This issue of mine scratched my head and I am bald already..!!
OK coming to the point,
1. One web application (.Net/C#) hosted on IIS 7 on Windows 2008 Server - running on port A - Application pool: Classic .NET pool, windows authentication ONLY
2. Another web application (Classic ASP) hosted on the same IIS 7 - same server windows 2008 server on port B - application pool: Default application pool, anonymous authentication
The user logs on to PORT A web application, the application identifies the user (windows login) and establishes session variables (.NET sessions) for the user.
There is a link on this (port A) web application which redirects the user to port B web application
When the user clicks that link, the request lands on an authentication page (ASP) which validates the user against an SQL server database and the establishes the session variables (this time it will be ASP sessions) and displays the page.
There will be a link on this ASP page to take the user to .NET application (where the sessions are already established). When the user clicks on that link, I get an object reference not set error (for session value extraction)
This happens on the production server but not on the test server (assumably they are the same atleast from the code perspective)
Please shed some light on this...