I have an application that uses Windows Authentication via AD group policy. When Internet Explorer users that are members of the AD group access the application via the machine name URL, they are passed through without challenge.
Now that I have a subdomain pointed at the server's IP address, users that access the application via that address are challenged for credentials in Internet Explorer.
How can I get passthrough authentication to work using a TLD?