The forms authentication model in Episerver uses the default membership and role system in ASP.NET. Configuration of membership and role providers is done in web.config file for the website. The Episerver sample sites have a number of predefined users, groups and roles, both for managing editorial content as well as for administering the e-commerce tasks.
To configure forms authenication, set the authentication type in the system.web section of the web.config.
<authentication mode="Forms"> <forms name=".EPiServerLogin" loginUrl="Util/login.aspx" timeout="4320" defaultUrl="~/" /> </authentication>