IIS 5 & IIS 6
After moving to IIS 6.0 from IIS 5.0, users unable to save password i...
Last post Aug 15, 2007 04:33 PM by tomkmvp
Aug 03, 2007 12:57 PM|satmando|LINK
On our IIS 5.0 server, a user goes to our page, clicks "logon" then the winlogin box appears (NT logon style), they type thier username and password, and check the "save password" box, and everything works fine.
Later they return to the same page, the password and login comes up (saved of course) so they click OK. Everything is fine!.
I moved the site to our IIS 6.0 server, migrated all the accounts and passwords, but now when they return to the page, the password is not saved anymore. Even after telling the browser/win login box to "save password".
This happens with IE 6.0, and IE 7.0, Firefox, works fine!...
Any ideas? Microsoft support is mixing the issue up and telling me to call my ISP?... I am my own ISP.
Aug 03, 2007 03:23 PM|chrisad|LINK
I hate to be the one to deliver the bad news but this isn't related to the back-end server at all. The IIS version has no impact on that feature and instead it is fully related to the client. This is evident by the fact that you have some clients (IE 7 &
Firefox) that work while others do not. The nice thing about IIS is that if authentication succeeds or fails it will do so all the time across all clients <g>
With that said, I am wondering if you need to clear the client cache\cookies. Last, you might download the
Fiddler Tool and use it to try and ascertain what the actual request is sending. Basically, that save password is nothing more than a form saver and it is stored on disk...If you delete this
"stored" value and re-do it then it should work. Keep in mind that at no time prior to sending the request does the client know what version of the Web server is on the back end telling you that it isn't IIS related :)
Aug 03, 2007 04:02 PM|satmando|LINK
Oh, I agree totally!, However our Web solutions department argue because the old IIS5 site works without issue, it must be an IIS 6.0 issue. I have also been fumbled through Microsoft Support, My test machine is XP Pro on a domain, they send me to the Pro
support, then I tell them it happens on other PC's now all of a sudden they tell me its my ISP? huh??.
Im just trying to figure a way to resolve this issue for the 500 clients that login periodically to the site, Lawyers get excited when they cant save a password.
Aug 03, 2007 05:22 PM|chrisad|LINK
If this is a domain environment you should be able to use Group Policy to nuke the cache for the clients. This is a nasty & sticky situation for certain but the first step is to use one client and clear it and re-test. If this solves the issue then start
looking into how to do the same across your network.
Something like ths might be helpful ...
Aug 07, 2007 08:12 AM|satmando|LINK
I have even called Microsoft support for this, and they have sent me to many different areas of support. Unfortunately none of the users are inside users. This site we have is for Lawyers and Banks to logon and register houses they sell/buy on behalf of
The website works 100%, even the 490 accounts I migrated with password using the IDEAL Administration tool (worth every penny!!). Just the browser not allowing the saved password is the only issue preventing the cutover.
The page isn't using any ASP script or similar type login, we are using the IIS NTLM login method, which is probably why it was a suspected IIS issue.
Aug 15, 2007 11:23 AM|satmando|LINK
I have found I didnt check off Basic Authentication on the IIS 6.0 server, Now users can save thier password in thier browser. We are going to Add SSL to secure this better,
Why would i need to use Basic Authenticaiton for a password to be saved? Design flaw in IE 6.0 / 7.0 ???
Aug 15, 2007 03:49 PM|tomkmvp|LINK
If Windows Integrated authentication is implemented as intended then there is no reason to store passwords as the user's credentials are passed to the web server automagically in the background.
Aug 15, 2007 03:51 PM|satmando|LINK
The problem is, the users are NOT on our network, they are external users logging into the site. I would prefer if our web team would create a portal, to make it easier, but I guess they don't want to move away from their archaic asp scripts//
Aug 15, 2007 04:33 PM|tomkmvp|LINK
the users are NOT on our network, they are external users logging into the site.