Just configured SSL but 'Windows Security' message box appears when trying to access the login page

Hi, I just obtained a trial SSL certificate, and I am trying to make it work at Winhost. I set the 'RequireSSL' to true in web.config file. However, when I try to access the login page a message box appears with the 'Windows Security' title asking me for credentials. I am not sure what kind of credentials are expected. This is supposed to be forms authentication, and do not know why the message is referring to windows. Can you please help?

Thanks!

 

Thanks for your reply ComputerMan. My configuration has 2 web.config files. The one in my root directory defines the 'forms' authentication mode. I intended to have a protected folder that also has its own config file, and which I think is usng the authentication of its parent folder config file. When I test the site within Visual Studio it works fine. In other words, if I try to acces one of the pages within the protected folder it goes to the login page first. If I go to an unprotected page within the folder it also does so. However, this behavior changed when I included a SSL certificate. Now, if I go directly to the login page, I do not get the windows security prompt, but if I go to a page within the protected folder, the prompt appears. Normal flow would be to re-route the request to the login page. I really appreciate if you can help me with this. Thanks so much

 

Thanks again for responding to this thread. This may look harder than it really is, but have not been able to figure it out, and I would like to resolve it soon.

Here is the whole web.config in the protected folder:

<?xml version="1.0"?>
<configuration>
<system.web>
<authorization>
<deny users="?" />

</authorization>

</system.web>

<location path="<UnprotectedPage1.aspx">

<system.web>

<authorization>
<allow users="*"/>

</authorization>



</system.web>

</location>

<location path="<UnprotectedPage2.aspx">

<system.web>

<authorization>


<allow users="*"/>

</authorization>
</system.web>

</location>


</configuration>

I am thinking that the '<deny users="?" /> for anonymous users is maybe causing it, and it
has to do with a configuration in IIS. but I do depend on the proper administration from Winhost.

Thanks again!

 

Can someone help out in configuring a site that has the aspmembersip provider alongside with a protected folder? It works with the configuration in my development environment but it asks for authentication when under Winhost. Here is my current configuration. In the root, I have:

<authentication mode ="Forms">
<forms name=".ASPXAUTHCookie"
loginUrl="https://<sitename.com>/<protectedFolder>/Login.aspx"
protection="All"
timeout="30"
path="/"
requireSSL="true"
slidingExpiration="true"
cookieless="UseDeviceProfile" defaultUrl="<ProtectedFolder>/DefaultPage.aspx"
/>
</authentication>

in the folder that I intend to ask for authentication, I have:
<?xml version="1.0"?>
<configuration>
<system.web>
<authorization>
<deny users="?" />

</authorization>

</system.web>

<location path="<UnprotectedPage1.aspx">

<system.web>

<authorization>
<allow users="*"/>

</authorization>



</system.web>

</location>

<location path="<UnprotectedPage2.aspx">

<system.web>

<authorization>


<allow users="*"/>

</authorization>
</system.web>

</location>


</configuration>

I appreciate it.