ASP+, working in conjunction with Internet Information Services (IIS) 5.0, can authenticate user credentials (such as names and passwords) using any of five different authentication methods: Basic, Digest, Windows, Passport, and Cookie authentication. Access to site information can be controlled in either of two ways: by comparing authenticated credentials (or representations of them) to NTFS file system (NTFS) permissions, or by comparing them to an XML file containing authorized users, authorized roles (groups), or authorized HTTP verbs.
For complete information on securing you ASP+ applications, see ASP+ Web Application Security.
See Also