Reasons for the change
The change was done based on the security threat analysis and security hardening initiative.
What was done
Logic of creation IIS application has been changed and Basic Authentication has been disabled for all platform IIS applications:
What solutions will be affected
All solutions that create virtual applications through configuration file (<webs><web name=”<Name>” _cke_saved_name=”<Name>” _cke_saved_name=”<Name>” _cke_saved_name=”<Name>” relativeDir=”<Dir>”/></webs>) will have Basic Authentication disabled by default.