Reputation: 185
What can cause incorrect user names when using IIS & Windows Authentication?
I'm currently experiencing an issue with some users of an ASP.NET 4.8 Web API application hosted on Windows Server 2012 and IIS. The following properties are not returning that user's correct user name, and instead returning the name of a service account used for this server:
HttpContext.Current.User.Identity.NameHttpContext.Current.Request.LogonUserIdentity.Name
I have no idea how to begin troubleshooting this - myself and most other users do not experience this issue, but for a handful of users the above does not return the correct username, returning the username of a service account used to remotely connect to the server in question. Forcing a login via a browser private window does rectify the issue, and the application correctly returns the expected username for each of the above properties.
What could be a cause for Windows Authentication not returning the correct user name and what is the best way to troubleshoot an issue like this?
edit: I was able to resolve the issue, see my answer below
Upvotes: 0
Views: 2547
Answers (2)
Reputation: 185
After some additional research and troubleshooting, I determined that the users experiencing the issue described above had the service account in question stored in the Windows Credential Manager:
Removing the service account in question allowed them to be authenticated with the Intranet site with their normal Windows domain\username. As @pcalkins suggested, at some point the affected users had used these credentials on their machine, and Chrome, Edge, IE were using that saved credential when authenticating with the Intranet site.
Upvotes: 4
Reputation: 5205
Please check the following steps:
Make sure that windows authentication is enable and Anonymous Authentication is disable for the website.
Enable integrated security in Interner Explorer (Options/Advanced and checkin the "Enable Integrated Windows Authentication" option).
Add your website to Local Intranet zone and select at least "Automatic logon only in Intranet Zone" option under Options/Security Settings/Local intranet/Custom level).
Aake sure the user and application server are in the same domain.
Upvotes: 1
Related Questions
- Wrong authentication after changing user's logon name
- ASP.NET Windows Authentication returns wrong user to the application
- Most Strange IIS Windows Authentication behavior
- Windows authentication: User name not displayed on the Web page
- .NET returning incorrect username
- User.Identity.Name sometimes blank with Windows authentication
- A Weird One involving IIS and Windows Authentication with ASP.Net
- ASP.NET Authentication Issues on IIS7 - User.Identity.Name is empty for Windows authentication
- Why is Windows authentication using wrong username?
- User.Identity.Name is not returning the correct credentials when using Windows Authentication in ASP.NET MVC