.NET Tutorials, Forums, Interview Questions And Answers
Welcome :Guest
Sign In
Win Surprise Gifts!!!

Top 5 Contributors of the Month
Gaurav Pal
Post New Web Links

HTTP 403 Forbidden - After Configure with Form Based Authentication

Posted By:      Posted Date: September 20, 2010    Points: 0   Category :SharePoint

Dear Expert,

My existing SharePoint Site authentication Provider is set to form based authentication.
While i try to access the site by using SharePoint Designer, it prompth me access denied message.
so i had temporary change the authentication to windows, then i able access to the site by SharePoint Designer.
( is it SharePoint Designer can access to the site in form based authentication, please advice )

After done to SharePoint Designer stuff, i had change back the form based authentication with the membership provider as before.
while i goto site collection administrator to change back the FBA Admin, i'm not able to access to FBA user list. (please advice)

While i try to browse the site, it show me this "HTTP 403 Forbidden" error message. (please advice)
i had check the web.config file. it should configure correctly.

Thanks in the advance!

Best Regards,





View Complete Post

More Related Resource Links

How do I use PowerShell to configure Web.Config for forms-based authentication for a Claims Based we

This TechNet article does a great job describing how to Configure forms-based authentication for a claims-based Web application using PowerShell. However, it glosses over editing the web.config file by just saying "Find the <Configuration> <system.web> section and add the following entry:" Is it possible to edit the web.config file using PowerShell using the IIS PowerShell snapin or can I just edit the web.config file as a xml document? This succeeds in adding the element, but only with the name and type. It does not add the connectionStringName or the applicationName import-module webadministration Add-WebConfiguration /system.web/membership/providers "IIS:\sites\[site name]" -value @{name="FBAMembershipProvider";` type="System.Web.Security.SqlMembershipProvider, System.Web, Version=, Culture= neutral, PublicKeyToken= b03f5f7f11d50a3a";` connectionStringName="FBAconn";` applicationName="/"} Does anyone any suggestions on a direction to go to add the membership providers and role providers in the web.config using PowerShell? This is very frustrating because I can do it manually, I can do it through the UI in IIS Manager, I can do it using appcmd, but no matter what I do, I can't get it to work using PowerShell.  

Form based authentication Sharepoint 2007 gets redirected to login page

Hi We have sharepoint 2007 site deployed on Windows server 2008, IIS 7.0.  We extended the web application to enable forms based authentication referring to link http://msdn.microsoft.com/en-us/library/bb975136(office.12).aspx#MOSS2007FBAPart1_Intro, we selected Kerberos instead of NTLM, behavior is like, when user tries to login into the site using OOB login.aspx, user again gets redirected to the login page. We tried to extend the web application again but this time we selected NTLM, but this time farm account (also is application pool identity) is not able login and exhibits same behavior as above, but for other users we are able to login. Has anyone come across this behavior? can anyone please guide me in correct the behavior? Regards, RK  Radhakrishna

Form Based Authentication with Custom database

Hi, I have a Sharepoint 2010 web application and I want to implement FBA(Form Based Authentication) for that. I don't want to use any membership providers and role providers. I have a SQL server database where we will maintain users and roles. I want to use this database for validating user credentials and authenticating them. Is this possible in Sharepoint 2010? Please reply ASAP.

SP 2010 Form Based Authentication username begins with "i:0#.w|"

Hello there! For the life of me, i can't figure out why SharePoint keeps putting the phrase "i:0#.w|" infront of everyones username / accounts. Both on mysite and portal sites. A quick bing search revelaed that i am not the only one: http://fangdahai.blogspot.com/2010/06/i0w-is-still-there-in-sharepoint-2010.html. Anyone have a solution to fix this annoying problem? Thanks!

Form based Authentication - OpenLdap problem

Hi everyone,   I try to set up FBA with LdapMembership provider.   I have configured web app + STS like this : <add name="LDAPMember" type="Microsoft.Office.Server.Security.LdapMembershipProvider, Microsoft.Office.Server, Version=, Culture=neutral, PublicKeyToken=71e9bce111e9429c" server="server" port="389" useSSL="false" connectionUsername="uid=portal_sharepoint,ou=people,dc=corp,dc=contoso,dc=com" connectionPassward="somthing" userDNAttribute="distinguishedName" userNameAttribute="cn" userContainer="ou=people,dc=corp,dc=carrefour,dc=com" userObjectClass="person" userFilter="((eduPersonOrgUnitDN=cn=portal_sharepoint,ou=applications,ou=organizations,dc=corp,dc=contoso,dc=com))" scope="Subtree" otherRequiredUserAttributes="sn,givenname,cn" />   I can without problem use the people picker and get user information from it. But when i try to authenticate user i have an error that say : An exception occurred when trying to issue security token: The security token username and password could not be validated.   If i look my log on the ldap i see that all the time it's the portal dn that is used to authenticate user.   I

The HTTP request was forbidden with client authentication scheme 'Anonymous'

I am trying to build a proof of concept of a WCF service utilisting a
wsHttpBinding with Transport Certificate security. I am having problems
connecting to it with a console client - everytime I try to open the channel
I get the following error: The HTTP request was forbidden with client authentication scheme 'Anonymous'.

can any one help me?
Thanks a lot
Frank Xu Lei--????,????
Focus on Distributed Applications Development and EAI based on .NET
?????????????:Welcome to My Chinese Technical Blog
??????WCF??????:Welcome to Microsoft Chinese WCF Forum
??????WCF??????:Welcome to Microsoft English WCF Forum

Form Based Authentication(FBA) with Oracle database

can anybody give me configuration details for share point Form Based Authentication with Oracle database

Increase Session Time Out in WSS 3.0 Form based Authentication Site


How to increase session time out for form based authenticated shrepoint site ,

Default Sharepoint  time out is 30 min ...

