Quote Originariamente inviata da djciko Visualizza il messaggio
prova ad invertire l'ordine dell'allow e del deny
Stessa cosa, a quanto pare non è lo short circuit il problema. Riporto il web.config per completezza:

codice:
<?xml version="1.0"?>

<!--
  For more information on how to configure your ASP.NET application, please visit
  http://go.microsoft.com/fwlink/?LinkId=169433
  -->


<configuration>
  <system.net>
    <mailSettings>
      <smtp deliveryMethod="network" deliveryFormat="SevenBit"  from="robot-noreply@domain.com">
        <network
          host="localhost"
          port="1213"
          defaultCredentials="true"
        />
      </smtp>
    </mailSettings>
  </system.net>
  <location path="Sys_Adm">
    <system.web>
      <authorization>
        <allow roles="Admin"/>
        <deny users="*"/>
      </authorization>  
    </system.web>
  </location>    
  <system.web>
      
      <authentication mode="Forms" />
      <compilation debug="true" targetFramework="4.5" />
      <httpRuntime targetFramework="4.5" />
      <membership defaultProvider="AspNetSqlMembershipProvider">
        <providers>
          <clear/>
          <!--Provider locale-->
          <add name="AspNetSqlMembershipProvider"
               type="System.Web.Security.SqlMembershipProvider"
               connectionStringName="conn"
               minRequiredPasswordLength="5"
               minRequiredNonalphanumericCharacters="0"
               requiresQuestionAndAnswer="false"
               applicationName="Example"/>


          <!--Provider aruba-->
          


        </providers>
        
      </membership>


      <roleManager enabled="true" defaultProvider="AspNetSqlRoleProvider">
        <providers>
          <clear/>
          <!--Provider locale-->
          <add name="AspNetSqlRoleProvider"
               type="System.Web.Security.SqlRoleProvider, System.Web, Version=2.0.0.0, Culture=neutral, PublicKeyToken=b03f5f7f11d50a3a"
               connectionStringName="conn"
               applicationName="Example"/>


          <!--Provider aruba-->
          
        </providers>
      </roleManager>
    </system.web>
  
  <connectionStrings>
    <add name="conn"
         connectionString="Data Source=xxxx;Initial Catalog=xxx;Integrated Security=True"
         providerName="System.Data.SqlClient"/>
  </connectionStrings>
  <appSettings>
    <add key="ValidationSettings:UnobtrusiveValidationMode" value="none"> </add>
  </appSettings>
  


  
</configuration>