Go 4 Sharepoint

Search:

Welcome: Guest!

MOSS Forum

Home » Forum » MOSS

Ask a question

RSS Feeds

Non-moss page doesn't require login?

Asked By: Aiesha Amin Date: Dec 17, 2007 Category: MOSS Views: 228

I created an asp.net form and placed it in a virtual directory within
my MOSS 2007 site (forms based authentication). Up until yesterday
the user would be directed to the login page when trying to access the
asp.net page, now they are able to access the page without having to
login. Does anyone know what might have change or what would cause
this? I have been looking at everything for hours and can't find
anything different. Any help would be greatly appreciated.

Tagged:non moss page doesnt require login

1 Answer Found

Answer #1 Answered By: Irving Hurley Answered On: Dec 17, 2007

Anonymous Authentication is turned on by default when using Forms based
Authentication. Make sure you have an Authorization element in the
web.config where the asp.net form is that looks like the following:

<authorization>

<deny users="?"/>

<allow users="*"/>

</authorization>

With Anonymous Access turned on the request will reach the site, the deny
entry above will deny Anonymous Users access, the Allow above will allow
Authenticated users access. Since Anonymous Access users are denied, the
user will be redirected to the logon page. The order of the entries is
critical. If this Authorization element isn't in the web.config FBA won't
work. You should also look for a <Location> element that points to the
specific virtual directory where the file is. If that is present and has an
Authoriztion element it will take precedence.

Didn't find what you were looking for? Find more on Non-moss page doesn't require login? Or get search suggestion and latest updates.