Solved

How to setup mixed authentication without a login page for Windows authentication

Hello,

I'm trying to setup a mixed authentication scenario where Windows (internal) users are logged in automatically, without a login page. Non-internal users should be presented the usual login page and thereby using Bizagi authentication.

I followed all the procedures in the help guides, but to no avail. If I enable anonymous authentication in IIS, the workportal will always show me the login page. If you than enter the Windows username and password with the correct Windows domain the authentication is done nicely. But of course I want to skip the latter....

Please help me how I can setup this scenario.

Using Bizagi Studio 10.7.0.2082 with IIS on Windows 2012 R2, .Net project and SQL Server 2014 Express as database server.

Regards,

Nash Hoogwater

Comments (3)

photo
1

Dear Nash,

Regarding your question, it is not possible because IIS does not allow to have it. Bizagi cannot foretell the moment when it is windows authentication or Bizagi authentication.

The workaround will be to have two sites: one with enabled anonymous authentication and one with disabled anonymous authentication

Regards

photo
1

Hi Juan,

Yes, I was on this road also. Again to no avail. I keep getting the login page with the Mixed option. I setup a new application and application pool in IIS. The new application is pointing to the same path as the deployed Bizagi site. Authentication is setup as you described. If you change the project to Windows authentication the situation is a bit better. If you login with a Windows account the login page is skipped and if you try the other site (with anonymous enabled) you get the login page. Very good, but....Bizagi authentication itself is not working (user/password entering gives a verification error).

I hope you have a solution for this problem.

Regards,

Nash

photo
1

Dear Nash,

We escalated your question to both support and product teams, but unfortunately the issue cannot be solved because IIS does not allow mixed authentication (Windows Authentication and Bizagi Authentication).

This applies to all sites, and does not depend on the IIS, as the information is saved on the Bizagi Database. At this time, Bizagi cannot predict Windows or Bizagi authentication.

Regards

photo