ASP.NET Core app running on IIS gives Http Error 401.2-Unauthorize
I have an ASP.NET Core MVC application where I implemented Azure AD authentication. I'm using .NET Core 3.1. I'm pretty sure the Azure AD part is properly implemented as it runs well in Visual Studio.
When I try to run my app on IIS, I get this error as shown below. However, if I enable anonymous authentication on IIS, the app works well as expected and I don't get the error 401.2.
I want my app to run on IIS without this error even after disabling anonymous authentication on IIS, how can I do that? I cannot enable Windows authentication also as it by passes my Azure AD authentication.
You cannot disable anonymous authentication on IIS, as that's a mandatory part of Microsoft Entra ID based authentication in your ASP.NET Core web app.
You will have to roll back the change and ignore this error as you made a wrong move.
About why anonymous authentication is needed on IIS, that's a separate question.
Note that the name "Azure Active Directory" is no longer used, and .NET Core 3.1 reached end of life years ago.
- Why is my local website not working in IIS
- Unable to launch IIS Express Web Server - Failed to Register URL - Cannot create a file when that file already exists | VS Community 2017
- what alternatives are there to using global.asax?
- How to Access Files in ASP.NET Web Forms Application via Virtual Directory on Network Location?
- ASP.NET Core app running on IIS gives Http Error 401.2-Unauthorize
- Cannot connect to SQL SERVER from ASP.NET Web Method
- .NET framework Session State
- IIS - Url Rewrite and subfolers
- ERROR: "The project doesn't know how to run the profile IIS Express" (VS 2019, 16.11.7)
- What is modern way to hosting `node.js` applications on Windows 10 and Windows Server 2012 and newer?
- Python Flask UnderIIS - Docx to Pdf
- How to Host Web API and MVC application on Same Address
- How to solve the HTTP Error 403.14 - Forbidden in Asp.Net Core API?
- [COMException (0x800a141f): Word was unable to read this document. It may be corrupt
- IIS & ASP.NET blocking file
- ASP.NET Core 8.0 MVC web app & IIS 10 - how to include the user name in the IIS log when the cookie authentication is used?
- JSON file create issue on IIS production server
- URL Rewrite rule to redirect http: to https: is not working - IIS 10 - Asp.Net Framework 4.8 - web forms - aspx
- How to host React.js and Node.js app in windows IIS?
- Minimum ASP.NET Core app to redirect to new domain
- HttpClient using PFX transport certificate to stablish connection to third part application
- .Net Framework: exception in w3wp.exe
- docker: Error response from daemon: Ports are not available: listen tcp 0.0.0.0:80: bind:
- change iis localhost from C: to D:
- IIS 10 - HTTP Error 413.1 - Request Entity Too Large
- HTTP Error 403.14 - Forbidden The Web server is configured to not list the contents
- Antivirus Exclusion List for ASP.NET applications hosted on IIS
- What web.config setting will allow apple-app-site-association to be served?
- URL Rewrite of Location is causing an Object Moved to here link to appear on site
- Web API On IIS 10 (Handler "ExtensionlessUrlHandler-Integrated-4.0" has a bad module "ManagedPipelineHandler")