We have some servers that we're trying to allow domain users to log into the web site. Unfortunately, it seems that only administrators can do so. All other users get 401.2 authentication errors.
I'm trying to track down what group policy setting may be in effect that overrides the application configured authorization. Does anyone have any suggestions on where to look?
More info:
Site hosts an asp.net web forms application configured to use Windows Authentication. The Web.config is configured to allow all users access <allow users="*"/>. Administrators can access the page, and their identity is shown. Non-administrators get an authentication dialog, which does not accept their username/password.
The server is configured to not allow interactive login from non-administrators, but that shouldn't affect IIS authentication, should it?
Best Answer
Both
gpresult /HandRSOP.mscare the standard tools for troubleshooting group policy issues.Give them a whirl and you'll see every policy item applying to your server.