I've inherited an application that uses Windows authentication. The problem is that I need to have the application always prompt for credentials because different people need to login and use it. My web.config is simple:

<authentication mode="Windows" />
<authorization>
  <allow roles="application_whitelist" />
  <deny users="?" />
</authorization>

So we add/delete users from "application_whitelist" to control access to the application. The problem, of course, is that we're not being prompted for our credentials. Is there any way to force this to occur? (I checked ASP.NET windows authentication should always ask for credentials but it was no help.)

Related posts

Recent Viewed