Information
If authorization is determined, the user will be automatically redirected to a page where they must submit their credentials. NOTE: This check audits the default system drive. If your organization's configuration is different the '%systemdrive%' variable will need to be adjusted. NOTE2: Change <framework_version> to the version of .NET that is in use by your organization. NOTE3: In .NET Framework 2.0 and above, authorization element is configured in the web.config file. NOTE4: In .NET Framework 1.1 and 1.0, authorization element is configured in the machine.config file.
Solution
Make sure 'Authorization - 'allow users'' is for unauthenticated users to view Virtual Directories, and they do not need to be secured with SSL, set allow users.