ASP.NET Forms Authentication and a “No Authentication” subfolder

Question

Is it possible to disable all authentication in a subfolder of a web site that is Forms Authenticated? How do you accomplish this?

Answer 1

yes you can, you can use location tag in the web.config to configure folder level security.

Answer 2

Yes, place a web.config file on the subfolder with this content:

<configuration>
    <system.web>
      <authorization>
        <allow users="*"/>
      </authorization>
    </system.web>
</configuration>