We have multiple web sites that need to process DOMAIN authentication in Windows. There's only one server but multiple sites.
For example:
s1.domain.com
s2.domain.com
s3.domain.com
All of which want a single sign-on. Simple, except the login dialog only can appear once.
So we need a cross web site integrated authentication.
Any thoughts?
Best Answer
Integrated authentication will work as long as integrated authentication works.
IE is probably prompting because:
Then there's the Kerberos issue - i.e. if you require Kerberos, you'll need SPNs configured for that domain name.
But fundamentally, IE should provide transparent logon with the logged-on user's credentials to any site it considers part of the Local Intranet zone, with default settings applied to it.
Note Trusted Sites sounds better, but it doesn't permit automatic logon by default. From memory.