Microsoft KB Archive/279186

= Internet Explorer Drops Site Server Cookie for Intranet Site IP Address =

Article ID: 279186

Article Last Modified on 10/6/2005

-

APPLIES TO


 * Microsoft Internet Explorer 5.5
 * Microsoft Site Server 3.0 Standard Edition

-



This article was previously published under Q279186



SYMPTOMS
When you use Internet Explorer version 5.0 and later to browse an Intranet Site Server site that is configured with HTML Forms authentication, and you use the IP address:port to access the site, the browser seems to drop the Site Server cookie and you are unable to authenticate to the site. In addition, you may receive following error message in the client browser when you use the GetInfo method of the ActiveX User Object (AUO) interface IADs:

Membership.UserObjects error '80020009' The user could not be identified so the Active User Object (AUO) could not be initialized. Enable authentication for this page. /_include/process_a_logon.asp, line 132



CAUSE
WinInet contains new code for Internet Explorer versions 5.0 and later. This enhancement checks to determine if an IP address is utilized. If the IP address is used for the domain name and it matches the host IP address, the cookie is dropped and authentication fails.

NOTE: Internet Explorer versions 5.00.2314.1003co and earlier do not exhibit the symptoms that are described in this article, and the site can be accessed because the cookie is not dropped.



WORKAROUND
To work around this problem, use Servername:port or the IP address with no port specified instead of IP address:port for the Intranet site.



RESOLUTION
A supported fix is now available from Microsoft, but it is only intended to correct the problem that is described in this article. Apply it only to computers that are experiencing this specific problem. This fix may receive additional testing. Therefore, if you are not severely affected by this problem, Microsoft recommends that you wait for the next Site Server service pack that contains this hotfix.

To resolve this problem immediately, contact Microsoft Product Support Services to obtain the fix. For a complete list of Microsoft Product Support Services phone numbers and information about support costs, visit the following Microsoft Web site:

http://support.microsoft.com/default.aspx?scid=fh;EN-US;CNTACTMS

NOTE: In special cases, charges that are ordinarily incurred for support calls may be canceled if a Microsoft Support Professional determines that a specific update will resolve your problem. The typical support costs will apply to additional support questions and issues that do not qualify for the specific update in question.

The English version of this fix should have the following file attributes or later:   Date         Time   Version     Size    File name Dec-08-2000 12:21  7.0.1315.0  15,472  Mss_log.dll Dec-08-2000 12:20  7.0.1315.0  67,216  Authfltr.dll



STATUS
Microsoft has confirmed that this is a problem in Site Server 3.0.



MORE INFORMATION
For additional information about how to install Windows 2000 and Windows 2000 hotfixes at the same time, click the article number below to view the article in the Microsoft Knowledge Base:

249149 Installing Microsoft Windows 2000 and Windows 2000 Hotfixes

Keywords: kbbug kbfix kbqfe kbhotfixserver KB279186

-

[mailto:TECHNET@MICROSOFT.COM Send feedback to Microsoft]

© Microsoft Corporation. All rights reserved.