<iframe src="https://www.googletagmanager.com/ns.html?id=GTM-M74D8PB" height="0" width="0" style="display:none;visibility:hidden">
Loading
Skip to NavigationSkip to Main Content
System Status
Announcements
Announcements
Search
Search
Select Language
Knowledge Base
Knowledge Articles
Support Videos ↗
Documentation
Product Documentation ↗
Developer Documentation ↗
Product Release Notes ↗
Community
Events & Webinars
Okta Ideas ↗
Resources
Product Hub
Customer Success Hub
Product Release Update
Learning
Okta Learning ↗
Get Support
Open a Case
HomeCommunityForum
0D50Z00008G7VKXSA3Okta Classic EngineSingle Sign-OnAnswered2024-04-17T13:45:19.000Z2016-05-04T00:41:34.000Z2019-06-27T08:32:58.000Z

84rgv (84rgv) asked a question.

Edited by varun.kavoori1.5210444522562532E12 September 5, 2018 at 1:19 AM
After configuring IWA with SSL, users get a popup to enter domain credentials
I can use IWA without SSL fine, users just need to confirm they want to go to the non-secure site.

 

Once I put in the SSL cert and configure everything to use HTTPS, the users now get a popup window where they need to enter their domain credentials. It seems this popup is coming from IIS. I followed the instructions provided by Okta for the SSL cert config with no luck.

 

Has anyone else run into this? This is using IIS on a 2012 server.
  • 5 answers
  • 1.43K views

  • SSOS.08384 (Citrix)

    You may be running into the same issues we did, which were resolved with the 1.9.1 version of the IWA Client 

    [We have improved the app sign-in experience for customers with Integrated Windows Authentication (IWA) in certain environments.]

    This client is still in EA, and you will need to request a link from Support for that.
    Expand Post

  • 84rgv (84rgv)

    Thanks, I'll try that. I think I finally got the cert working because I show a secure connection. But now I get "Not Found, HTTP Error 404. The requested resource is not found". Not sure why it's such a chore to get IWA working.

     

    I'll request version 1.91, hopefully that will help. Thank you for the reply.
    Expand Post

  • JasonR.75483 (Customer)

    We had the same issue with the pop for credentials.  We had to create a group policy to add our domain suffix to the intranet sites list for Internet Explorer on all computers. After doing so users no longer got the pop up.

  • ixjn7 (ixjn7)

    I run into the exact same issue. I have a signed certificate installed on the IIS server.

     

    http://server.domain.com/iwa/authenticated.aspx gives me a good result

     

    https://server.domain.com/iwa/authenticated.aspx gives me a popup from my browser asking me for username and password. 

     

    Users complain about the security message they get when okta redirects them back to the (insecure http) IWA application, so I need to get SSL up and running combined with iwa. I have just upgraded my agent to the latest public release (1.8.1) but to no effect. 

    Expand Post

  • ShamsheerM.67301 (Customer)

    Dear Support,

    Can we create application in which call back is http not https (non secure call back for SAML)

This question is closed.
Loading
After configuring IWA with SSL, users get a popup to enter domain credentials