{"id":101,"date":"2007-07-12T18:57:05","date_gmt":"2007-07-12T16:57:05","guid":{"rendered":"http:\/\/www.corelan.be:8800\/index.php\/2008\/09\/07\/set-up-anonymous-access-to-sharepoint-sites\/"},"modified":"2007-07-12T18:57:05","modified_gmt":"2007-07-12T16:57:05","slug":"set-up-anonymous-access-to-sharepoint-sites","status":"publish","type":"post","link":"https:\/\/www.corelan.be\/index.php\/2007\/07\/12\/set-up-anonymous-access-to-sharepoint-sites\/","title":{"rendered":"Set up Anonymous Access to Sharepoint sites"},"content":{"rendered":"
\u00a0<\/h5>\n

The default behaviour for public internet facing websites should allow for anonymous access, but in reality, SharePoint does not accept anonymous access by default.<\/p>\n

So how can you set up the SharePoint site to accept both anonymous access and domain credentials ?\u00a0 In fact, it is very easy.<\/p>\n

It might not matter much, but for clarification : In my case, I'm running Sharepoint (WSS 3.0) on Windows 2008<\/p>\n

While creating the Web application and the top level site collection, I configured the site to be allow for anonymous access.\u00a0 If you forgot about it, see below (section on \"Central Administration Website)<\/p>\n

In the IIS site <\/strong>settings, under \"authentication<\/strong>\", the \"Anonymous Access<\/strong>\" setting is enabled.<\/p>\n

Next, I connected to this site and logged on with an admin account. Anonymous access is not enabled yet at this point, so you'll have to specify a username\/password with admin rights to the site.<\/p>\n

If you did not allow Anonymous access while creating the site, go to the Sharepoint Central Administration<\/strong> website and open the \"Application Management<\/strong>\" tool.<\/p>\n

Open \"Authentication Providers<\/strong>\" under \"Application Security\". Select the Web application that needs to be modified. Next, click the \"Default<\/strong>\" zone and enable the \"Enable anonymous access<\/strong>\" checkbox. Click \"save<\/strong>\".<\/strong><\/p>\n

This will only enable you to enable anonymous access in your Sharepoint site. It will not enable anonymous access to the site by default, so you'll have to grant access manually on the site level.<\/p>\n

To do so, open the site, log on with admin rights.<\/p>\n

Next, go to the \"site actions<\/strong>\" button and choose \"site settings<\/strong>\"<\/p>\n

Open the \"Advanced Permissions<\/strong>\" section under \"Users and Permissions<\/strong>\" and click \"Settings<\/strong>\" > \"Anonymous Access<\/strong>\"<\/p>\n

Choose whether to allow anonymous access to the \"Entire Web site<\/strong>\" or just to \"List and Libraries<\/strong>\" and click OK to save the changes<\/p>\n

Now, close the browser and connect again. You will be automatically logged on as \"anonymous\".<\/p>\n

You can still use the \"sign in\" button in the upper right corner to manage the site.<\/p>\n

Nice huh ?\u00a0 But what about allowing anonymous people to post comments ?<\/p>\n

Well, that's easy too.<\/p>\n

Log on with your admin account and click on \"Manage comments<\/strong>\" (under Admin links)<\/p>\n

Go to \"Settings<\/strong>\" and choose \"List Settings<\/strong>\"<\/p>\n

Click on \"Permissions for this list<\/strong>\"<\/p>\n

Click on \"Settings<\/strong>\" and choose \"Anonymous Access<\/strong>\"<\/p>\n

Select the type of access anonymous users will have in the comments area, and click \"OK<\/strong>\" to save the changes.<\/p>\n

That's it - you're all set<\/p>\n

Some links to other websites that talk about (anonymous) authentication to Sharepoint sites are :<\/p>\n

http:\/\/weblogs.asp.net\/bsimser\/archive\/2006\/09\/25\/Enabling-anonymous-access-in-SharePoint-2007.aspx<\/a><\/p>\n

http:\/\/www.andrewconnell.com\/blog\/articles\/HowToConfigPublishingSiteWithDualAuthProvidersAndAnonAccess.aspx<\/a><\/p>\n","protected":false},"excerpt":{"rendered":"

