i have been trying to provide the security to a subfolder in a website using form authentication the web .config has the following entry
<customErrors mode="Off"/>
<authentication mode="Forms">
<forms name="AuthCookie" loginUrl="login.aspx" protection="All" timeout="30">
</forms>
</authentication>
<authorization>
<allow users="*" />
</authorization>
</system.web>
<location path="cgi-bin">
<system.web>
<authorization>
<deny users="?"/>
</authorization>
</system.web>
</location>
the web site is hosted on iis 6 on a windows 2003 server while debuging the project locally it opens up a login page whenever a file in protected folder is accessed but when the site is published on the windows 2003 server it does not open the login page when the sites sub folder is accessed the web site is hosted on iis 6