Author:
Email:
Subject:
Category:Web Booster
Message:

I have an issue with an existing Puakma ESSO which has been running in production for perhaps a year now.

It is configured to do SSO for IE-users accessing Lotus Domino. Authentication is NTLM.

It works just fine for Windows XP users. I am unsure about their IE version, probably IE 7.

They are testing Windows 7 with Internet Explorer 8. And with that combination SSO does not complete.

When the browser tries to accesses the url that should get them to the Domino content, they end up with a blank page.

I have had a look at the HTTP headers, and I can see that the browser does not succesfully authenticate with Puakma ESSO.

The last HTTP header I see between the browser and Puakma ESSO is when ESSO tells the browser:

WWW-Authenticate: NTLM TlRMTVNTUAACAAAAAAAAAAAAAAABAgAATlRMTVNTUAA=

So that is the second reply from Puakma.

What should come next is that the browser does a new GET including something like this:

Authorization: NTLM LOOONG sting

followed by the Puakma ESSO replying with a 

Set-Cookie: LtpaToken=

But for some reason the browser does not send that GET.

 

I have had the browser configured to have the site in qestion in both the Trusted and Intranet zones with no effect.

 

I hope you can help.

 

 



Threads:
Puakma ESSO NTLM authentication with IE8 on Windows 7   Jens Bruntt 24.Mar.10
    RE: Puakma ESSO NTLM authentication with IE8 on Windows 7   Brendon Upson 25.Mar.10
        No luck with IE8 on Windows 7   Jens Bruntt 20.May.10
            RE: No luck with IE8 on Windows 7   Anonymous 20.Jan.11
                RE: No luck with IE8 on Windows 7   Brendon Upson 21.Jan.11