What types of authentication protocols are supported?

Authentication protocols are used to verify the identity of users logging onto a computer system. The Windows Embedded Compact Web server currently supports two authentication protocols: Basic and Network LAN Manager (NTLM). These protocols are used for authenticating your user name and password with the Web server before a request to access information is granted.

Note: If you disable both NTLM and Basic on a Web site or virtual directory, then the Web server will be unable to authenticate any clients.

Basic -- A standard authentication mechanism supported by a wide variety of Web browsers. User names and passwords are sent in plain text (no encryption). Caution: This creates a security risk because if a hacker could eavesdrop on your connection he could easily obtain your user name and password. Enable Basic authentication with extreme caution.
NTLM -- A more secure authentication protocol than Basic, NTLM does not send user names and passwords in clear text. NTLM supported by Microsoft Internet Explorer running on Windows platforms, but may not be supported by other browsers or on other platforms.

The Web server can be configured to allow Basic only, NTLM only, or both Basic and NTLM authentication. Authentication settings can be configured for each Web site or for each virtual directory individually. If both Basic and NTLM are enabled at the same time, the Web client chooses whether it uses Basic or NTLM.