Enabling Windows Authentication

Article
11/12/2009

When you select the Windows Authentication mode, AuthFilter looks up the access rights for the user in Active Directory. When a user logs in to a site running in this mode, AuthFilter retrieves the user name and password from the Hypertext Transfer Protocol (HTTP) request and stores it in a cache. In Windows Authentication mode, an access control list (ACL) determines access to any resource on the Web site.

Windows Authentication supports a Web farm scenario with a single login, and it supports using proxy accounts.

Ee798874.note(en-US,CS.20).gif Note

The following instructions assume you have set the security mode on your Web server to log on locally. See Setting the Security Mode on the Web Server.

To enable the Windows Authentication mode

Expand Commerce Server Manager, expand Commerce Sites, and then click the site you want to administer.
Expand Applications, right-click the name of the application that you want to work with, and then click Properties.
In the Properties dialog box, on the General tab, in the Authentication filter box, select Windows Authentication, and then click OK.

AuthFilter passes the credentials to Internet Information Services (IIS) 5.0, and IIS validates the user login and password against an Active Directory data store.

Ee798874.note(en-US,CS.20).gif Note

After you change a property value in Commerce Server Manager, you must unload the application from memory on each Web server for the change to take effect. For instructions, see Unloading an Application from Memory.

Enabling Windows Authentication

See Also

Additional resources