We are using Windows Authentication on our staging server to prevent search engine indexing and anonymous browsing. For some reason, when we add the runAllManagedModulesForAllRequests="true" tag to <modules> in the web.config, for some reason we lose the authentication on the site and any user can browse anonymously. This setting is on for some of our other non-ASPDNSF customers, and windows authentication is still working, so I'm guessing it has something to do with how ASPDNSF handles authentication (custom module?), but I'm not sure where to start debugging this.
Any ideas?