I'm used to * nix servers, and if we want to get a fully protected sign on the screen, we (as far as I know) should use SSL via HTTPS. Our supervisor at work uses Windows Servers to serve web pages. On one of these pages, they authenticate network credentials. This page uses HTTP, and what Basic Auth (popup dialog) seems to be for SQL Server Report Manager.
They say that Basic is disabled in IIS.
In my limited experience with IIS in college, I (I think I) recall that subdomains can override general settings. They believe that this is using integrated Windows authentication.
So...
Is there a way to distinguish between Basic Auth and Integrated Windows Auth when viewing a web page invitation and ...
Is it possible to encrypt the connection between the computer and the server during authentication so that the transmitted text is encrypted (without JS solution)?
source
share