\u00a0 The default behaviour for public internet facing websites should allow for anonymous access, but in reality, SharePoint does not accept anonymous access by default. So how can you set up the SharePoint site to accept both anonymous access and domain credentials ?\u00a0 In fact, it is very easy. It might not matter much, but … Continue reading \"Set up Anonymous Access to Sharepoint sites\"<\/span><\/a><\/p>\n","protected":false},"author":1,"featured_media":0,"comment_status":"closed","ping_status":"closed","sticky":false,"template":"","format":"standard","meta":{"jetpack_post_was_ever_published":false,"_jetpack_newsletter_access":"","_jetpack_dont_email_post_to_subs":false,"_jetpack_newsletter_tier_id":0,"_jetpack_memberships_contains_paywalled_content":false,"_jetpack_memberships_contains_paid_content":false,"footnotes":"","jetpack_publicize_message":"","jetpack_publicize_feature_enabled":true,"jetpack_social_post_already_shared":false,"jetpack_social_options":{"image_generator_settings":{"template":"highway","default_image_id":0,"font":"","enabled":false},"version":2}},"categories":[19,26],"tags":[20],"class_list":["post-101","post","type-post","status-publish","format-standard","hentry","category-sharepoint","category-windows-server","tag-sharepoint"],"yoast_head":"\nSet up Anonymous Access to Sharepoint sites - Corelan | Exploit Development & Vulnerability Research<\/title>\n<meta name=\"robots\" content=\"index, follow, max-snippet:-1, max-image-preview:large, max-video-preview:-1\" \/>\n<link rel=\"canonical\" href=\"https:\/\/www.corelan.be\/index.php\/2007\/07\/12\/set-up-anonymous-access-to-sharepoint-sites\/\" \/>\n<meta property=\"og:locale\" content=\"en_US\" \/>\n<meta property=\"og:type\" content=\"article\" \/>\n<meta property=\"og:title\" content=\"Set up Anonymous Access to Sharepoint sites - Corelan | Exploit Development & Vulnerability Research\" \/>\n<meta property=\"og:description\" content=\"\u00a0 The default behaviour for public internet facing websites should allow for anonymous access, but in reality, SharePoint does not accept anonymous access by default. So how can you set up the SharePoint site to accept both anonymous access and domain credentials ?\u00a0 In fact, it is very easy. It might not matter much, but … Continue reading "Set up Anonymous Access to Sharepoint sites"\" \/>\n<meta property=\"og:url\" content=\"https:\/\/www.corelan.be\/index.php\/2007\/07\/12\/set-up-anonymous-access-to-sharepoint-sites\/\" \/>\n<meta property=\"og:site_name\" content=\"Corelan | Exploit Development & Vulnerability Research\" \/>\n<meta property=\"article:publisher\" content=\"https:\/\/www.facebook.com\/corelanconsulting\" \/>\n<meta property=\"article:published_time\" content=\"2007-07-12T16:57:05+00:00\" \/>\n<meta name=\"author\" content=\"corelanc0d3r\" \/>\n<meta name=\"twitter:card\" content=\"summary_large_image\" \/>\n<meta name=\"twitter:creator\" content=\"@corelanc0d3r\" \/>\n<meta name=\"twitter:site\" content=\"@corelanc0d3r\" \/>\n<script