We are setting up an extranet site that needs to be visible from both inside and outside of our organization.
We currently have a site collection set up at
We have extended the site to the Extranet zone (http://internalserver:8080/Extranet)
We have an ISA publishing rule set up to forward the public url (https://externalserver/Extranet) to the internal Extranet Zone url (http://internalserver:8080/Extranet)
From the internal url using Windows authentication, everything appears fine.
From the Extranet Zone url and from the public url, the user is redirected, as expected, to the login page
(/Extranet/_layouts/ExternalCollaboration/login.aspx), however, the login page returns a 401.2 Unauthorized: Logon failed due to server configuration
We have the ADAMUser membership provider set up for the Extranet Zone, with 'Enable Anonymous Access' unchecked (although, I believe I checked it and still got the same result.)
<allow users="*" />
to web.config, same result.
I also created a simple page with no controls and set that as the login page, in order to see if the issue was specific to the Toolkit login page. Still got the 401.2, so it seems like it may be
an issue with accessing pages under _layouts (or _layouts/ExternalCollaboration)?
I came across a blog post about the ViewFormsPagesLockdown Feature. I tested with the feature enabled and disabled, all with the same result.
Any ideas what could be causing the 401.2?