** be forewarned this is a ramble and I may or may not come back and fix this…..
I have two domain controllers that are Windows Server 2008, A WSS Farm. One web front end (application server, search, Sites) and a SQL server. I have been convinced for months that I had Kerberos setup correctly in my environment. And I couldn’t find any errors anywhere, and fiddler http://www.fiddler2.com/fiddler2/ showed that I was getting Kerberos tickets. However every time I opened an office 2007 document I would get another password challenge. I have spent days working on this issue. Thinking that my AD was broke so, plenty of trial and error attempts, then thinking it was an SPN issue, so again a billion more attempts there, Then I thought oh it’s the Web front, a billion and one attempts there.
Finally I was requested to do some desktop support, this user has XP. (some background) Since I had broke and re-broke our group policies, mainly to use a blank one to see if that was the trick. This cause out trusted sites to get messed up.) I thought well let me see if this is an Vista issue. And sure enough it work correctly in XP. So I started to do some research and finally came across this link. http://support.microsoft.com/?id=943280 not sure if this is just a hack to the system or not, but it works. Throw me a line if you need help with it. Thanks
Search phrases:
I broke my keyboard trying to figure this out.
Double authentication prompt office
Double authentication prompt office 2007 vista
Kerberos enabled but office prompts for password
Kerberos enabled office double prompts
Double authentication prompt office wss
Double authentication prompt office 2007 vista wss
Kerberos enabled but office prompts for password wss
Kerberos enabled office double prompts wss
Double authentication prompt office moss
Double authentication prompt office 2007 vista moss
Kerberos enabled but office prompts for password moss
Kerberos enabled office double prompts moss
Hi,
We’re experiencing the same issue. The Microsoft fix you mentioned is nice, but only applies to Vista pre-SP1. We have SP2 installed and it still won’t work (the fix is included in SP1…)
Strangely, the issue only pops up when opening doc, xls, ppt,… but not when opening docx, xlsx, pptx,…
This led me to believe, it’s something about the way these document types are opened. F.i., xls is opened directly in the browser window, xlsx isn’t. Unfortunately, i’m unable to find a way to disable the “open directly in browser” feature in vista. Hacking the “classes”-part in the registry didn’t do the trick either.
There is the possibility of using the “fake-proxy” hack, but then, other webbased apps refuse to work…
Any thoughts or pointers from your side? Your input would be highly appreciated.
Regards from Switzerland,
Christian
Did you actually try the below method yet? If not I would try this first. I have seen this work with windows 7 as well, it’s not only a problem with vista sp1….
HKEY_LOCAL_MACHINESYSTEMCurrentControlSetServicesWebClientParameters
On the Edit menu, point to New, and then click Multi-String Value.
Type AuthForwardServerList, and then press ENTER.
On the Edit menu, click Modify.
In the Value date box, type the URL of the server that hosts the Web share, and then click OK.
Also you can editing how the application open in IE (p.s. this can be deployed via group policy so you won’t have to go to each computer.)
Start Windows Explorer (Start, Run, Explorer).
From the Tools menu, select Folder Options.
Select the File Types tab.
Select the file type that you don’t want to open in IE and click Advanced.
Clear the “Browse in same window” check box and click OK.
Close the Folder Options dialog box.
That file type will now open within the application instead of IE.
Yes, i already added the key(s) in the registry, restarted the OS. i’m afraid it didn’t do the trick.
We use Vista Enterprise and Win7 Enterprise. File extensions are not managed through folder options any more (as of vista) but through control panel / default programs. unfortunately there are no options to say wheater the file should be opened in the browser or not. i found several other poor souls in various forums, looking for some way to change this. finaly i found a set of reg settings that should change this behaviour. but this didn’t work either.
thanks for your feedback, but i’m still at a loss…
Once changing the registry, are the .doc files opening in application or browser?
doc’s in particular never opened directly in the browser, at leasy there are no obvious signs of them opening in the browser (signs i am able to see).
to try the reg settings, i changed them for xls. xls clearly opened in a browser window. unfortunately it still kept opening in a browser window after rebooting with the changed reg settings
You may try using one of the tools on this page, to see if you can get it to open in application instead of browser… Also have you confirmed that Kerberos is actually working. Tools like fiddler could tell you if your even starting with a Kerberos ticket.
Also what version of office and IE are you using? Thanks
http://www.mydigitallife.info/2008/06/20/windows-vista-file-associations-advanced-editing-management-tools/