Anonymous Authentication Taking Precedence Over Windows Authentication? RRS feed

  • Question

  • In IIS, Anonymous authentication takes precedence over Integrated Windows authentication. Is this the case with SharePoint 2007?

    A customer of mine claims that although he enabled anonymous access for his SharePoint intranet site, users who belong to the intranet domain are authenticated to the site. Have you come across this scenario? Any ideas how this can be achieved?

    Thank you,

    -Ronen Meyuhas

    • Edited by Mike Walsh FIN Monday, May 30, 2011 1:16 PM This is a pre-SP 2010 forum so do not ask about SP 2010 here. Removed. 2007 question left.
    Monday, May 30, 2011 12:13 PM

All replies

  • Hi.

    If you have both Anonymous access and Windows Authentication enabled simultaneously you will end up being authenticated if the SharePoint site doesn't allow for anonymous access. Enabling anonymous access doesn't automatically disable Windows Authentication. (Unless it's explicitly disabled of course).
    So in this case (which I would guess it is) it's normal behaviour.

    Hope this helps.



    My blog: InsomniacGeek.com
    Monday, May 30, 2011 2:30 PM
  • Hi Magnus,

    Yes, both Anonymous and Windows Authentication are enabled. But assuming that Anonymous takes precedence over Windows Authentication, in what circumstances will users be authenticated at all?


    "If Anonymous authentication is enabled, IIS will always try to authenticate by using it first, even if other methods are enabled"



    Tuesday, May 31, 2011 6:14 AM