If you're using IE only then require Windows NT challenge/response authentication.
If you may need to use any other browser to connect to the site then specify
'Basic Authentication'. If you have no worry of inside malicious attack, you could even
use anonymous access.
It is suggested that you disable session state.
Copy the web pages to the application directory defined above