IIS SSO is prompting for username/password realm challenge

IIS SSO is prompting for username/password realm challenge

As  PassagePoint use NTLM SSO via IIS

one issue that could be problematic is with DNS if a browser determines it is outside of the "intranet" realm

If the DNS record has a different suffix and is not considered to be part of "Intranet" but instead is "Internet" then the automatic NTLM logon does not take place.

Ask the domain administrator to add the new DNS (local.mycompany.io) to the group policy list of "Intranet" domains. Once group policy is  refreshed, IE, Edge and Chrome will then all allowed automatic NTLM logon without prompting for a username and password

see some how to here:

    • Related Articles

    • IIS/passagepoint SSO integration Troubleshooting steps

      PassagePoint uses IIS windows authentication via NTLM for SSO into PassagePoint 1) Receiving 404, page not found or page not loading at all a) Disable URL rewrite double click on URL rewrite click on the rule, then hit Disable rule b) Test IIS by ...
    • SSO Client authentication with Groups

      See KB article on how to configure Single Sign On (SSO) with PassagePoint Client AD Authentication https://support.stopware.com/portal/en/kb/articles/pasagepoint-client-ad-authentication To configure Single Sign On (SSO) with Groups PassagePoint must ...
    • SSO setup with IIS

      Prerequisites 1) This document assumes you've laready setup passagepoint with IIS. if not, pls review here and set up IIS with passagepoint first: https://support.stopware.com/portal/en/kb/articles/iis-setup-with-passagepoint 2) LDAP directory Link ...
    • How to connect to Microsoft SQL database and encyrpt user password

      Note: For windows authentication see KB article https://support.stopware.com/portal/en/kb/articles/sqlcontext-for-windows-authentication For SQL Authentication see instructions below. If TLS is required, see attachements. 1) Create a clean database ...
    • Single Sign On (SSO) with PassagePoint Client AD Authentication

      PassagePoint's client authentication can work with AD via the LDAP protocol to provide a seamless Single Sign on (SSO) into passagepoint. This requires the windows user on the passagepoint client to be logged in as a domain user that has rights to ...