type=\"application\/ld+json\" class=\"yoast-schema-graph\">{\"@context\":\"https:\\\/\\\/schema.org\",\"@graph\":[{\"@type\":\"TechArticle\",\"@id\":\"https:\\\/\\\/www.corelan.be\\\/index.php\\\/2007\\\/07\\\/12\\\/set-up-anonymous-access-to-sharepoint-sites\\\/#article\",\"isPartOf\":{\"@id\":\"https:\\\/\\\/www.corelan.be\\\/index.php\\\/2007\\\/07\\\/12\\\/set-up-anonymous-access-to-sharepoint-sites\\\/\"},\"author\":{\"name\":\"corelanc0d3r\",\"@id\":\"https:\\\/\\\/www.corelan.be\\\/#\\\/schema\\\/person\\\/3be5542b9b0a0787893db83a5ad68e8f\"},\"headline\":\"Set up Anonymous Access to Sharepoint sites\",\"datePublished\":\"2007-07-12T16:57:05+00:00\",\"mainEntityOfPage\":{\"@id\":\"https:\\\/\\\/www.corelan.be\\\/index.php\\\/2007\\\/07\\\/12\\\/set-up-anonymous-access-to-sharepoint-sites\\\/\"},\"wordCount\":439,\"publisher\":{\"@id\":\"https:\\\/\\\/www.corelan.be\\\/#organization\"},\"keywords\":[\"Sharepoint\"],\"articleSection\":[\"Sharepoint\",\"Windows Server\"],\"inLanguage\":\"en-US\"},{\"@type\":\"WebPage\",\"@id\":\"https:\\\/\\\/www.corelan.be\\\/index.php\\\/2007\\\/07\\\/12\\\/set-up-anonymous-access-to-sharepoint-sites\\\/\",\"url\":\"https:\\\/\\\/www.corelan.be\\\/index.php\\\/2007\\\/07\\\/12\\\/set-up-anonymous-access-to-sharepoint-sites\\\/\",\"name\":\"Set up Anonymous Access to Sharepoint sites - Corelan | Exploit Development & Vulnerability Research\",\"isPartOf\":{\"@id\":\"https:\\\/\\\/www.corelan.be\\\/#website\"},\"datePublished\":\"2007-07-12T16:57:05+00:00\",\"breadcrumb\":{\"@id\":\"https:\\\/\\\/www.corelan.be\\\/index.php\\\/2007\\\/07\\\/12\\\/set-up-anonymous-access-to-sharepoint-sites\\\/#breadcrumb\"},\"inLanguage\":\"en-US\",\"potentialAction\":[{\"@type\":\"ReadAction\",\"target\":[\"https:\\\/\\\/www.corelan.be\\\/index.php\\\/2007\\\/07\\\/12\\\/set-up-anonymous-access-to-sharepoint-sites\\\/\"]}]},{\"@type\":\"BreadcrumbList\",\"@id\":\"https:\\\/\\\/www.corelan.be\\\/index.php\\\/2007\\\/07\\\/12\\\/set-up-anonymous-access-to-sharepoint-sites\\\/#breadcrumb\",\"itemListElement\":[{\"@type\":\"ListItem\",\"position\":1,\"name\":\"Home\",\"item\":\"https:\\\/\\\/www.corelan.be\\\/\"},{\"@type\":\"ListItem\",\"position\":2,\"name\":\"Set up Anonymous Access to Sharepoint sites\"}]},{\"@type\":\"WebSite\",\"@id\":\"https:\\\/\\\/www.corelan.be\\\/#website\",\"url\":\"https:\\\/\\\/www.corelan.be\\\/\",\"name\":\"Corelan CyberSecurity Research\",\"description\":\"Corelan publishes in-depth tutorials on exploit development, Windows exploitation, vulnerability research, heap internals, reverse engineering and security tooling used by professionals worldwide.\",\"publisher\":{\"@id\":\"https:\\\/\\\/www.corelan.be\\\/#organization\"},\"potentialAction\":[{\"@type\":\"SearchAction\",\"target\":{\"@type\":\"EntryPoint\",\"urlTemplate\":\"https:\\\/\\\/www.corelan.be\\\/?s={search_term_string}\"},\"query-input\":{\"@type\":\"PropertyValueSpecification\",\"valueRequired\":true,\"valueName\":\"search_term_string\"}}],\"inLanguage\":\"en-US\"},{\"@type\":\"Organization\",\"@id\":\"https:\\\/\\\/www.corelan.be\\\/#organization\",\"name\":\"Corelan CyberSecurity