Looking to make just one folder and all sub-folders within this folder to be password protected with form authentication. At this time, I have the following in my web.config file that works but it does for the whole site.
I have a folder off the root called email that calls the Login.aspx file when not authenticated. Issue is that files off the root folder are calling /email/Login.aspx as well.

Any thoughts?

VB Code:
  1. <configuration>

  2.     <appSettings>

  3.         <add key="MM_CONNECTION_HANDLER_SQLServer" value="sqlserver.htm" />

  4.         <add key="MM_CONNECTION_STRING_SQLServer" value="Persist Security Info=False;Data Source=xx.xx.xx.xx;Initial Catalog=dbname;User ID=uid;Password=pwd" />

  5.         <add key="MM_CONNECTION_DATABASETYPE_SQLServer" value="SQLServer" />

  6.         <add key="MM_CONNECTION_SCHEMA_SQLServer" value="" />

  7.         <add key="MM_CONNECTION_CATALOG_SQLServer" value="" />

  8.         <add key="MS_SQL_CONN" value="Server=xx.xx.xx.xx;uid=name;pwd=pwd;database=dbname" />

  9.     </appSettings>

  10.  
  11.     <system.web>

  12.         <authentication mode="Forms">

  13.             <forms loginUrl="/email/Login.aspx">

  14.                 <credentials passwordFormat="MD5">

  15.                     <user name="test" password="63E46DF4AC6DD41BFAA7CE7630D0533D" />

  16.                 </credentials>

  17.             </forms>

  18.         </authentication>

  19.         <authorization>

  20.             <deny users="?" />

  21.         </authorization>

  22.     </system.web>

  23. </configuration>