Logo Questions Linux Laravel Mysql Ubuntu Git Menu
HTML CSS JAVASCRIPT SQL PYTHON PHP BOOTSTRAP JAVA JQUERY R React Kotlin
 

Disable windows authentication on single location

Tags:

asp.net

iis

iis-7.5

I have a web application and I want to provide anonymous access to a couple of the web services in it so that we can access the web services from computers without a windows login on our network.

I've tried the stuff here Disable authentication on subfolder(s) of an ASP.NET app using windows authentication. I've done this:

<authentication mode="Windows" />
<authorization>
  <deny users="?" />
</authorization>

...

  <location path="Tests/QService.asmx">
    <system.web>
      <authorization>
        <allow users="?" />
        <deny users="*" />
      </authorization>
    </system.web>
  </location>

These both "work" in that they allow access to the web service for anonymous users. However, it seems that IIS still sends an authorization challange because when I access the service from a browser I get a box to enter my username and password. If I hit cancel I get access to the page anonymously. However, some of our clients don't handle this well and just fail because of the 401 return code.

Is there a way to completely disable the windows authentication on that single location such that IIS will not try and establish a windows authentication?

like image 728
tster Avatar asked Mar 07 '11 16:03

tster

People also ask

How do I turn off Windows Authentication in Web config?

Expand the computer name, then Sites, then Default Web Site, then click on the name of the desired site. Select Authentication. Set Windows Authentication to Disabled and set Basic Authentication to Enabled.

Does Windows Authentication use Active Directory?

Is Windows Authentication the same as Active Directory? No. You can use Windows Authentication even if your server is not a member of an Active Directory domain.

How do I turn off Windows Authentication in IIS?

On the taskbar, click Start, and then click Control Panel. In Control Panel, click Programs and Features, and then click Turn Windows Features on or off. Expand Internet Information Services, then World Wide Web Services, then Security. Select Windows Authentication, and then click OK.

1 Answers

You need to disable Windows Authentication on the Virtual Directory for that single location. Then you shouldn't be challenged.

like image 107
Russell McClure Avatar answered Sep 20 '22 17:09

Russell McClure
Sign in to Comment

Related questions

ASP.NET Membership Provider - Single Login
expire ASP.Net page
Should I set the Cache-Control header when serving up files? Or not?
Does Windows Azure support the Application Warm-Up module or something similar?
SQL Server Express 2008 using (local) in connection string
How do I include a web.config custom section schema without having to update each dev machine?
A Better way? Finding ASP.NET controls, finding their id
Application lifetime in ASP.NET
ASP.Net 4.0 - How to access RouteData from within an ASHX?
Moving IIS7 url rewrite section out of the web.config file
.NET tracing not working with Diagnostics.TraceSource, only Diagnostics.Trace
IIS 7 - Authentication in IIS vs Authentication in web.config
How to ensure offsite javascript doesn't impede site performance?
Difference between ASP.NET Web App and ASP.NET MVC 3 Empty Web App?
Looping through keys in ASP.NET cache object
Best way to store data on the client side - ASP.Net + JQuery
Do I need to care about thread-safety in ASP.NET with AJAX?
How to Make Very Simple ASP.Net Password Protected Page
Integrate CMS into ASP.NET MVC web application?
Asynchronous threads and session

Donate For Us

If you love us? You can donate to us via Paypal or buy me a coffee so we can maintain and grow! Thank you!