One of the issues I have encountered whilst developing MVC apps that require Windows Authentication was the problem that it keeps wanting to redirect to the login page when there isn’t one. The problem manifested itself when I was using IIS to Browse to my application running as a virtual directory under my default web site; it kept wanting to redirect to ‘~/Index’ and since my default route was not configured to find an Index Controller it would return a Page Not Found error.
After doing some digging I realised that the web.config file contained the following entry:
<authentication mode="Windows"> <forms loginUrl="~/Index"/> </authentication>
Replacing the loginUrl attribute with “~/Home/Index” solved the problem as it matched my default Route; but I knew that I wasn’t using forms authentication and had no login page. After doing some more research I came across a few sites which recommended adding the following keys to the <appSettings> section:
<add key="autoFormsAuthentication" value="false" /> <add key="enableSimpleMembership" value="false"/>
Having made the additions and removed the <forms> tag the site functioned as expected and the requests for the default route were handled correctly.