Ask a Question related to ASP.NET Security, Design and Development.
-
Roan Schuurman #1
Fixed Impersonation vs Current login user
I have a ASp.NET application which performs a http request to another
web site on the same server but different virtual directory. when i
set impersonate = true and a fixed account, the http request is done
with that account. when leave the account blank (current login user)
then the request fails because he has no account. integrated
authentication is on, on both virtual directories.
please some help!
regards,
Roan Schuurman
Roan Schuurman Guest
-
user and admin login on same login page
Hello, I have a user login page which also doubles as my administrator login. Currently, my method of logging in doesnt seem to be working... -
login going to the current url
hi i have a login transaction on a page, this page has url parameters passed through it, so when the user logs in i want he/she to be taken back... -
Default user for Impersonation
What user does the system default to if I have <identity impersonate="true"/> in my web.config file? Authentication mode= "None" Thank-you -
Login to LDAP using current credentials
Hello, Here is my situation. I have developed several apps that require authentication to access. For authentication, I have the users enter... -
Suppress login dialog when impersonation on?
Does anyone know how I can suppress the "Enter Network Password" dialog when attempting to enumerate directories and/or files in ASP.NET? I want... -
Ken Schaefer #2 Re: Fixed Impersonation vs Current login user
You have a double-hop authentication issue I think.
With IWA, IIS doesn't have the user's username/password - only a token,
which isn't sufficient to construct a new HTTP request passing credentials.
I think you'll need to configure delegation. Here are some links:
[url]http://support.microsoft.com/default.aspx?scid=kb;en-us;810572[/url]
HOW TO: Configure an ASP.NET Application for a Delegation Scenario
[url]http://support.microsoft.com/?id=294382[/url]
Authentication May Fail with "401.3" Error If Web Site's "Host Header"
Differs from Server's NetBIOS Name
[url]http://support.microsoft.com/default.aspx?kbid=325894[/url]
HOW TO: Configure Computer Accounts and User Accounts So That They Are
Trusted for Delegation in Windows Server 2003 Enterprise Edition (also
includes Windows 2000 instructions)
[url]http://www.microsoft.com/resources/documentation/WindowsServ/2003/standard/proddocs/en-us/Default.asp?url=/resources/documentation/WindowsServ/2003/standard/proddocs/en-us/se_con_del_computer.asp[/url]
Configuring Users and Computers for delegation (there's a couple of pages -
use the links in the nav bar to get to them)
Windows 2003 Protocol Transition
[url]http://www.microsoft.com/technet/prodtechnol/windowsserver2003/technologies/security/constdel.mspx[/url]
Cheers
Ken
"Roan Schuurman" <roan_schuurman@hotmail.com> wrote in message
news:3547a0e2.0405110734.4d69a1d5@posting.google.c om...
: I have a ASp.NET application which performs a http request to another
: web site on the same server but different virtual directory. when i
: set impersonate = true and a fixed account, the http request is done
: with that account. when leave the account blank (current login user)
: then the request fails because he has no account. integrated
: authentication is on, on both virtual directories.
: please some help!
:
: regards,
:
: Roan Schuurman
Ken Schaefer Guest
Reply With QuoteSimilar Questions and Discussions
Posting Permissions
- You may not post new threads
- You may post replies
- You may not post attachments
- You may not edit your posts
