Closed widsuoids closed 9 months ago
https://support.esri.com/en-us/knowledge-base/problem-a-prompt-to-sign-in-using-an-iwa-portal-occurs-000012666 https://community.esri.com/t5/arcgis-enterprise-portal-questions/iwa-login-for-portal-prompting-for-credentials/td-p/660923 Configure Windows browsers for SSO: https://help.okta.com/en-us/content/topics/directory/ad-iwa-configure-browsers-windows.htm
Community Note
Module Version
4.1.0
Affected Resource(s)
Settings used: ADServiceUser - (Optional) An Active Directory Service account used for updating portal's identity store to use Active Directory users with portal-tier authentication. To enable Integrated Windows Authentication (web-tier authentication), please refer to Configure ArcGIS Web Adaptor to use IWA. UserName - ADServiceUser Username in the format of Domain\username PasswordFilePath - (Optional) Path to an encrypted file that contains the Local or ADServiceUser account password.
https://github.com/Esri/arcgis-powershell-dsc/wiki/v4.1.0-Variables-reference-page-for-JSON-configuration-files
Expected Behavior
IWA works as expected.
Actual Behavior
When enabling IWA using a AD Service User, everything works as expected, until you disable anonymous authentication in IIS as described in the documentatin. When only the Integrated Windows authentication is enabled for one/both Server and Portal, the Browser still prompts for Username and password, even though the user is already logged in and the window vanishes, regardless of what/if anything is typed in. The Windows login prompt shows up randomly in unregular time intervals, but especially often when accessing admin settings page in Portal. Enterprise Version is 11.1 wit latest patches.
Important Factoids
I am not sure if this is an issue on the DSC config, post dsc config or ArcGIS/IIS side
References