was using https with an SSL certificate. However, my performancepoint reports and my external lists weren't working when the site was accessed from the outside. Apparently this is a known issue with using classic authentication on the outside, so I tried to switch over to claims based authentication. I followed this guide: http://blogs.technet.com/b/wbaer/ar...point-2010.aspx I obviously changed the contoso stuff to my domain name, and changed all of the config files. The problem is, now I can't access the site at all from the inside or the outside. Here is the error I get in my logs: code: An exception occurred when trying to issue security token: Could not connect to [url]http://localhost:32843/SecurityTokenServiceApplication/securitytoken.svc/actas.[/url] TCP error code 10061: No connection could be made because the target machine actively refused it . My Sharepoint Central Administration site gives me this warning: code: The Security Token Service is not issuing tokens. The service could be malfunctioning or in a bad state. Remedy Administrator should try to restart the Security Token Service on the boxes where it is not issuing tokens. If problem persists, f

Unable to access sub site from all farm WFEs

I know there is probably a simple explanation for this, but so far I've not found it.  I'm simply creating a new site collection (sites/subsite) for the default port 80 web application and am able to access it from wfe1, but not from other wfes in the farm. So, the default site collection (/) is already there and can be accessed from any WFE in the farm (i.e. http://wfe1/ http://wfe2, etc..)  No I go to create a new site collection and am using the following URL http://wfe1/sites/subsite.  From WFE1 I can access the new site no problem. But, if I try and go through wfe2, etc. (http://wfe2/sites/subsite), I get an immediate HTTP 404 Not Found error.  I've tried adding alternate access mapping for each wfe in the farm and that seems to work, but doesn't that essentially mean that all request are answered by wfe1? This was not the default behavior in SP7.  What has changed?

All users have "Limited access" to MOSS Site even Site Admins


hi All.

We are running MOSS 2007 Stand-alone server on server 2003 SP2.

We had perfectly running MOSS site with Document Libraries and Custom Lists with almost 10 subsites. 

Suddenly today no one can edit or upload any new items or documents.

Under "Site Permissions", all the users have "Limited Access" permission level including Site Admins as well.

I have logged in as Site Admin and "Edit user Permission" under "Site Permissions" is not available anymore.

I know its a security issue but is there any way I can reset the security settings on Parenet Site.

(All the the subsites inherit security from the parent site)

Users (even site collection administrator) unable to see minor versions in document libraries


I have document libraries with the following settings: major & minor versioning enabled, checkout required & 'only users who can edit items' can see draft (minor) items. The problem is when a user uploads a document (the first document), the library appears empty. However, looking at the summary in 'view all site content' we see that the number of items in the list has incremented by 1. Typically, if the user selects explorer view they can also see the document they just uploaded.

Similar behaviour occurs using the 'New document' option. Before checking in the document for this first time it is visible in the library. If it is checked in as v 0.1 it 'disappears' if it is checked in as v 1.0 it is visible.

I have noticed that if I toggle the Draft Item Security setting by setting it to 'any user who can read items' then set it back immediately to 'only users who can edit items' that the previously hidden items become visible. And any new minor versions created subsequently are also displayed correctly. I can of course do this for existing libraries, but if new libraries are created based on my template this behaviour reoccurs.

Has anyone seen this before?

Customized sharepoint portal is not accessible to normal users unless a site admin access the site o


Hello there

I have created a sharepoint portal and customized it. I have created my own master page and there are many webparts implemented. This has been hosted in a MOSS server. When a normal user is trying to access the portal first thing in the morning, he is getting a "You are not authorized to view this page" error. But when a site admin access the site, there is no issue and he is able to access the site. The site admin does nothing in the site and once he has logged in to the site,  the user is able to access the site without any trouble.

I have tried to look into the master page gallery and has given full access to the users for "Style Resource Readers" user group. Even now the user is facing the same issue.

Kindly help in this regards,



Users being prompted continuously for UN/PW when accessing SharePoint Intranet Site


From time to time, we have internal users who are continuously prompted to re-enter their network username and password when accessing any content or data on the SharePoint company intranet.  We use Acitve Directory authentication. Is this a network issue or something with SP? (We're using SP2007)

Help needed! Access denied for the root site for all users except Site Collection Administrators?!


We had implemented an intranet for a customer. Last week on friday we completed the project and they were allowed access to it. Next monday they had done some changes while trying to learn SharePoint (among others the Site Members groups had been deleted) and since then they have been unable to access the root site (e.g. http://intradev/default.aspx) and get a SharePoint Access Denied message. While the root site fails, users can browse to the subsites (e.g. http://intradev/subsite/default.aspx) and view them just fine.

We've noticed that users that are in the Site Collection Administrators group can view the root site just fine. Due to this, we made an educated guess that users had no permissions on the root web. But explicitly adding permissions to the root web does not work. The logon still fails. While it doesn't work in the root web, the permissions are inherited to all subsites, and users can log on and browse those pages just fine.

I've checked pretty much everything. I've tried giving permissions to users in the root site. I've ensured in Central Admin that 'Full Control' does actually give full control of everything. Only thing I've not yet tried is restoring the content database to an earlier backup, where the site was working nicely. 

I'm totally confused by this problem. If you've got any ideas or have encountered a similar

cannot connect to sharepoint server intranet site through VPN with windows vista home premium 64bit

Hi, a company i work for has an intranet site using sharepoint 2008. i can connect to the intranet remotely through their vpn however i am not able to view the instranet site or ping the server it is on...

does anyone have any ideas on whether this might be a vista issue or ????

ASP.NetWindows Application  .NET Framework  C#  VB.Net  ADO.Net  
Sql Server  SharePoint  Silverlight  Others  All   

Hall of Fame    Twitter   Terms of Service    Privacy Policy    Contact Us    Archives   Tell A Friend