>The application sub directory MUST be set as an application on IIS. Also, you can not re-issue the authentication tag on the web.config for sub-directories, since this is not an overridable attribute, so just set it at the root level and it will automatically be inherited by the sub-directory of the application.
>
>If you want the root of the directory to be open to anonymous connections but not a sub-dir you will need to define the authentication at the root but allow anonymous connections, and then just use the allow tag on the web.config in the sub-dir to allow only authenticated user.
Please ignore my initial reply to your second paragraph. I reread it and I see your point now. I will try it.
Thank you very much.
"The creative process is nothing but a series of crises." Isaac Bashevis Singer
"My experience is that as soon as people are old enough to know better, they don't know anything at all." Oscar Wilde
"If a nation values anything more than freedom, it will lose its freedom; and the irony of it is that if it is comfort or money that it values more, it will lose that too." W.Somerset Maugham