I can't get the magic combination of enabling NTLM authentication and still have RDS work. If I left only anonymous authentication, RDS works fine - as soon as I plug it into the site, RDS will fail (which is to be expected). Here is what I did:
- These are Windows XP SP2 and ColdFusion 8, Eclipse + Adobe plugins.
- In IIS Manager, right-click on the default website and select "Properties"
- Directory Security tab, click the Edit button for anonymous access and authentication.
- authentication methods pop-up, uncheck anonymous access and check the built-in Windows authentication (all other checks are also empty).
- Click OK, OK, and redefine the settings for all of the child sites so that the entire site is "protected" using NTLM authentication.
- Return to IIS Manager, right-click the CFIDE virtual directory, select Properties
- Directory Security tab, change authentication methods. Clear the Integrated Windows authentication check box and verify anonymous access. Click OK, OK and check:
C: \> wget -S -O - http: // localhost / CFIDE / administrator /
--2009-01-21 10: 11: 59-- http: // localhost / CFIDE / administrator /
Resolving localhost ... 127.0.0.1
Connecting to localhost | 127.0.0.1 |: 80 ... connected.
HTTP request sent, awaiting response ...
HTTP / 1.1 200 OK
Server: Microsoft-IIS / 5.1
Date: Wed, 21 Jan 2009 17:12:00 GMT
X-Powered-By: ASP.NET
Set-Cookie: CFID = 712; expires = Fri, 14-Jan-2039 17:12:00 GMT; path = /
Set-Cookie: CFTOKEN = 17139032; expires = Fri, 14-Jan-2039 17:12:00 GMT; path = /
Set-Cookie: CFAUTHORIZATION_cfadmin =; expires = Mon, 21-Jan-2008 17:12:00 GMT; path = /
Cache-control: no-cache
Content-Type: text / html; charset = utf-8
Length: unspecified [text / html]
Saving to: `STDOUT '
... html output follows ...
And it’s so good that the CFIDE directory and at least one child directory work without NTLM authentication. So I run Eclipse and try to establish an RDS connection. Unfortunately, I just received an Access Denied message. Looking a little further, it seems like Eclipse is trying to contact /CFIDE/main/ide.cfm - fairly fairly, pull out the correct wget again to see what IIS does:
C: \> wget -S -O - http: //localhost/CFIDE/main/ide.cfm
--2009-01-21 10:16:56-- http://localhost/CFIDE/main/ide.cfm
Resolving localhost... 127.0.0.1
Connecting to localhost|127.0.0.1|:80... connected.
HTTP request sent, awaiting response...
HTTP/1.1 401 Access Denied
Server: Microsoft-IIS/5.1
Date: Wed, 21 Jan 2009 17:16:56 GMT
WWW-Authenticate: Negotiate
WWW-Authenticate: NTLM
Content-Length: 4431
Content-Type: text/html
Authorization failed.
, , , ide.cfm . IIS .cfm JRun, JRun ide.cfm RDS. IIS , ide.cfm , , , .
, , - , NTLM, -, , .
, !!!