I have two websites. One is an "intranet," one is a public site that has "admin" areas:
www.example-intranet.com
www.example.com
They are both running on the same IIS 6 box.
www.example-intranet.com is password protected. That is, in IIS I've removed "anonymous access," I've checked "Basic authentication" and I've put in our AD server for the "Default domain." This part works fine.
Now, I want to do the same for www.example.com/admin
. I thought I could follow the same steps (remove "anonymous access," add "basic authentication," and add the "default domain." However, users are being forced to log in twice (once for the intranet site, and then again when they go to www.example.com/admin.
It seems like the two sites are not "sharing" the login. How do I get this to work?
You should try using "integrated windows authentication" instead of "basic authentication". This is by no means a full single sign-on solution, but in this case, being the two sites on the same server, it should work for you.