Hi,I can access the CLM web site no problem when login locally on the server with an admin account. But I cannot access the same web site from another computer: either with the same admin account or any other user.- I have verified the NTFS security right on the WEB folder- I have verified that clmpool is trusted for delegation- I have verified by there is a SPN for clmpoolBut still having the same issue. Any user get prompt to authenticate.Thanks for any helpRegardsJP

JP,The first thingsI would check onthe remote computer are: the CLM website (and any aliases)has been defined in the Trusted Sites (IE / Tools / Internet Options / Security / Trusted Sites / Sites) the Trusted Sites' "Initialize and script ActiveX controls not marked as safe for scripting" settingis set to Enable (IE / Tools / Internet Options / Security / Trusted Sites/ Custom level ...) the "User Authentication - Logon" settingis set to Automatically logon with current user name and password (IE / Tools / Internet Options / Security / Trusted Sites/ Custom level ...) Give those settings a try and see if that helps you out.Cheers,MarcMarc Mac Donell, Senior Consultant (Identity Assurance), Avaleris Inc.

thanks for your reply.No luck.I had already tried using the Trusted Sites. My CLM sites was already in Local Intranet...Still getting Prompted to authenticate.Try to put te CLM IIS site in anonymous mode:- I can now see the CLM screen, but has soon has I click on Eenter : I get this error: 401 Unauthorized: Access is denied due to invalid credentials.Thank for any helpRegardsJean-Philippe

Hmmm... What you see in Anonymous mode is to be expected, since you don't have the proper credentials trying to access the site.I would remove any references for the CLM sites from the Local Intranet setttings and make sure they are in the Trusted Sites.On the CLM server, in the Clm virtual directory "Directory Security", make sure Integrated Windowsauthentication is the ony option selected for theAuthentication Methods.Have you verified that the SPN for the clm-webpool makes back to a proper alias?MarcMarc Mac Donell, Senior Consultant (Identity Assurance), Avaleris Inc.

I made sure that:- CLM is in the trusted zone- Only integrated is selected- triple check my SPN ... it is there. HTTP\clmwebpoolyou mentionned Directory security: We are using IIS 7 on a windows 2008 x64. Directory securit does ot exist anymore....it is called Authentification.Still getting prompted.Thanks again for any helpRegardsJean-Philippe

weirdI had to uncheck "EnableWwindows Integrated Authentification" in IE 7.0 Tools/ InternetOption/AdvancedJP