Vulnerability in EPiServer.Forms
I am Abhsihek. I have empty INTRA-NET project in CMS 9.10.1 with Start Page. I have hosted it in IIS 8.5 with Windows Authentication mode.
When I browse the start page it ask me windows authentication and then page gets load properly.
But when I browse cms/edit url then it keep asking windows credential again and again. I have tried following.
Please help me if you have I am missing any thing in above.
Do you mind posting a few screenshots?
Thanks for reply. I am not able to post the screen at the moment.
But it is simple browser popup asking for windows credential.
After that if you wanted to check RegsEdit setting to disable loop check back then you can check it here.
This post is a little old but it would be worth checking to see if you have done everything mentioned: https://www.david-tec.com/2010/09/Checklist-for-setting-up-Windows-Authentication-in-EPiServer-on-a-development-machine/
yes I did it all, but it still promting for the credentials.
[DON't GO ON PROD WITH THESE SETTINGS]
Apparantly its an auth issue, Allow logged in users to enter into admin
<location path="episerver/CMS/admin"> <system.web> <authorization> <allow users="*" /> </authorization> </system.web> </location>
create an admin account with proper admin rights. Windows user will also login.
Revert these settings back.