Specifying token for map service gets redirected to login page

Discussion created by CarolynWhite on Jul 2, 2011
Latest reply on Apr 3, 2015 by donbrown44
I went to http://myserver/ArcGIS/rest/services
and generated a token.

The token was for userA and so should show the serviceA.

I then used that token
http://myserver/ArcGIS/rest/services/serviceA/Mapserver?token= token value

Then I was sent to the login page.
I enter the login/pw for userA and then was able to open the serviceA metadata and see serviceA in the javascript api.

So while I had to give the login/pw to generate the token  - the user still has to login.

Is that how it is suppose to work? or having passed the token obtained for userA should I be able to see serviceA without another login?

My security store is sqlserver. I have https turned off for now in development.