Ask a Question related to ASP.NET Security, Design and Development.
-
Paul P #1
Deploying Web App inside a DMZ
I want to deploy my web app inside a DMZ. I set up the IIS to allow Anonymous Logi
and I am going to impersonate an account and connect to a SQL Server databas
inside the firewall. The account we are trying to impersonate is a Domain account
Now the question is How do I do that
In my webconfig file I have impersonate=true and I know I can put the username password in there also
But when I do that I still get Login failed for Null user
Do I have to create a local account on the DMZ box that matches the Domain account I am trying to impersonate
The SQL Server has the Domain account added as a SQL Server Login and is granted access to the database I
want to use. The app works fine from my Intranet but when I move it to the DMZ box I have a problem. I
says Login failed for Null user. I have read some articles that points to using the ASPNET worker process account but I want to use a proxy account
Do I need to do something within IIS or modify the webconfig file, or modify the machine.config file???
Any help would be appreciated........
Paul P Guest
-
Problem Deploying
Hi! I've had trouble deploying quite a complex Cairngorm solution so I created a mere Hello World application and tried to deploy that ~... -
Deploying flash 8 via GPO
I am trying to get flash installed to my client workstations via GPO and it is not working. I assigned install_flash_player_active_x.msi to the... -
Deploying to end users
I develop tiny to smallish websites for small businesses (big deal I hear you say!) and having recently purchased Studio 8, with Contribute 3, I... -
deploying web service
I have developed a webservice that my application uses .Both the werbservice and the application runs on local host . I have created reference to... -
Dynamic temp. datagrid col.gen. -Session access inside a class inside a UserCtrl
Hello Dear Professionals: Based on this document:... -
Paul Glavich #2 Re: Deploying Web App inside a DMZ
Since your web machine cannot access the domain, then it will obviously be
unable to impersonate. Adding a local account matching the domain account
would probably work, but you'd have to do this for each domain account that
was to access the box, which would not be practical I would think. Setting
the web.config to impersonate a particlar local account would work but dont
like doing this in the web.config becuase of the relatively easy access of
this file to malicious eyes (whether internal or external) and this is even
though you can encrypt the credentias via setreg.
--
- Paul Glavich
"Paul P" <anonymous@discussions.microsoft.com> wrote in message
news:E987D561-494F-467C-A1E4-7E4B4214BC38@microsoft.com...Anonymous Login> I want to deploy my web app inside a DMZ. I set up the IIS to allowdatabase> and I am going to impersonate an account and connect to a SQL Serveraccount.> inside the firewall. The account we are trying to impersonate is a Domainusername password in there also.>
> Now the question is How do I do that?
>
> In my webconfig file I have impersonate=true and I know I can put theaccount I am trying to impersonate?> But when I do that I still get Login failed for Null user.
>
> Do I have to create a local account on the DMZ box that matches the Domaingranted access to the database I> The SQL Server has the Domain account added as a SQL Server Login and isthe DMZ box I have a problem. It> want to use. The app works fine from my Intranet but when I move it tousing the ASPNET worker process account but I want to use a proxy account.> says Login failed for Null user. I have read some articles that points tomodify the machine.config file????>
> Do I need to do something within IIS or modify the webconfig file, or>
> Any help would be appreciated........
Paul Glavich Guest
Reply With QuoteSimilar Questions and Discussions
Posting Permissions
- You may not post new threads
- You may post replies
- You may not post attachments
- You may not edit your posts