Research\",\"url\":\"https:\\\/\\\/www.corelan.be\\\/\",\"logo\":{\"@type\":\"ImageObject\",\"inLanguage\":\"en-US\",\"@id\":\"https:\\\/\\\/www.corelan.be\\\/#\\\/schema\\\/logo\\\/image\\\/\",\"url\":\"https:\\\/\\\/www.corelan.be\\\/wp-content\\\/uploads\\\/2026\\\/03\\\/corelanlogo2_small-20.png\",\"contentUrl\":\"https:\\\/\\\/www.corelan.be\\\/wp-content\\\/uploads\\\/2026\\\/03\\\/corelanlogo2_small-20.png\",\"width\":200,\"height\":200,\"caption\":\"Corelan CyberSecurity Research\"},\"image\":{\"@id\":\"https:\\\/\\\/www.corelan.be\\\/#\\\/schema\\\/logo\\\/image\\\/\"},\"sameAs\":[\"https:\\\/\\\/www.facebook.com\\\/corelanconsulting\",\"https:\\\/\\\/x.com\\\/corelanc0d3r\",\"https:\\\/\\\/x.com\\\/corelanconsulting\",\"https:\\\/\\\/instagram.com\\\/corelanconsult\"]},{\"@type\":\"Person\",\"@id\":\"https:\\\/\\\/www.corelan.be\\\/#\\\/schema\\\/person\\\/3be5542b9b0a0787893db83a5ad68e8f\",\"name\":\"corelanc0d3r\",\"pronouns\":\"he\\\/him\",\"image\":{\"@type\":\"ImageObject\",\"inLanguage\":\"en-US\",\"@id\":\"https:\\\/\\\/secure.gravatar.com\\\/avatar\\\/3783bed6acd72d7fa5bb2387d88acbb9a3403e7cada60b2037e1cbb74ad451f9?s=96&d=mm&r=x\",\"url\":\"https:\\\/\\\/secure.gravatar.com\\\/avatar\\\/3783bed6acd72d7fa5bb2387d88acbb9a3403e7cada60b2037e1cbb74ad451f9?s=96&d=mm&r=x\",\"contentUrl\":\"https:\\\/\\\/secure.gravatar.com\\\/avatar\\\/3783bed6acd72d7fa5bb2387d88acbb9a3403e7cada60b2037e1cbb74ad451f9?s=96&d=mm&r=x\",\"caption\":\"corelanc0d3r\"},\"description\":\"Peter Van Eeckhoutte is the founder of Corelan and a globally recognized expert in exploit development and vulnerability research. With over two decades in IT security, he built Corelan into a respected platform for deep technical research, hands-on training, and knowledge sharing. Known for his influential exploit development tutorials, tools, and real-world training, Peter combines a strong research mindset with a passion for education\u2014helping security professionals understand not just how exploits work, but why.\",\"sameAs\":[\"https:\\\/\\\/www.corelan-training.com\",\"https:\\\/\\\/instagram.com\\\/corelanc0d3r\",\"https:\\\/\\\/www.linkedin.com\\\/in\\\/petervaneeckhoutte\\\/\",\"https:\\\/\\\/x.com\\\/corelanc0d3r\"],\"url\":\"https:\\\/\\\/www.corelan.be\\\/index.php\\\/author\\\/admin0\\\/\"}]}<\/script>\n<!-- \/ Yoast SEO plugin. -->","yoast_head_json":{"title":"Set up Anonymous Access to Sharepoint sites - Corelan | Exploit Development & Vulnerability Research","robots":{"index":"index","follow":"follow","max-snippet":"max-snippet:-1","max-image-preview":"max-image-preview:large","max-video-preview":"max-video-preview:-1"},"canonical":"https:\/\/www.corelan.be\/index.php\/2007\/07\/12\/set-up-anonymous-access-to-sharepoint-sites\/","og_locale":"en_US","og_type":"article","og_title":"Set up Anonymous Access to Sharepoint sites - Corelan | Exploit Development & Vulnerability Research","og_description":"\u00a0 The default behaviour for public internet facing websites should allow for anonymous access, but in reality, SharePoint does not accept anonymous access by default. So how can you set up the SharePoint site to accept both anonymous access and domain credentials ?