Authentication in web applications through the example of Internet Explorer
Posted by Mikhail Yakovlev, Last modified by Mikhail Yakovlev on 07 March 2019 04:29 PM
This article deals with various methods of user authentication in enterprise web resources.
Username and password authentication
You have to enter the credentials of a user that is allowed to access the application. If correct, logon is performed.
Authentication without username and password
Then, still in the Security tab, it is necessary to set security level for the zone: Custom Level... In the security settings window, User Authentication section set Automatic logon with current user name and password:
Authentication by user certificate
For that, the site IIS should have SSL configured. To use authentication with smart card, the following settings should be set in IIS:
If Accept is used, then both authentication by username and password, and by user certificate is possible.
If Require is used, then authentication by user certificate is the only variant possible.
Now it is necessary to set up your browser for authentication by smart card. Add the site to Local Intranet zone, then switch to security settings and select Automatic logon only in Intranet zone.