Three forms of authentication exist in ASP.NET. These are Integrated Windows Authentication, Forms Authentication, and Passport Authentication. A forth, which is not really an authentication mode, is none. This chapter primarily discusses the first two methods. It will only touch on the Passport authentication model.
You can specify the authentication model that your ASP.NET application will use in the web.config file as shown here:
<configuration> <system.web> <authentication mode="Windows" /> </system.web> </configuration>
Before getting into how to secure your application through ASP.NET, now is a good time for a primer on the Windows role-based security model. ...