Hey guys, I know this topic has been touched on before, but I've been unable to come up with a definitive answer. When you access an internal (sharepoint,etc.) site from the Blackberry Browser, is there a way to pass windows credentials to the site? Whenever I attempt to access our //companyweb site, I get the "Unsupported Authentication Scheme" error. I'm able to browse other sites on the LAN with no problem. Anyone have a work around for this? Can Sharepoint/IIS be configured to accept plain-text authentication?
Thanks
Will
I was able to make it work on my 4.1 BES by turning on the "Support HTTP Authentication" feature for the connection service. Haven't tried on 4.0 or 3.6. Not sure how our Sharepoint is configured but I used to get that unsupported authentication scheme before I enabled this.
I was able to make it work on my 4.1 BES by turning on the "Support HTTP Authentication" feature for the connection service. Haven't tried on 4.0 or 3.6. Not sure how our Sharepoint is configured but I used to get that unsupported authentication scheme before I enabled this.
I'll try that too. Since we're a smaller organization I opened the companyweb properties in the IIS manager and enabled plain text passwords. So far it seems to be working ok.
I just wanted to add that our company had an issue with this same subject, and changing the Http Authentication worked! I just wanted to write in to confirm the fix and say Thanks!!
Can anyone plz elaborate on from where can we turn on the "Support HTTP authentication" being discussed above? I am in a similar situation and need to use the corporate authetication for web pages from the intranet.
In that case, how unsecured is the plain text password mode? If I keep the 'Integrated Windows authentication' checked along with the mentioned 'Basic authentication(clear text password)', does it form a secure enough communication?
Well integrated windows authentication and plain text are alternatives - and I think (someone will I'm sure correct me if I'm wrong) that it'll try the most secure option first, but if that can't be suported by the client then it'll try the other one.
Above I was referring to the "05-17-2007, 07:48 PM" post in that thread (turning on Windows authentication support rather than using plain text) - apologies for not making it clear enough.
Windows Authentication will use one of the Windows Authentication methods, be it LAN Manager, NTLM or NTLMv2, the option should specify. LAN Manager is deeply insecure and NTLM has known vulnerabilities, but NTLMv2 can be considered secure given a complex eight character password (the jump in time to crack between seven and eight characters is huge).
Basic will submit everything in the clear and should only be used in situations where the connection itself is encrypted.
Most applications will try the most secure method and work their way down the list, but not all applications do. Indeed, I believe one version of Internet Explorer tried Basic first.
I just enable the "Support HTTP authentication" and can now access our SharePoint site. My only issue now is that we use a lot of discussion boards on there and I can not access that information in the Mobile view. Anyone know how to enable that on a MOSS 2007 server?
WICKSoft has a SharePoint solution for the BlackBerry that allows you to access everything in SharePoint (lists, contacts, calendars, documents) from your phone.
I found this thread while looking for a solution to this problem with Blackberry accessing a Sharepoint site. With Windows Sharepoint Services 3, it's easy to get past this error message if you're willing to allow plain text passwords.
Load Sharepoint Central Administration.
Go to Application Management | Authentication Providers
Select the appropriate web application from the drop-down list at the top right (don't skip this step or it won't work).
Click the authentication provider in use (probably Default).
Under IIS Authentication Settings, put a tick in "Basic authentication (password is sent in clear text)".
it seems to remember the username and domain for a day before it starts asking for it again. Is there a setting or change in the conf file I have to make fr this NOT to appear