• 三类访问SharePoint时弹认证框的问题


    登录用户是域用户, 客户端机器已经加入了域

    ==============================

    解决方案

    把SharePoint站点放入到正确的IE Security Zone里, 比如local intranet, 或者trusted sites.

    在Security zone里配置为automatic logon with current user name and password, 或者Automatic logon only intranet zone.

    客户端机器没有加入域, 登录用户有合法的用户名和密码

    ==============================

    在这种情况下, 最好的解决办法就是让Windows存储SharePoint服务器名, 用户民, 和密码到一个叫做managed password feature的特性中.

    解决方案

    XP

    1. Click Start, and then click Control Panel.
    2. Open the User Accounts dialog box.
    3. Open the Stored User Names and Passwords dialog box by clicking on the Manage my network passwords button

    Windows 7

    1. Open User Accounts by clicking the Start button , clicking Control Panel, clicking User Accounts and Family Safety (or clicking User Accounts, if you are connected to a network domain), and then clicking User Accounts.

    2. In the left pane, click Manage your credentials.

    3. Click Add a Windows credential.

    4. In the Internet or network address box, type the name of the computer on the network that you want to access. This can be the NetBIOS name (example: server1) or DNS name (example: server1.fabrikam.com).

    5. In the User name and Password boxes, type the user name and password that you use for that computer or website, and then click OK.

    客户端机器是Vista, 使用FQDN访问SharePoint

    ==============================

    在Vista中, 当你使用IE访问一个WebDAV资源的时候, IE使用会Web Client service. 而Web Client service会使用Windows HTTP Services (WinHTTP)来对远程主机执行网络I/O操作. WinHTTP只会在访问local intranet站点是发送用户的credential信息. 然而, WinHTTP并不会通过去检查在IE中的security zone来确定一个站点是否属于某一个zone, 从而确定那个站点是不是需要发送credential过去.

     

    如果没有指定proxy, WinHTTP仅会对local intranet的站点发送credential信息.

     

    如果URL里的服务器名中不包含"点", 就像下面的例子一样, 那么WinHTTP就会认定这个站点是属于Local Intranet的.

    http://sharepoint/davshare

     

    如果URL中带有点, 那么这个服务器就会被WinHTTP认为是属于Internet的. 不管internet站点包含点(www.google.com), FQDN地址也包含点的(mycomputer.Domain.corp.com). 这样一来, 如果你使用服务器的FQDN名字的话, 用户的credential信息就不会被发送了, 除非客户端机器配置了proxy, 并且这个服务器被指定为proxy bypass.


    注意, 一个服务器可以通过两种方式被声明为proxy bypass, 一种是bypass list, 另一种是proxy configuration script.

    In this case, you are prompted to enter your credentials when the Web site asks for credentials. Even in this case, the security zone settings are ignored.

    这样, 你就会被弹框要求输入认证信息了. 而且security zone的配置会被忽略掉.

    解决方案

    安装hotfix: KB943280

    资料来源:

    SharePoint consistently prompting for user credentials

    http://www.paulliebrand.com/2008/04/02/sharepoint-consistently-prompting-for-user-credentials/

    Store passwords, certificates, and other credentials for automatic logon

    http://windows.microsoft.com/en-US/windows7/Store-passwords-certificates-and-other-credentials-for-automatic-logon

    You are prompted to enter your credentials when you access an FQDN site by using a Windows Vista-based client computer that has no proxy configured

    http://support.microsoft.com/kb/943280

  • 相关阅读:
    event与WaitForSingleObject、MsgWaitForMultipleObjects等
    vc不包含MFC就不打印内存泄露?
    使用visual leak detector(vld)查找内存泄露
    C#里面中将字符串转为变量名
    如何编写nopCommerce插件
    object成员,不见了!
    NopCommerce 定制系列(一):增加 Sha256+Base64 加密
    c#中的二维数组与锯齿数组
    待搞清楚
    NopCommerce 2.5的部署
  • 原文地址:https://www.cnblogs.com/awpatp/p/1683877.html
Copyright © 2020-2023  润新知