We have developed .net 4.5 application but the user is able to access the individual pages by going to that page directly. for example user can access http://websitename/test.aspx
(without being authenticated or forced to login.aspx page).
How can we efficiently do it? In asp we can put a security check in every page force the user to authenticate but in .net we don't want to do it that way. Do we need to impose .net form authentication? or any IIS settings? any ideas would be appreciated.
Please give as much details as possible.