\u00a0 In fact, it is very easy. It might not matter much, but … Continue reading \"Set up Anonymous Access to Sharepoint sites\"","og_url":"https:\/\/www.corelan.be\/index.php\/2007\/07\/12\/set-up-anonymous-access-to-sharepoint-sites\/","og_site_name":"Corelan | Exploit Development & Vulnerability Research","article_publisher":"https:\/\/www.facebook.com\/corelanconsulting","article_published_time":"2007-07-12T16:57:05+00:00","author":"corelanc0d3r","twitter_card":"summary_large_image","twitter_creator":"@corelanc0d3r","twitter_site":"@corelanc0d3r","schema":{"@context":"https:\/\/schema.org","@graph":[{"@type":"TechArticle","@id":"https:\/\/www.corelan.be\/index.php\/2007\/07\/12\/set-up-anonymous-access-to-sharepoint-sites\/#article","isPartOf":{"@id":"https:\/\/www.corelan.be\/index.php\/2007\/07\/12\/set-up-anonymous-access-to-sharepoint-sites\/"},"author":{"name":"corelanc0d3r","@id":"https:\/\/www.corelan.be\/#\/schema\/person\/3be5542b9b0a0787893db83a5ad68e8f"},"headline":"Set up Anonymous Access to Sharepoint sites","datePublished":"2007-07-12T16:57:05+00:00","mainEntityOfPage":{"@id":"https:\/\/www.corelan.be\/index.php\/2007\/07\/12\/set-up-anonymous-access-to-sharepoint-sites\/"},"wordCount":439,"publisher":{"@id":"https:\/\/www.corelan.be\/#organization"},"keywords":["Sharepoint"],"articleSection":["Sharepoint","Windows Server"],"inLanguage":"en-US"},{"@type":"WebPage","@id":"https:\/\/www.corelan.be\/index.php\/2007\/07\/12\/set-up-anonymous-access-to-sharepoint-sites\/","url":"https:\/\/www.corelan.be\/index.php\/2007\/07\/12\/set-up-anonymous-access-to-sharepoint-sites\/","name":"Set up Anonymous Access to Sharepoint sites - Corelan | Exploit Development & Vulnerability Research","isPartOf":{"@id":"https:\/\/www.corelan.be\/#website"},"datePublished":"2007-07-12T16:57:05+00:00","breadcrumb":{"@id":"https:\/\/www.corelan.be\/index.php\/2007\/07\/12\/set-up-anonymous-access-to-sharepoint-sites\/#breadcrumb"},"inLanguage":"en-US","potentialAction":[{"@type":"ReadAction","target":["https:\/\/www.corelan.be\/index.php\/2007\/07\/12\/set-up-anonymous-access-to-sharepoint-sites\/"]}]},{"@type":"BreadcrumbList","@id":"https:\/\/www.corelan.be\/index.php\/2007\/07\/12\/set-up-anonymous-access-to-sharepoint-sites\/#breadcrumb","itemListElement":[{"@type":"ListItem","position":1,"name":"Home","item":"https:\/\/www.corelan.be\/"},{"@type":"ListItem","position":2,"name":"Set up Anonymous Access to Sharepoint sites"}]},{"@type":"WebSite","@id":"https:\/\/www.corelan.be\/#website","url":"https:\/\/www.corelan.be\/","name":"Corelan CyberSecurity Research","description":"Corelan publishes in-depth tutorials on exploit development, Windows exploitation, vulnerability research, heap internals, reverse engineering and security tooling used by professionals worldwide.","publisher":{"@id":"https:\/\/www.corelan.be\/#organization"},"potentialAction":[{"@type":"SearchAction","target":{"@type":"EntryPoint","urlTemplate":"https:\/\/www.corelan.be\/?s={search_term_string}"},"query-input":{"@type":"PropertyValueSpecification","valueRequired":true,"valueName":"search_term_string"}}],"inLanguage":"en-US"},{"@type":"Organization","@id":"https:\/\/www.corelan.be\/#organization","name":"Corelan