How To... Enable Windows Authentication After Vault Server Installation

With the release of ‘TS1110787 – Passing Win Auth Login on Web Client’ users will encounter an issue with enabling their environment properly.  The following steps are required to correctly use Windows authentication.(Performed on Windows 2008, not the R2 version.)

 

Steps to enable Win Auth in Windows 2008 (IIS7)

1. Open Server Manager in Windows 2008, expand Roles, select Add Role Service upon r-clicking on Web Server (IIS).  Then press install after checking Windows Authentication role.
   1.  
      +  
      

 

1. While still in Server Manager, expand Web Server (IIS), click on IIS Manager, and navigate through to MachineName>Sites>Default Web Site>AutodeskDM.  Select Services and Dbl-click on Authentication feature under the IIS section.
   1. NOTE: Services is the only tree node that would need Windows Authentication enabled.  It is not necessary to enable WinAuth on Default Web Site or AutodeskDM directories.
   2. 

 

1. Ensure Windows Authentication is Enabled; right-click and select Enable if otherwise.
   1. 

 

1. Open a CMD prompt and execute the following commands (no quotes); if your website is other than ‘Default Web Site’, make the replacement prior running each command:
   1. “C:\Windows\System32\inetsrv\appcmd.exe set config "Default Web Site/AutodeskDM/Services" -section:system.webServer/security/authentication/windowsAuthentication /+"providers.[value='Negotiate']" /commit:apphost”
   2. “C:\Windows\System32\inetsrv\appcmd.exe set config "Default Web Site/AutodeskDM/Services" -section:system.webServer/security/authentication/windowsAuthentication /+"providers.[value='NTLM']" /commit:apphost”

 

1. In Internet Explorer, set web browser security settings to automatic logon with current user name and password
   1. 

 Windows Server 2003 (IIS6)

1. Right-click on the WinAuth folder under AutodeskDM\Services inside of IIS and select Properties. Choose the Directory Security tab and click Edit under Authentication and Access Control.
2. Ensure that only Integrated Windows Authentication is enabled.
3. Using Notepad, Open file C:\Program Files (x86)\Autodesk\ADMS Professional 2011\Server\Web\Services\WinAuth\web.config **Drop the (x86) if using 32 bit**
4. Change <identity impersonate="true"/> to <identity impersonate="false"/> 
5. Save the file, then Close notepad.
6. Select the Application pool used by the AutodeskDM website, Right-Click and select Properties.
7. Increase the time the worker process will recycle (Suggested value of 17400).
8. Stop IIS . [using command iiisreset /stop]
9. Delete the folder: C:\Windows\Microsoft.NET\Framework\v2.0.50727\Temporary ASP.NET Files\autodeskdm_services
10. Starts IIS. [using command iiisreset /start]