Ask a Question related to ASP.NET Security, Design and Development.
-
Jim Moon #1
ASPNET and NETWORK SERVICE accounts hitting SQL Server
Hello.
Running IIS 6 and ASP.NET, the only way an application can access SQL Server
seems to be as "NT AUTHORITY / NETWORK SERVICE" (or an alias specified in
the <identity> element within "web.config"). This is analagous to the
"ASPNET" user for IIS 5 and ASP.NET.
In a secure (SSL) web running in IIS 6, we're interested in getting from
ASP.NET the behavior we get from ASP 3.0. When the ASP application logs
onto the SQL Server database, it does so under the logon of the actual user.
There does not appear to me to be a way to make this happen. And, as a
result, we feel as though we have lost a layer of security--the security of
the database.
Any ideas or suggestions are welcome.
Thanks,
Jim
Jim Moon Guest
-
Acrobat Pro 9 crashes when opened on network accounts
As was mentioned before a local user has no problem. With a networked user (home on a 10.5.4 server) we observe the same lockup as described above.... -
Access Denied - Network Service vs Local Service
I have been struggling with my ASP.NET (V1.1 sp1) websites getting an 'Access Denied' message. I have track down the problem (I think) to the IIS... -
Server 2003 upgrade - XP accounts
We currently have an NT4.0 single server domain with XP workstations that have domain user accounts set up. We are looking on updating the NT4.0... -
ASPNET Account Security Problem - Running a Web Application over a network share
All, If anyone has been following my trials over the last week see(Setting up a Web Application on IIS 5.1 and ASP.Net Security Problems). I'm... -
URGENT: Loss of wireless connection when hitting another wireless network
1. change the channel on the wireless router 2. make sure the SSID name is not what shipped in the box 3. uncheck the advanced setting to... -
Jim Moon #2 Re: ASPNET and NETWORK SERVICE accounts hitting SQL Server
Inside
<system.web>
I added
<identity impersonate="true" />
It worked like a charm!
Jim
"Jim Moon" <jmoon()at()uab.edu> wrote in message
news:%23Vv1BatXEHA.3156@TK2MSFTNGP12.phx.gbl...Server> Hello.
>
> Running IIS 6 and ASP.NET, the only way an application can access SQLuser.> seems to be as "NT AUTHORITY / NETWORK SERVICE" (or an alias specified in
> the <identity> element within "web.config"). This is analagous to the
> "ASPNET" user for IIS 5 and ASP.NET.
>
> In a secure (SSL) web running in IIS 6, we're interested in getting from
> ASP.NET the behavior we get from ASP 3.0. When the ASP application logs
> onto the SQL Server database, it does so under the logon of the actualof> There does not appear to me to be a way to make this happen. And, as a
> result, we feel as though we have lost a layer of security--the security> the database.
>
> Any ideas or suggestions are welcome.
>
> Thanks,
> Jim
>
>
Jim Moon Guest
-
Jim Moon #3 Re: ASPNET and NETWORK SERVICE accounts hitting SQL Server
Inside
<system.web>
I added
<identity impersonate="true" />
It works great!
Jim
"Jim Moon" <jmoon()at()uab.edu> wrote in message
news:%23Vv1BatXEHA.3156@TK2MSFTNGP12.phx.gbl...Server> Hello.
>
> Running IIS 6 and ASP.NET, the only way an application can access SQLuser.> seems to be as "NT AUTHORITY / NETWORK SERVICE" (or an alias specified in
> the <identity> element within "web.config"). This is analagous to the
> "ASPNET" user for IIS 5 and ASP.NET.
>
> In a secure (SSL) web running in IIS 6, we're interested in getting from
> ASP.NET the behavior we get from ASP 3.0. When the ASP application logs
> onto the SQL Server database, it does so under the logon of the actualof> There does not appear to me to be a way to make this happen. And, as a
> result, we feel as though we have lost a layer of security--the security> the database.
>
> Any ideas or suggestions are welcome.
>
> Thanks,
> Jim
>
>
Jim Moon Guest
Reply With QuoteSimilar Questions and Discussions
Posting Permissions
- You may not post new threads
- You may post replies
- You may not post attachments
- You may not edit your posts
