Select the product you need help with
An ASP.NET forms authentication request that is sent to server in a web farm may failArticle ID: 2661404 - View products that this article applies to. SummaryThe security update that security bulletin MS11-100 addresses changes the format of forms authentication tickets in a way that is incompatible with the older version of forms authentication tickets. If you have a web farm where some servers are updated and other servers are not updated, some servers will generate a forms authentication ticket that is incompatible on other servers. SYMPTOMSASP.NET forms authentication requests that are sent to a server in a web farm may fail even though its credentials are valid. The Application log on the server has an Information entry with a Source that is a specific version of ASP.NET and an Event ID of 1315. The log contains a message that resembles the following: RESOLUTIONTo address this issue, please make sure that all computers in the web farm are updated. For more information about deployment guidance for MS11-100, click the following article number to view the article in the Microsoft Knowledge Base: 2659968
For more information, click the following article number to view the article in the Microsoft Knowledge Base:
(http://support.microsoft.com/kb/2659968/
)
Deployment guidance for security update 2638420, as described in MS11-100
2638420
For more information, visit the following Microsoft TechNet webpage to view the security bulletin MS11-100:
(http://support.microsoft.com/kb/2638420/
)
MS11-100: Vulnerability in the .NET Framework could allow elevation of privilege: December 29, 2011
http://technet.microsoft.com/security/bulletin/MS11-100
(http://technet.microsoft.com/security/bulletin/MS11-100)
PropertiesArticle ID: 2661404 - Last Review: December 31, 2011 - Revision: 2.0 APPLIES TO
| Article Translations
 |
Back to the top
