Professional Web Applications Themes

Integrated Authentication, Impersonation, and Web Services - ASP.NET Security

Environment: OS: Windows 2003 IIS: 6 ..Net Framework: 1.1 Authentication Scheme: Windows Integrated Authentication Impersonation: Enabled Error Message: Exception Type: System.Net.WebException Status: ProtocolError Response: System.Net.HttpWebResponse Message: The request failed with HTTP status 401: Unauthorized. TargetSite: System.Object[] ReadResponse(System.Web.Services.Protocols.SoapCli entMessage, System.Net.WebResponse, System.IO.Stream, Boolean) HelpLink: NULL Source: System.Web.Services Scenario: I have two server environments. One houses ASP.Net web form applications, the other houses ASP.Net web services. Both use IIS Windows Integrated Authentication and impersonation. When my web forms make calls to the web services, they get 401 errors. I read that NTLM doesn't support delegation, and that Kerberos isn't automatically enabled with WIA. ...

  1. #1

    Default Integrated Authentication, Impersonation, and Web Services

    Environment:
    OS: Windows 2003
    IIS: 6
    ..Net Framework: 1.1
    Authentication Scheme: Windows Integrated Authentication
    Impersonation: Enabled

    Error Message:
    Exception Type: System.Net.WebException
    Status: ProtocolError
    Response: System.Net.HttpWebResponse
    Message: The request failed with HTTP status 401: Unauthorized.
    TargetSite: System.Object[]
    ReadResponse(System.Web.Services.Protocols.SoapCli entMessage,
    System.Net.WebResponse, System.IO.Stream, Boolean)
    HelpLink: NULL
    Source: System.Web.Services

    Scenario:
    I have two server environments. One houses ASP.Net web form applications,
    the other houses ASP.Net web services. Both use IIS Windows Integrated
    Authentication and impersonation. When my web forms make calls to the web
    services, they get 401 errors.

    I read that NTLM doesn't support delegation, and that Kerberos isn't
    automatically enabled with WIA. Do I need to enable Kerberos to get
    impersonation to work accross web servers? What's happening to the
    credentials of the authenticated user?

    Thank you.
    Web Developer Guest

  2. #2

    Default Re: Integrated Authentication, Impersonation, and Web Services

    On Wed, 15 Dec 2004 10:19:02 -0800, "Web Developer" <Web [email]Developerdiscussions.microsoft.com[/email]> wrote:

    Environment:
    OS: Windows 2003
    IIS: 6
    .Net Framework: 1.1
    Authentication Scheme: Windows Integrated Authentication
    Impersonation: Enabled

    Error Message:
    Exception Type: System.Net.WebException
    Status: ProtocolError
    Response: System.Net.HttpWebResponse
    Message: The request failed with HTTP status 401: Unauthorized.
    TargetSite: System.Object[]
    ReadResponse(System.Web.Services.Protocols.SoapCli entMessage,
    System.Net.WebResponse, System.IO.Stream, Boolean)
    HelpLink: NULL
    Source: System.Web.Services

    Scenario:
    I have two server environments. One houses ASP.Net web form applications,
    the other houses ASP.Net web services. Both use IIS Windows Integrated
    Authentication and impersonation. When my web forms make calls to the web
    services, they get 401 errors.

    I read that NTLM doesn't support delegation, and that Kerberos isn't
    automatically enabled with WIA. Do I need to enable Kerberos to get
    impersonation to work accross web servers? What's happening to the
    credentials of the authenticated user?

    Unless you are using Basic authentication (w/o SSL) I believe that you need to implement Kerberos
    delegation in order to access remote resources.

    [url]http://msdn.microsoft.com/library/default.asp?url=/library/en-us/dnbda/html/authaspdotnet.asp[/url]


    Paul ~~~ [email]pclementameritech.net[/email]
    Microsoft MVP (Visual Basic)
    Paul Clement Guest

Similar Threads

  1. Replies: 3
    Last Post: August 16th, 08:45 PM
  2. Integrated Authentication Issue
    By Kevin Olsen in forum ASP.NET Security
    Replies: 0
    Last Post: October 28th, 08:10 PM
  3. integrated windows authentication - web services
    By Tim B in forum ASP.NET Security
    Replies: 3
    Last Post: September 24th, 09:28 AM
  4. Integrated Authentication with Novell?
    By Bill Long in forum ASP.NET Security
    Replies: 0
    Last Post: September 9th, 03:44 PM
  5. integrated Windows authentication
    By Scott Klein in forum ASP
    Replies: 4
    Last Post: August 7th, 01:32 PM

Bookmarks

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •  

1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 19 20 21 22 23 24 25 26 27 28 29 30 31 32 33 34 35 36 37 38 39 40 41 42 43 44 45 46 47 48 49 50 51 52 53 54 55 56 57 58 59 60 61 62 63 64 65 66 67 68 69 70 71 72 73 74 75 76 77 78 79 80 81 82 83 84 85 86 87 88 89 90 91 92 93 94 95 96 97 98 99 100 101 102 103 104 105 106 107 108 109 110 111 112 113 114 115 116 117 118 119 120 121 122 123 124 125 126 127 128 129 130 131 132 133 134 135 136 137 138 139