Notice: This website is an unofficial Microsoft Knowledge Base (hereinafter KB) archive and is intended to provide a reliable access to deleted content from Microsoft KB. All KB articles are owned by Microsoft Corporation. Read full disclaimer for more details.

IISADMPWD Password Change Pages Fail to Change Passwords When Using NTLM Authentication


View products that this article applies to.

This article was previously published under Q273573
We strongly recommend that all users upgrade to Microsoft Internet Information Services (IIS) version 7.0 running on Microsoft Windows Server 2008. IIS 7.0 significantly increases Web infrastructure security. For more information about IIS security-related topics, visit the following Microsoft Web site:
http://www.microsoft.com/technet/security/prodtech/IIS.mspx (http://www.microsoft.com/technet/security/prodtech/IIS.mspx)
For more information about IIS 7.0, visit the following Microsoft Web site:
http://www.iis.net/default.aspx?tabid=1 (http://www.iis.net/default.aspx?tabid=1)
Important This article contains information about modifying the registry. Before you modify the registry, make sure to back it up and make sure that you understand how to restore the registry if a problem occurs. For information about how to back up, restore, and edit the registry, click the following article number to view the article in the Microsoft Knowledge Base:
256986 (http://support.microsoft.com/kb/256986/ ) Description of the Microsoft Windows Registry

↑ Back to the top


Symptoms

User password changes fail are not accepted when using the password change pages provided under the IISADMPWD subweb in the default Web site.

↑ Back to the top


Cause

This problem only occurs if the IISADMPWD subweb is set to use NTLM authentication, and the client is using Internet Explorer 5.0, 5.01, 5.01 SP1 or 5.5.

Internet Explorer 5.0 has a new feature named NTLM pre-authorization, which requires NTLM authentication for all visits after you visit one NTLM authenticated folder.

↑ Back to the top


Resolution

Make the following registry changes on the client workstation that is using Internet Explorer.

Warning If you use Registry Editor incorrectly, you may cause serious problems that may require you to reinstall your operating system. Microsoft cannot guarantee that you can solve problems that result from using Registry Editor incorrectly. Use Registry Editor at your own risk.
  1. Run Registry Editor (Regedit.exe or Regedt32.exe).
  2. Locate the following key in the registry:
    HKEY_CURRENT_USER/Software/Microsoft/Windows/CurrentVersion/Internet Settings/
  3. Add the following registry value:
    Value Name: DisableNTLMPreAuth
    Data Type: REG_DWORD
    Value: 1

↑ Back to the top


More information

For more information, click the following article number to view the article in the Microsoft Knowledge Base:
251404� HTML file does not post data to a non-NTLM-authenticated Web site

↑ Back to the top


Keywords: KB273573, kbprb, kbnofix, kbfaq

↑ Back to the top

Article Info
Article ID : 273573
Revision : 7
Created on : 7/7/2008
Published on : 7/7/2008
Exists online : False
Views : 336