browser - Firefox does not prompt for password for http authenticated sites, how to make it prompt?

07
2014-07
  • Calmarius

    I'm trying to log in to the corporate intranet. It used to ask me for a password in Firefox.

    But suddenly it stopped to do so, and only shows an HTTP 401 Unauthorized error message, just like when you cancel the prompt.

    I tried to use livehttpheaders to see if it tries to send wrong credentials but it doesn't send anything in the headers.

    Tried the do same on another computer. I got the same headers but it did show the authentication prompt. So I can progress an authenticate.

    I tried to delete all history, create a new profile, but no avail.

    It works with other browsers and works on another computer on the same operating system with the same version of FF too.

    So it seems some of the global settings were screwed up in my FF. Does anybody how can I get my prompt back?

    • Answers
  • kreemoweet

    NTLMv1 authentication has been disabled by default in Firefox 30. To enable, the pref network.negotiate-auth.allow-insecure-ntlm-v1 needs to be set to True. See: https://developer.mozilla.org/en-US/Firefox/Releases/30/Site_Compatibility (down the page under "Security").

  • Yo-yo

    You could try running Firefox in Safe-Mode to see if it helps you troubleshoot the issue.

    Otherwise, I would take a look at your Preferences -> Security -> Saved Passwords. You might want to try deleting the intranet site if it is saved there.

  • user337960

    I set: network.negotiate-auth.allow-insecure-ntlm-v1 to true

    and now I am getting the prompts again.


    • Related Question

    Firefox quickly forget HTTP Basic Auth
  • MiffTheFox

    How can I make Firefox "invalidate" it's saved HTTP Basic Auth credentials for a website from the client side?

    Currently, I have to restart the browser, which is rather cumbersome with multiple tabs open.

    Is there a way to do this without having to restart Firefox/clear the cache/etc.


    • Related Answers
  • heavyd

    In Firefox 3 you can choose Clear Recent History from the Tools menu (Ctrl + Shift + Del). You can then select to just clear Active Logins from the details to just clear those sessions.

  • Drew Anderson

    If you change username and password from the original session to one which will not authenticate, Firefox will destroy all reference to the old authentication and attempt the new one.

    You can change/set authentication by adding user:pass@ to the beginning of the URL, example: http://user:[email protected]/

    If you are logged into www.example.com with user:pass then typing (adding to the beginning of the address) anything@ will cause this to happen, example: http://[email protected]/

    A fast fix which doesn't require any plugins.

    Please note this only works for HTTP Basic Auth.

    An additional side benefit is this will affect only the website you are interacting with. All other logins to any other website will remain active.

  • Day

    The Web Developer toolbar allows HTTP authentication to be reset within a browser session.

    From Firefox's Context Menu, choose Web Developer -> Miscellaneous -> Clear Private Data -> HTTP Authentication.

  • Beaner

    The easiest way is to log out from the site instead of just closing the tab. If this is not an option and you know before hand you will be visiting a site you want forgotten you can install Sandboxie and run your Firefox (or any browser) in a sandbox. Delete the contents of the sandbox when done and everything you have done is gone.