Anonymous authentication is enabled
The information in this article applies to:
Visual Studio Team Foundation Server 2010
Windows Server 2003 and Windows Server 2008
SQL Server 2008
Windows SharePoint Services 3.0 and Microsoft Office SharePoint Server 2007
Servers that host the application tier and SharePoint Products
Team Foundation Server Complete Health Check
Team Foundation Server Framework Health Check
SharePoint Products Health Check
The Best Practices Analyzer tool for Team Foundation Server queries the metabase for Internet Information Services (IIS) to find the value that is assigned to the AuthFlags property. This query determines which authentication methods are enabled for the following Web sites:
Default Web Site
SharePoint Central Administration
Team Foundation Server
An error appears if anonymous access is enabled for any virtual directory under any one of the three Web sites.
To resolve this issue, use Internet Information Services (IIS) Manager to configure the Web sites to use Integrated Windows authentication access.
Required Permissions
To perform these procedures, you must be a member of the Administrators security group on the server to which the error message refers.
To disable anonymous authentication and reset the authentication method in IIS 6.0
Log on to the server to which the error message refers.
Open the Start menu, point to Administrative Tools, and click Internet Information Services (IIS) Manager.
Internet Information Services (IIS) Manager opens.
In the tree pane, expand the Web sites folder, and then expand the Web site that the error message specifies.
Right-click the virtual directory that the error message specifies and then click Properties.
Click the Directory Security tab, and then, under the Authentication and access control group, click Edit.
The Authentication Methods dialog box appears.
Clear the Enable anonymous access check box.
Be sure that you select the Integrated Windows authentication check box.
Click OK to confirm the changes.
Click OK to close the Properties window.
To disable anonymous authentication and reset the authentication method in IIS 7.0
Log on to the server to which the error message refers.
Open the Start menu, point to Administrative Tools, right-click Internet Information Services (IIS) Manager, and then click Run as administrator.
Internet Information Services (IIS) Manager opens.
In the Connections pane, expand the Sites node, and then expand the Web site that the error message specifies.
Click the virtual directory that the error message specifies.
In the Virtual directory Home area, double-click Authentication.
Right-click Anonymous Authentication, and then click Disable.
Be sure that Windows Authentication is Enabled.