Windows Authentication login box doesn't go away after authentication
I have developed an Intranet application that uses Windows Authentication. It works correctly in IE, Edge and Chrome. It does the windows authentication properly in Firefox. The only problem is that the login box is displayed, the application loads properly in the background and if you hit Cancel from the login box it goes away until you restart Firefox and there it is again! I have tried all the answers about adding my sites to the trusted uris in the about:config app. To make things even more weird, on my development machine, the login box does not show up, which is the desired behavior. As far as I know, I have duplicated all the appropriate settings to a client machine, but the login box still appears. What am I missing?
Soluzione scelta
DragonDeveloper said
After reviewing the Network Monitor tab, our Corporate Logo is returning a 401 status and does not appear on the web page on my users machines. However, it does not return a 401 from my development machine and it servers up the image correctly. I am calling this web page from the same IIS server in both cases. How do I resolve the 401 error on my client's machines?
Is the Logo on the same host as the app pages, or on a different host that is also listed in the preference we were discussing earlier?
Leggere questa risposta nel contesto 👍 0Tutte le risposte (18)
What version of FF are you running?
I am running Firefox 66.0.5 (64-bit)
Are you using simplified login to access the intranet? And is it enabled?
Not sure what you mean by simplified login but I am using Windows Authentication. It is enabled on my IIS Server. Are there settings in Firefox, I should set?
The Authentication works, its just that the credentials login box still appears. I can hit Cancel and it goes away but I would like the box not to appear at all, as the user has been authenticated.
Have you taken a look at this article?
https://support.mozilla.org/en-US/kb/fix-login-issues-on-websites-require-passwords
I tried the suggestions in the article you sent but to no avail.
As I mentioned before, there is no problem with the authentication, the login box just doesn't go away.
I forgot to mention previously, that this is an intranet application, not an internet application.
Hi Jeremy,
Is there anything else I can do to prevent the dialog box from appearing? I have tried everything you have suggested but the box still appears.
Did you compare the Network Settings in "Options/Preferences -> General" ?
You can also look at "network.au" prefs on the about:config page.
You can open the about:config page via the location/address bar. You can accept the warning and click "I accept the risk!" to continue.
I just checked out the network.au settings and they are correct. As this is working correctly on my personal machine, is there a way I can view just the modified setting from the about:config? There must be some combination that I have set that is making it work the correct way, but when I deploy the application, it is still asking for the login credentials?
I'm late to this thread, but Firefox needs you to list trusted hosts for automatic authentication. See:
(1) In a new tab, type or paste about:config in the address bar and press Enter/Return. Click the button promising to be careful or accepting the risk.
(2) In the search box above the list, type or paste trusted-uris and pause while the list is filtered
(3) The network.automatic-ntlm-auth.trusted-uris preference is for NTLM authentication.
The preference takes only the host name, no protocol, and you separate the host names using commas and no spaces. For example:
intranet,accounting,cal-mkt,itstuff
(4) The network.negotiate-auth.trusted-uris preference is for whatever the next generation of Windows authentication is called.
Hi,
I have already entered my host name in the network.negotiate-auth.trusted-uris preference. It still shows the dialog box. I'm going to recap what is going on and what I have done.
I am trying to deploy my intranet application on FireFox. It uses Windows Integrated Authentication. If the user is an authenticated user, then no credentials dialog box should appear. This behavior currently works in the Edge, Internet Explorer, Safari and Chrome browsers. However, in Firefox , my application is authenticated because it is displayed on the screen, but so does the dialog box that asks for the username and password. I know the application is authenticated because if you hit cancel from the dialog box the application still runs correctly. All I need is to find out which setting will prevent the dialog box from appearing, if the user is authenticated. By the way. on my development machine, Firefox shows the expected behavior, no dialog box.
I have tried all the settings for network.au and the other suggestions in this thread, to no avail.
So at this point, my application runs perfectly in all browsers including FireFox on my development machine. It runs perfectly in all browsers except FireFox on my users machines. A vast majority of my users prefer FireFox and I need to get this issue resolved.
Thanks!
If you open the Network Monitor in the tab before loading your intranet app and look at the requests, can you see a 401 related to a different Windows-auth host that could explain the unexpected dialog?
To open the Network Monitor in the lower part of the tab, you can use either:
- "3-bar" menu button > Web Developer > Network
- (menu bar) Tools > Web Developer > Network
- (Windows) Ctrl+Shift+e
When you load the next page, Firefox should start listing all the files it is requesting, along with information about whether the request was successful.
More info: https://developer.mozilla.org/docs/Tools/Network_Monitor
Did you check: signon.autologin.proxy ?
Hello DRagonDeveloper,
My apologies for butting in - this may have nothing to do with your problem, but your system details show that you (still) have this extension installed :
"hotfix-update-xpi-intermediate 1.0.6 (hotfix-update-xpi-intermediate@mozilla.com) "
As you no longer need it : would you please remove it ?
Again : this will probably have nothing to do with it, but one never knows - strange things do happen .....
Maybe you could also disable (for now) "LastPass: Free Password Manager", just to see if that will make a difference - probably won't, but (again) : one never knows .....
Hi,
I think we are finally getting somewhere! After reviewing the Network Monitor tab, our Corporate Logo is returning a 401 status and does not appear on the web page on my users machines. However, it does not return a 401 from my development machine and it servers up the image correctly. I am calling this web page from the same IIS server in both cases. How do I resolve the 401 error on my client's machines?
Hi McCoy,
The LastPass Manager extension was on my development PC and did not affect the issue on my client's pc's. However, thanks for bringing that to my attention, as I don't use LastPass and I have now removed it.
Soluzione scelta
DragonDeveloper said
After reviewing the Network Monitor tab, our Corporate Logo is returning a 401 status and does not appear on the web page on my users machines. However, it does not return a 401 from my development machine and it servers up the image correctly. I am calling this web page from the same IIS server in both cases. How do I resolve the 401 error on my client's machines?
Is the Logo on the same host as the app pages, or on a different host that is also listed in the preference we were discussing earlier?
Hi jscher2000,
The logo was on the same host but I had it pointing to the wrong directory. Once I corrected the path, everything is working fine in FireFox. Interesting why Edge and IE resolved the path correctly????
I want to thank you for setting me on the right path to debug this issue! Using the Network Monitor proved to be the key in pointing me in the right direction. Thanks so much for helping me out!