Microsoft Knowledge Base Email Alertz
All KB/RSS Links  |  Hot Kb!  |  New Kb!  |  Scott Cate  |  FAQ / KB  |  Web Hosting  |  Unsubscribe  

(321728) - You cannot use Kerberos to authenticate with a proxy server (for example, Internet Security and Acceleration Server 2000) in Internet Explorer.

Search KbAlertz

Advanced Search

Receive Microsoft Knowledge Base articles by E-Mail?

Every night we scan the Microsoft Knowledge Base. If technologies you're interested in are updated, we'll send you an e-mail. You only get one e-mail a day, and only when new articles are added.
Click here to create a
FREE account
Already have an account?
[Click here to Login]











Microsoft Knowledge Base Article

This article contents is Microsoft Copyrighted material.
©2005-©2007 Microsoft Corporation. All rights reserved. Terms of Use | Trademarks

Internet Explorer does not support Kerberos authentication with proxy servers

Article ID: 321728 - View products that this article applies to.
This article was previously published under Q321728

SYMPTOMS

You cannot use Kerberos to authenticate with a proxy server (for example, Internet Security and Acceleration Server 2000) in Internet Explorer.
Back to the top | Give Feedback

CAUSE

This behavior occurs because Internet Explorer does not support Kerberos authentication with a proxy, and does not respond to a negotiate challenge from a proxy server.
Back to the top | Give Feedback

STATUS

This limitation was removed in Windows Internet Explorer 7.
Back to the top | Give Feedback

MORE INFORMATION

If Integrated Windows Authentication is turned on in Internet Explorer for Windows 2000 and Windows XP, you can complete Kerberos authentication with Web servers either directly or through a proxy server. However, Internet Explorer cannot use Kerberos to authenticate with the proxy server itself.

NOTE: If Integrated Windows Authentication is turned on, Internet Explorer for Windows 2000 and Windows XP responds to a negotiate challenge and supports Kerberos authentication with Web servers. However, Internet Explorer for Windows 98, Windows 98 Second Edition, Windows Millennium Edition (Me), and Windows NT 4.0 cannot be configured to respond to a negotiate challenge. These versions of Internet Explorer default to NTLM (or Windows NT Challenge/Response) authentication even if the Enable Integrated Windows Authentication (requires restart) check box is selected because this feature is not available on these operating systems.

For additional information about how to turn on Integrated Windows Authentication in Internet Explorer 6.0, click the article number below to view the article in the Microsoft Knowledge Base:
299838
(http://kbalertz.com/Feedback.aspx?kbNumber=299838/EN-US/ )
Unable to Negotiate Kerberos Authentication After Upgrading to Internet Explorer 6
Back to the top | Give Feedback

Properties

Article ID: 321728 - Last Review: February 8, 2007 - Revision: 3.7
APPLIES TO
  • Microsoft Internet Security and Acceleration Server 2000 Standard Edition
  • Microsoft Internet Explorer 5.5 Service Pack 1
  • Microsoft Internet Explorer 5.5 Service Pack 2
  • Microsoft Internet Explorer 5.01
  • Microsoft Internet Explorer 5.01
  • Microsoft Internet Explorer 6.0, when used with:
    • Microsoft Windows XP Home Edition
    • Microsoft Windows XP Professional
    • Microsoft Windows XP Media Center Edition
    • Microsoft Windows XP Tablet PC Edition
    • Microsoft Windows 2000 Advanced Server
    • Microsoft Windows 2000 Datacenter Server
    • Microsoft Windows 2000 Professional Edition
    • Microsoft Windows 2000 Server
Keywords: 
kbbug kbenv kberrmsg kbpending KB321728
Back to the top | Give Feedback
        

Community Feedback System

Very often, it takes hours to solve a problem. Very often, you've looked high and low, and have tried a lot of solutions. When you finally found it, chances are, it was because someone else helped you. Here's your chance to give back. Use our community feedback tool to let others know what worked for you and what didn't.

Please also understand that the community feedback system is not warranted to be correct, it's simply a system that we've built to let people try and help each other. If something in a feedback response doesn't make sense to you, or you're not comfortable making changes that the feedback talks about (like registry edits), please consult a professional.

Thank you for using kbAlertz.com Feedback System.

-- Scott Cate

Copyright © 2002-2007 KBALERTZ.COM.  All Rights Reserved. Terms / PrivacyDiscount ASP.NET Hosting