locked
Sharepoint Service Authentication Problem for Standard User RRS feed

  • Question

  • I have just deployed a standalone installation of WSS 3.0 on a Windows Server 2008 R2 box. The problem that I'm facing is that only the Administrator is able to access the sharepoint site I created from any computer on the network (Windows 7 clients). I have another dummy user named ABC who can access the sharepoint site from the Windows Server 2008 R2 server on which WSS is deployed, but not from any other computers on the network. He just gets the authentication window and after I enter the credentials, the window just comes up again. I'm in a domain environment. How do I resolve this? I am new to WSS.

    I have added to dummy user ABC to Team Site Visitors Group under People and Groups.

    Issue Summary:

    • Administrator can access Sharepoint site on the server where it is deployed and from any other computer on network
    • Dummy User ABC can access it only on the server, not from any other computer (authentication window does not go away)

    Please help me out with this, I have this important submission next week. Thanks a lot for your time!


    Kunal D Mehta - a Windows Server Enthusiast | I'm on facebook.com/serverbaba | RIP Steve Jobs
    • Edited by Server Baba Saturday, November 5, 2011 5:44 AM clarity
    Saturday, November 5, 2011 5:40 AM

All replies

  • Hi Baba,

    Have you disabled LoopBack Checking this is usually the case if you are using a name other than the servername to Access the server?

     

    -Ivan


    Ivan Sanders My LinkedIn Profile, My Blog, @iasanders.
    Saturday, November 5, 2011 8:15 AM
  • Thank you for the reply, Ivan.

    I didn't know what LoopBack Checking was, so I searched for it. I found these two articles:

    http://www.harbar.net/archive/2009/07/02/disableloopbackcheck-amp-sharepoint-what-every-admin-and-developer-should-know.aspx

    http://support.microsoft.com/kb/896861

    Both of them say:

    "The feature prevents access to a web application using a fully qualified domain name (FQDN) if an attempt to access it takes place from a machine that hosts that application."

    "You only receive this error message if you try to browse the Web site directly on the server. If you browse the Web site from a client computer, the Web site works as expected."

    But my case is exactly the opposite. I can access the site using it's FQDN on the Sharepoint server, but from client computers on the network only the Administrator can - not the user ABC. So will this work? I will get access to the server within a few hours and then try it anyway (we have to configure the LoopBack Checking on the server, right?).

    Please let me know if you need any more details to troubleshoot, because I am fairly new to this I'm not sure what to mention. Thanks!


    Kunal D Mehta - a Windows Server Enthusiast | I'm on facebook.com/serverbaba | RIP Steve Jobs
    • Edited by Server Baba Saturday, November 5, 2011 11:37 AM
    Saturday, November 5, 2011 11:34 AM
  • Can anyone please help me out with this? I really need to get this working as soon as possible. Thank you! :)

    Kunal D Mehta - a Windows Server Enthusiast | I'm on facebook.com/serverbaba | RIP Steve Jobs
    Friday, November 11, 2011 12:45 PM
  • Not sure this post is related to your problem:

    http://www.quantumofgeek.com/2010/02/windows-7-prompting-for-authentication-when-accessing-sharepoint-documents/

    Just suggest for u to try.

     And your dummy user is part of domain or not? if not, you may try update hotfix.

     

    Btw, had you try access using IP?

    Cheers



    • Edited by cchitsiang Friday, November 11, 2011 2:40 PM
    • Marked as answer by Qiao WeiModerator Friday, November 18, 2011 2:11 AM
    • Unmarked as answer by Server Baba Friday, November 18, 2011 10:18 PM
    Friday, November 11, 2011 2:31 PM
  • I apologize for the delay in responding.

    @CChitsiang - I tried the above steps, adding the site to intranet sites, ensuring Automatic logon only in intranet zone and adding the registry key. Unfortunately, the problem still continues to persist.

    And yes, the dummy user and all the computers are a part of the domain. Using the IP address, I was able to log in to the sharepoint site even with the dummy user. Here's the summary of my observsation:

    Account                      URL                                                    Login                 Accessible

    Dummy User ABC        http://sharepoint.mydomain.com         SServer                   Yes

    Dummy User ABC        http://sharepoint/                               SServer                   Yes

    Dummy User ABC        http://IPAddress/                                SServer                   Yes

    Dummy User ABC        http://sharepoint.mydomain.com         Client                       No

    Dummy User ABC        http://sharepoint/                               Client                       No

    Dummy User ABC        http://IPAddress/                                Client                      Yes

    Administrator              http://sharepoint.mydomain.com         Both                        Yes

    Administrator              http://sharepoint/                               Both                       Yes

    Administrator              http://IPAddress/                                Both                       Yes

     

    Here, the Administrator referres to the account used to deploy WSS 3.0. Dummy user referres to any user in the domain other than this Administrator. Login represents where was the login attempt made (SServer = on the sharepoint server, client = any other computer in the domain). Accessible column represents if I was able to login to the Sharepoint site, where No denotes that the Windows Security credentials window just does not go away in Internet Explorer.

    Any help would be highly appreciated, thanks!


    Kunal D Mehta - a Windows Server Enthusiast | I'm on facebook.com/serverbaba | RIP Steve Jobs

    • Edited by Server Baba Saturday, November 19, 2011 12:46 AM
    Saturday, November 19, 2011 12:41 AM
  • Hey,

    Have you by any chance configured the Web Application to use Negotiate (Kerberos) auth?

    If you are having difficulties getting SP authentication going, try just setting up a site in IIS with NTLM auth, drop a simple file in it and test authenticating to it. If that fails then you have issues with authentication.

    Hope this helps.


    Independant SharePoint Consultant. Feel free to contact me. Blog: http://www.sharepoint.bg/radi Twitter: @RadiAtanassov
    Saturday, November 19, 2011 6:58 PM
  • This is quite hard to help you troubleshoot like this way.

    1. You may try to add an entry to your hosts file like

    127.0.0.1 sharepoint.mydomain.com (skip this step if you already done)

    2. Turn on Integrated Windows Authentication in IE : refer this

    And do you using any proxy for your network?

     

    Hope you resolve this issue soon!

    Cheers

    Sunday, November 20, 2011 6:03 PM