I've set up my on-site users to use the Windows Authentication.

For the users of the Windows-based OnTime 2007 client, this works well.  They are extremely happy that they aren't prompted for a username and password every time they log in, as long as they're logged into the domain with the expected login credentials.

However, this is not the case for the users who prefer to use the Web-based client; It still prompts them for their domain\login and password (not the OnTime username/password prompt, but the Windows one).  If a user is already logged into the domain with that username and password, why does it still prompt them for that info?  Shouldn't it only prompt if they are not logged on to the domain with the expected login credentials?

I've configured all users to use Windows Authentication, and AFAIK our Admin has followed all online instructions for setting up the server-side this way (i.e. in IIS Manager he's cleared the "Anonymous Access" checkbox, and he's selected the "Integrated Windows authentication" checkbox, and has cleared all other checkboxes below).  Is there an additional setting somewhere that our Admin guy should be aware of? 

By following the steps that you have specified, it seems to be working just fine on my end. I am not getting the login prompt to authenticate to our local domain. Can you please send us a screenshot of the users authentication settings within OnTime as well as a quick screenshot of the OnTime 2007 web virtual directory > Directory Security > Authentication and access window?

Thank you,

Dragan:

By following the steps that you have specified, it seems to be working just fine on my end. I am not getting the login prompt to authenticate to our local domain. Can you please send us a screenshot of the users authentication settings within OnTime as well as a quick screenshot of the OnTime 2007 web virtual directory > Directory Security > Authentication and access window?

Thank you,

Okay, here is a screenshot of the Authentication and access window...

... and here is the user authentication setup screen from OnTime 2007 Windows...

...and finally, here's the Windows password prompt.

Any ideas?

Looking at the last screenshot that you have sent us, it seems that the login prompt is asking you to authenticate to an alternative domain realm called; xxxxxxxxx.xxxxx.xx. If this is the case, all you have to do is add the user’s domain login information for this domain to the authentication tab in OnTime. The OnTime client will allow you to add multiple domain instances to the authentication tab for a particular user that is located on an alternative domain.

Example: Domain1\UserName;Domain2\UserName

Thank you,

The issue is more-or-less solved; apparently, using the fully qualified domain name causes Windows to prompt for the authentication login info.  If I use the short form of the address instead, it assumes I'm already logged into the domain and doesn't prompt me.

Unfortunately this is only the case for Internet Explorer; If I use Firefox, it will still display the login prompt.  Are you able to log into it in Firefox without getting the login prompt?

We haven’t been able to get the Firefox browsers to work with window integrated authentication either. It seems that Firefox doesn’t know how to handle this authentication method for some reason even though the browser is set to be the default.

Thank you,

Yeah, I guess that would require Firefox to have proprietary Microsoft knowledge. 

However, I believe that there is a hack for it.  Apparently somebody figured out how to get the Firefox browsers to work seemlessly with Windows authentication.