I want session shuld expire after 120 min..


Getting HTTP 500 error while accessing sharepiont site with claims based authentication


I have configured one of my SharePoint sites default zone with windows authentication and claims authentication. I am able to access the site properly with windows authentication. But, when I am accessing the site with claims, I am getting Http 500 error. When I captured the http headers, I see below information.

Accept: image/jpeg, image/gif, image/pjpeg, application/x-ms-application, application/xaml+xml, application/x-ms-xbap, */*
Referer: https://myhost/adfs/ls/?wa=wsignin1.0&wtrealm=urn%3amyhost%3aadfsupn&wctx=https%3a%2f%2fmyhost.moss.com%3a9696%2f_layouts%2fAuthenticate.aspx%3fSource%3d%252F
Accept-Language: en-US
User-Agent: Mozilla/4.0 (compatible; MSIE 8.0; Windows NT 6.1; WOW64; Trident/4.0; SLCC2; .NET CLR 2.0.50727; .NET4.0C; .NET4.0E; .NET CLR 3.5.30729; .NET CLR 3.0.30729)
Content-Type: application/x-www-form-urlencoded
Accept-Encoding: gzip, deflate
Host: myhost.moss.com:9696
Content-Length: 5676
Connection: Keep-Alive
Cache-Control: no-cache
Cookie: SPSessionGuid=d2cc8d44-e1a0-4412-9a9e-59a461c57eab


WSS 3.0 Form Based Authentication & OWA on same web server?


Ok....I have Outlook Web Access (Exch2k3) configured using Form Based Authentication (FBA) on my frontend web server under the default iis site.  The web address is https://exchange.mydomain.com.....works perfect.


Now, I have a second iis site called SharePoint_Extranet.  This site is accessible from the web https://sharepoint.mydomain.com currently using integrated windows authentication to access.  This site uses a second IP address, with the different host header.


When I implemented “Forms” authentication in the Central Admin page in SharePoint....I selected my extranet web app......and the problems began.


Apparently, doing this stopped the OWA virtual server.....and now when I navigate to exchange.mydomain.com, it presented the SharePoint form instead....?


Since these are production systems, I immediately reverted the SharePoint back to windows authentication, and started my Exchange virtual servers back up....and all returned to normal.


My question is, can these 2 services both reside on the same iis web server using separate FBA?  If so, how can I implement it without interrupting service?


Any help would be greatly appreciated!

Form based Authentication


So I finally got FBA to work with my Active directory server.  A users authenticates fine.  The issue i have now is when I add a user for permission based on a group using people picker.  So, if I want to add a group for permission to a site in my AD and when one of those users in the group try to authenticate they get access denied.  I am 100% certain that the user is in the group but for some reason FBA will not look for the user within the group.  Anyone have a solution or can assist me with this I would appreciate it.

modified snippet web.config


    <add name="membership"
      type="Microsoft.Office.Server.Security.LdapMembershipProvider, Microsoft.Office.Server, Version=, Culture=neutral, PublicKeyToken=71e9bce111e9429c"

Form based authentication on current web application SharePoint 2010



I have question about creating form based authentication. I want to have different authentication in the same web application in the same time. For now I have windows authentication and I want to extend it to Form base authentication. I follow procedure on link http://blog.summitcloud.com/2009/11/forms-based-authentication-sharepoint-2010-fb/ step by step but it doesn't work. Also when I try to change authentication in Central administration to Forms it is not possible because that option is disable. Is there any setup for overcome this issue.

Thank in advice.


How to deal with the elements in Claims Based form authentication mMembership?


We are migrating from SharePoint 2007 to 2010. We used to use Forms Authentication for our portal and have a custom login.aspx page for authentication. In this login.aspx page code, it detects new user and will automatically create a user in the membership provider.

However, in SharePoint 2010, System.Web.Security.Membership always points to the defaultProvider="i" which is the default membership provider that claims authentication provider forces.

So we are facing a big problem about how to create a user in the membership provider in the new login.aspx page. How can we handle this situation?

Create single custom login page for Windows Authentication and Form Based Authentication.


I want to create a custom login page for both Windows Authentication and Form Based Authentication.

I mean to I have to create only single login page for both authentication.

How can I create this kind of page?

G. Goyal

Managing user accounts in SQL database for form based authentication


Hi everyone

I have just configured form based authentication using a SQL database created using aspnet_regsql.exe.
Does anyone know of an good solutions that my customer can use to manage it, add users, delete user etc


The HTTP request was forbidden with client authentication scheme 'Anonymous'



I was working on an application (test application) which requires client certificate for authentication using basicHttpBinding over secure channel. My Service Configuration is


<binding name="secureClientServer">
	<security mode ="Transport">
		<transport clientCredentialType ="Certificate"/>

Form based authentication in sharepoint 2007


Hi ,

I have implemented form based authentication(LDAP) on SharePoint site. everything working fine.But we are not able to resolve the user with display name for first time.(User are stored in active directory.)

Like if i want to give an access to user over site, we need to provide usename or email address. once it will be part of site, if i want to add that particular user in any other group of the site then display name would work fine.

Issue is only with first time adding a user on site with display name.

my observation is, once the user first time added, sharepoint keeps the profile entry in content database(UserInfo Table). so that next time, that table is reffered. thats why second time, display name will be resolved with people picker.

Please provide some help.


Navin Srivastava








ASP.NetWindows Application  .NET Framework  C#  VB.Net  ADO.Net  
Sql Server  SharePoint  Silverlight  Others  All   

Hall of Fame    Twitter   Terms of Service    Privacy Policy    Contact Us    Archives   Tell A Friend