I was surprised at how difficult it was to find this information, given that Chrome is certainly one of the most widely-used browsers in the world, and also that it is commonplace to have Macs connecting to Windows domains.
I found that the domains that would be sent IWA information are set in the AuthServerWhitelist policy. But how to change these policies?
After coming across this article, it appeared that changing the policy via the Terminal window would be the best – and possibly only – way to do this.
Enter the following line into Terminal, using comma-separated domains that you trust with your credentials (with or without wildcards), and press Enter.
After moving a CF 8 app to CF 11, I ran into a difficulty in trying to set up the Web Service in the CF 11 Administrator.
Since I couldn’t get the CF 11 server to accept a new entry in the Web Services list, I had to do a little more troubleshooting using what was already there. I changed the HOSTS file on the CF 11 server such that the name old server running the Web Service successfully on CF 8 would temporarily point at the new CF 11 server. This caused an interesting error!
The code that came back is below – slightly edited for readability and also to make if render in a browser correctly:
IIS 8.5 Detailed Error - 401.2 - Unauthorized
HTTP Error 401.2 - Unauthorized
You are not authorized to view this page due to invalid authentication headers.