CyberSecurity Research","url":"https:\/\/www.corelan.be\/","logo":{"@type":"ImageObject","inLanguage":"en-US","@id":"https:\/\/www.corelan.be\/#\/schema\/logo\/image\/","url":"https:\/\/www.corelan.be\/wp-content\/uploads\/2026\/03\/corelanlogo2_small-20.png","contentUrl":"https:\/\/www.corelan.be\/wp-content\/uploads\/2026\/03\/corelanlogo2_small-20.png","width":200,"height":200,"caption":"Corelan CyberSecurity Research"},"image":{"@id":"https:\/\/www.corelan.be\/#\/schema\/logo\/image\/"},"sameAs":["https:\/\/www.facebook.com\/corelanconsulting","https:\/\/x.com\/corelanc0d3r","https:\/\/x.com\/corelanconsulting","https:\/\/instagram.com\/corelanconsult"]},{"@type":"Person","@id":"https:\/\/www.corelan.be\/#\/schema\/person\/3be5542b9b0a0787893db83a5ad68e8f","name":"corelanc0d3r","pronouns":"he\/him","image":{"@type":"ImageObject","inLanguage":"en-US","@id":"https:\/\/secure.gravatar.com\/avatar\/3783bed6acd72d7fa5bb2387d88acbb9a3403e7cada60b2037e1cbb74ad451f9?s=96&d=mm&r=x","url":"https:\/\/secure.gravatar.com\/avatar\/3783bed6acd72d7fa5bb2387d88acbb9a3403e7cada60b2037e1cbb74ad451f9?s=96&d=mm&r=x","contentUrl":"https:\/\/secure.gravatar.com\/avatar\/3783bed6acd72d7fa5bb2387d88acbb9a3403e7cada60b2037e1cbb74ad451f9?s=96&d=mm&r=x","caption":"corelanc0d3r"},"description":"Peter Van Eeckhoutte is the founder of Corelan and a globally recognized expert in exploit development and vulnerability research. With over two decades in IT security, he built Corelan into a respected platform for deep technical research, hands-on training, and knowledge sharing. Known for his influential exploit development tutorials, tools, and real-world training, Peter combines a strong research mindset with a passion for education\u2014helping security professionals understand not just how exploits work, but why.","sameAs":["https:\/\/www.corelan-training.com","https:\/\/instagram.com\/corelanc0d3r","https:\/\/www.linkedin.com\/in\/petervaneeckhoutte\/","https:\/\/x.com\/corelanc0d3r"],"url":"https:\/\/www.corelan.be\/index.php\/author\/admin0\/"}]}},"views":2927,"jetpack_publicize_connections":[],"jetpack_featured_media_url":"","jetpack_sharing_enabled":true,"_links":{"self":[{"href":"https:\/\/www.corelan.be\/index.php\/wp-json\/wp\/v2\/posts\/101","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/www.corelan.be\/index.php\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/www.corelan.be\/index.php\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/www.corelan.be\/index.php\/wp-json\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/www.corelan.be\/index.php\/wp-json\/wp\/v2\/comments?post=101"}],"version-history":[{"count":0,"href":"https:\/\/www.corelan.be\/index.php\/wp-json\/wp\/v2\/posts\/101\/revisions"}],"wp:attachment":[{"href":"https:\/\/www.corelan.be\/index.php\/wp-json\/wp\/v2\/media?parent=101"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/www.corelan.be\/index.php\/wp-json\/wp\/v2\/categories?post=101"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/www.corelan.be\/index.php\/wp-json\/wp\/v2\/tags?post=101"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}