none
Can't authenticate into Central Admin via IE but ok in other browsers on client PCs

    質問

  • This is an odd one - I have a SharePoint 2010 installed on a server and standard Windows authentication is used (via Active Directory). Locally on the server I can access Central Administration web site in IE with no problem.

    On other PCs, whenever I try to access central admin in Internet Explorer (7/8) it fails to authenticate. IE quite happily automatically authenticates into the normal sharepoint sites, but not central admin. Yet if I use Firefox, then that quite happily authenticates into Central Admin. I've tried this on quite a few PCs with the same result - IE can't authenticate, Firefox can.

    Any idea why this would be? The connection settings in IE appear the same as other browsers (i.e. no proxy).

    Thanks.

    2010年9月24日 14:54

すべての返信

  • On other PCs have you tried adding the CA URL to the trusted zones and seen if it works?

     


    Alpesh Nakar's Blog Alpesh Just SharePoint Just SharePoint Updates

    SharePoint Conference Southeast Asia Oct 26-27 2010 Contributing Author SharePoint 2010 Unleashed

    MCTS: SharePoint 2010 Configuration MCITP: SharePoint 2010 Administrator

    2010年9月27日 0:46
  • I've tried adding the url for the sharepoint server into the trusted sites and Local intranet sites sections but still IE fails to authenticate.

    2010年9月27日 10:24
  • Are you getting any error notifications? If you are then it could give some hint. I am thinking DNC but why would it work in F.F.

    2010年9月27日 15:02
  • Have you tried to disable the loopback check?

    PowerShell courtesy of Todd (tk)

    New-ItemProperty -path HKLM:\SYSTEM\CurrentControlSet\Control\Lsa -name DisableLoopbackCheck -value 1 -PropertyType DWORD


    Alpesh Nakar's Blog Alpesh Just SharePoint Just SharePoint Updates

    SharePoint Conference Southeast Asia Oct 26-27 2010 Contributing Author SharePoint 2010 Unleashed

    MCTS: SharePoint 2010 Configuration MCITP: SharePoint 2010 Administrator

    • 回答としてマーク Lily Wu 2010年10月1日 10:38
    • 回答としてマークされていない magra 2010年10月5日 8:58
    2010年9月28日 3:20
  • That doesn't work I'm afraid. It looks like that registry key is related to KB article 926642 which is when the browser on the Windows Server has problems. In my situation it is on all client PCs.

    There are no notable error notifications - the ULS log don't show anything of interest (other than the GET request).

    In the IIS failed request logs there is a clue - AUTH_KERBEROS_FAILED .

     KMUsed false
     APUserName CN=SPS-SDG\, Farm,OU=Accounts,OU=WWW,OU=XXX,OU=YYY,OU=ZZZ,DC=MYDC,DC=MYORG
     SPNName 
     ADConfigIsOK false
     KerberosInfo

    (OU info removed)

    However, with browsers other than IE this problem doesn't occur. Also IE on the server PC is fine.

    2010年10月5日 8:58
  • I assume this is still unsolved?  I am having the same exact issue.  Authentication to CA works in FF but not in IE or Chrome on client PCs.  Quite frustrating, but I'm glad I saw this thread to see that at least I have a workaround.  It's odd that a non-Microsoft browser (Firefox) works better with a Microsoft product (SharePoint 2010, or IIS?) than does Internet Explorer.  If there is a solution to get this to work with IE, I would be very grateful to know it.


    Tyler Huntley
    2011年11月10日 21:06