By Forms Default Authentication is by windows ,

so remember authentication is being handled by IIS unless you reconfigure it to be wrangled by ASP !
you need to configure that on the directory for your website.

On the Server goto the IIs Manager

1) go to control panel - Administrative tools - IIS Manager

2) go to the virtual directory you are working in and browse it

3) go to online properties and go to virtual directory in authentication methods

4) usually use Integrated Windows authentication for Intranets
or just click Anonymous Access for public sites…

Chronologically, I have learned (and it makes sense) that

Authentication (basic and integrated windows)
(web application of user identity)

has to occur before

Authorization
(resources and/or directories the user is allowed to access)…

in the webconfig, look for mode= Winodws or Forms element

<authentication mode=”Winodws or Forms” >
< forms name=”MyAuthCookie” loginUrl=”~/Login.aspx” timeout =”30″ ; >
< /forms  >
< /authentication >

This entry was posted on Thursday, October 11th, 2007 at 1:47 pm and is filed under ASP. You can follow any responses to this entry through the RSS 2.0 feed. You can leave a response, or trackback from your own site.