Ask a Question related to ASP.NET Security, Design and Development.
-
Kevin Dorle #1
Extract SID from IWA response
It appears in .NET 2.0 there is a property of the
System.Security.Principal.WindowsIdentity class called User that returns a
string representation of a user's SID after they have authenticated using
IWA. My question, is a similar property in .NET 1.1 from another class that
will return the same information? I know there are several properties that
return a domain/username string but to get the SID requires an DS lookup
function which is performed across the wire. The application we are
developing resides on a web server in a domain that has several dozen trust
relationships to "account" domains across WAN links with varying speeds. To
maximize performance, the user property appears to work without going over
the wire. I am assuming it is getting this from the Kerberos authenticator
that is passed during the IWA handshake.
Thanks,
Kevin
Kevin Dorle Guest
-
Slow login response response on TS 03 in AD mixed mode
We upgraded our NT 4 domain to an AD mixed until we get rid of the NT 4 BDC;s after completing this upgrade users began complaining about how long... -
Response.Flush / Response.Redirect
Hi, I've had a good google and can't find anything already on this so : I'm currently trying to have a 'Page Loading' page on a site. The way... -
AW7 vs. DirectorMX for psychology experiment using response times AND response answers
Hello, I'm very new to application design, but need to develop a web based application to use at multiple schools as part of an experimental... -
Response.Write and Response.Redirect
On my Page_Load event, i need to do some validation and then either let them proceed, or display a error message and boot them back to the previous... -
Joe Kaplan \(MVP - ADSI\) #2 Re: Extract SID from IWA response
The way to do this in .NET 1.1 would be to do a p/invoke on the
GetTokenInformation API using the Token property of the WindowsIdentity
class as the main input. You don't need to do a DS call to get the SID when
you have the token.
There are some nice wrapper classes out there that support this such as the
one on GotDotNet Win32 Security Library or DataMarvel.
Joe K.
"Kevin Dorle" <Kevin [email]Dorle@discussions.microsoft.com[/email]> wrote in message
news:33A76FA6-6405-4909-8F77-24BB55417A0B@microsoft.com...> It appears in .NET 2.0 there is a property of the
> System.Security.Principal.WindowsIdentity class called User that returns a
> string representation of a user's SID after they have authenticated using
> IWA. My question, is a similar property in .NET 1.1 from another class
> that
> will return the same information? I know there are several properties
> that
> return a domain/username string but to get the SID requires an DS lookup
> function which is performed across the wire. The application we are
> developing resides on a web server in a domain that has several dozen
> trust
> relationships to "account" domains across WAN links with varying speeds.
> To
> maximize performance, the user property appears to work without going over
> the wire. I am assuming it is getting this from the Kerberos
> authenticator
> that is passed during the IWA handshake.
>
> Thanks,
> Kevin
Joe Kaplan \(MVP - ADSI\) Guest
Reply With QuoteSimilar Questions and Discussions
Posting Permissions
- You may not post new threads
- You may post replies
- You may not post attachments
- You may not edit your posts
