Authorization for essential folders

While using form based security in asp.net you will use role manager and membership providers, to enable rules based access for your web pages.

Care should be taken that you have to place web.config files in all your themes, scripts folder and other folders which you feel necessary for the start up load with authorization enabled to all users like this

<?xml version="1.0"?>

<configuration>
    <appSettings/>
    <connectionStrings/>
    <system.web>
        <authorization>
            <allow users="*"/>
        </authorization>
    </system.web>
</configuration>

 

other wise those important features  like css or themes will be not be seen until you are logged on with administrative privilege.

HTH