Configuring Digest Authentication in IIS 6.0 (IIS 6.0)

Configuring Digest authentication on the server running IIS requires the following two tasks:

Enable Digest authentication for Windows domain servers.

Configure the realm name.


You must be a member of the Administrators group on the local computer to perform the following procedure or procedures. As a security best practice, log on to your computer by using an account that is not in the Administrators group, and then use the runas command to run IIS Manager as an administrator. At a command prompt, type runas /user:Administrative_AccountName "mmc %systemroot%\system32\inetsrv\iis.msc".


To enable Digest authentication for Windows domain servers and configure the realm name


In IIS Manager, right-click the Web Sites folder, Web site, directory, virtual directory, or file, and click Properties.


Configuration settings made at the Web Sites folder level can be inherited by all Web sites.


Click the Directory Security or File Security tab, depending on the level at which you want to configure security settings.


In the Anonymous access and authentication control section, click Edit.


In the Authenticated access section, select the Digest authentication for Windows domain servers check box.


In the Realm box, type the realm name, or click Select to browse for a domain.


Click OK twice.


Restart the W3SVC service.


If Basic authentication is enabled for the site, virtual directory, or folder you are configuring, the Default domain box will also be available. However, only Realm is meaningful to Digest authentication.

Related Information

For information about the Realm property, see Realm Metabase Property.

For information about Advanced Digest authentication, see Advanced Digest Authentication in IIS 6.0.

© 2016 Microsoft Corporation. All rights reserved. Contact Us |Terms of Use |Trademarks |Privacy & Cookies