Second authentication screen - Java authentication popup

Friday, 25 November 2011 15:59

View Comments
Contents
Second authentication screen - Java authentication popup
java_auth
Summary/Sympthoms

When the user tries to open an HTML page containing the applet, there can be the following scenarios:

  1. The applet fails to load. We’re getting a ‘red cross’ screen. All the HTML elements except of the applet are loaded OK. From the IIS log we can see that the loading of the JAR file failed with the error code 401, the user name field in the log for the JAR is empty.
  2. The java asks for the user name and password showing a popup ‘Authentication required’. At this moment we can see the following message in the Java console:

network: Firewall authentication: site=/XX.XX.XX.XX:XX, protocol=http, prompt=, scheme=ntlm

If the user enters the correct credentials, the applet loads OK.

Even if the user checks the ‘Save the password in your password list’ checkbox, Java continues to ask for credentials on every page reload. I

t’s worth to note that the company’s external firewall doesn’t get any requests from the applet.

The problems happen even when the client and the server are located on the same machine, but never happens when we use localhost as the server name in the page URL.
Resolution

During investigations we found out the following workarounds:

  1. Enabling anonymous authentication on the virtual folder always solves the problem, but not always suitable for organization.
  2. Sometimes, changing security zone from ‘Trusted’ to ‘Local intranet’ solves the scenario 2 (‘Authentication required’ popup) problem. It’s worth to note that changing the security zone never helps if the page URL contains dots (for example, uses IP address instead the server name).
  3. Upgrading to IE9 solves the scenario 2 problem partly: Java asks for the credentials only once.

 

After further investigation, we released a workaround hotfix that resolves the problem but leaves the Windows authentication on NovaView application. To request this hotfix, please contact This e-mail address is being protected from spambots. You need JavaScript enabled to view it

Version
  • Not NovaView related, happens in Sun Java 1.6
Next >
 
Free business joomla templates