Authentication Method and Anonymous Access

Archived content. No warranty is made as to technical accuracy. Content may contain URLs that were valid when originally published, but now link to sites or pages that no longer exist.

The default IIS 6 authentication method is Windows IntegratedAuthentication. Because Windows Integrated Authentication is notsupported over HTTP proxy servers, the Internet Platform andOperations group enabled only Basic Authentication for thisexternal hosting. When enabling Basic Authentication, theyspecified STSBeta as the default domain and realm.

Note: Windows IntegratedAuthentication is more secure than Basic Authentication. If noclient communications with the server farm go through HTTP proxyservers, it is recommended that you use Windows IntegratedAuthentication instead of Basic Authentication. If BasicAuthentication is necessary, using Basic Authentication with SSLhelps ensure security.

To allow some customer sites to allow anonymous access,anonymous access must be enabled in Microsoft Internet InformationServices (ISS) on every front-end Web server. Installing WindowsSharePoint Services automatically disables anonymous access, so itmust be enabled after installation.