Security Explorer is installed on a web front-end server and when attempting to connect to a site that is served from the same web front-end server the user credentials are not accepted.
Within Security Explorer if you expand a site or farm in the tasks pane a prompt appears for credentials. When credentials are supplied the prompt returns immediately suggesting that the credentials were ignored or rejected. If the username and password is supplied again the prompt will return again giving the impression that the credentials have been rejected again.
When consulting the IIS or Security Event Logs a "401.1 Unauthorized" error is recorded each time the credentials are supplied.
This issue occurs when the web site you are trying to connect to uses integrated authentication and has a name that is mapped to the local loopback address. This error will only be received if you browse to the web site directly from the hosting server. If accessed from a client machine the web site will work as expected.
There are two methods to resolve this issue. Method 1 is more secure and is recommended for a production environment. Method 2 can be used in a development or testing environment as it is considered less secure.
Method 1: Specify host names (Preferred method if NTLM authentication is desired)
HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\Lsa\MSV1_0
Method 1: Disable the loopback check (less secure, less recommended method)
HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\Lsa
© ALL RIGHTS RESERVED. Feedback Terms of Use Privacy Cookie Preference Center