In .NET, you normally set up forms auth in the config file and then make
sure the logon page sets the auth cookie. From then on, you do not have to
check. If a user times out, they will automatically be taken back to logon,
as specified in the config file.

--
Gregory A. Beamer
MVP; MCP: +I, SE, SD, DBA
Author: ADO.NET and XML: ASP.NET on the Edge

************************************************** **************************
****
Think Outside the Box!
************************************************** **************************
****
"Russel Harvey" <RusselHarvey@hotmail.com> wrote in message
news:0bb101c3471c$b18e3850$a001280a@phx.gbl...
> In my login page:
> Upon seccessfully authenticated, I called
>
> FormsAuthentication.SetAuthCookie(LSUserID.Text,
> RememberCheckbox.Checked)
>
> to record the user signin, where later in other pages, I
> can tell whethere this user is signed on by:
>
> if Request.IsAuthenticated = True
> blah blah
>
> However, this works on one Win2K server, once moved to
> production which is also Win2K + .Net 1.0, the second
> check would always failed, meaning FormsAuthentication
> does have any effect.
>
> I wonder what would make FormsAuthentication works in
> a .Net environments?