Ask a Question related to ASP.NET Security, Design and Development.
-
Tim Menninger #1
Network File access using anonymous access
I have seen a number of entries related to accessing remote resources (files
in my case) that need to reside on a remote server. We must leave our files
on a remote server due to their size. All of the solutions that I have run
across have used impersonation with some type of windows or forms based
security in the ASP.NET application. Our application does not require user
authentication so we use never collect usernames and passwords. The
application trying to access the remote resource is a webservice but I do
not want to grant the entire web service access to the remote resource.
Is there a way to set full access to a particular remote resource directory
that the ASPNET user has access to or a way to specify a username and
password at runtime when I access the remote resource?
Thanks,
Tim
Tim Menninger Guest
-
VB Component debugging as anonymous access
Hello, I'd like to debug a VB component without activating Basic/Integrated security on the Web Server, just the anonymous access. I need this to... -
IIS 6.0 with anonymous access and on MX 6.1
I was having a hard time setting up IIS 6.0 with anonymous access on MX6.1 I was able to run .asp extension but when running .cfm, I got the HTTP... -
Anonymous & Authenticated Access (Together?)
I'm trying to create a web service that contains functions available to both Anonymous & Authenticated access. Now I am having problems with... -
Please help with iis/asp.net config for anonymous access.
Is this a virtual directory on a network share? Have you supplied the correct crendentials when setting up the virtual directory? If this is not on... -
Network File Access Difficulties
I have 3 computers (2 Win98SE, 1 XP Pro) connected to a router for cable modem. All machines can access the Internet ok. All machines can see each... -
Jim Cheshire [MSFT] #2 RE: Network File access using anonymous access
Hi Tim,
There are several ways to accomplish this, but the most secure method is
code-level impersonation. Essentially, you call the LogonUser API and
impersonate a user with access to the remote share. After you do your
work, you revert to running under the ASPNET user.
Here's an article that describes how you can do that:
[url]http://support.microsoft.com/default.aspx?scid=KB;EN-US;306158[/url]
Jim Cheshire [MSFT]
MCP+I, MCSE, MCSD, MCDBA
Microsoft Developer Support
[email]jamesche@online.microsoft.com[/email]
This post is provided "AS-IS" with no warranties and confers no rights.
--------------------microsoft.public.dotnet.framework.aspnet.security: 10909>From: "Tim Menninger" <tmenninger@forensicsexplorers.com>
>Subject: Network File access using anonymous access
>Date: Thu, 22 Jul 2004 10:58:17 -0400
>Lines: 18
>X-Priority: 3
>X-MSMail-Priority: Normal
>X-Newsreader: Microsoft Outlook Express 6.00.2800.1409
>X-MimeOLE: Produced By Microsoft MimeOLE V6.00.2800.1409
>Message-ID: <em6$cx$bEHA.3420@TK2MSFTNGP12.phx.gbl>
>Newsgroups: microsoft.public.dotnet.framework.aspnet.security
>NNTP-Posting-Host: user194.ctx.com 65.201.150.194
>Path: cpmsftngxa06.phx.gbl!TK2MSFTNGP08.phx.gbl!TK2MSFTN GP12.phx.gbl
>Xref: cpmsftngxa06.phx.gbl(files>X-Tomcat-NG: microsoft.public.dotnet.framework.aspnet.security
>
>I have seen a number of entries related to accessing remote resources>in my case) that need to reside on a remote server. We must leave our files
>on a remote server due to their size. All of the solutions that I have run
>across have used impersonation with some type of windows or forms based
>security in the ASP.NET application. Our application does not require user
>authentication so we use never collect usernames and passwords. The
>application trying to access the remote resource is a webservice but I do
>not want to grant the entire web service access to the remote resource.
>
>Is there a way to set full access to a particular remote resource directory
>that the ASPNET user has access to or a way to specify a username and
>password at runtime when I access the remote resource?
>
>Thanks,
>
>Tim
>
>
>Jim Cheshire [MSFT] Guest
-
Raterus #3 Re: Network File access using anonymous access
First off, you can't set permissions for the aspnet user on a remote computer, it is a computer-level account, not a domain account. Take a look at this article
[url]http://support.microsoft.com/default.aspx?scid=kb;en-us;306158[/url]
You can specify a domain username/password using the second example on this page, and access the remote resource only when you need it. All the other times, the webservice won't have any access.
--Michael
"Tim Menninger" <tmenninger@forensicsexplorers.com> wrote in message news:em6$cx$bEHA.3420@TK2MSFTNGP12.phx.gbl...> I have seen a number of entries related to accessing remote resources (files
> in my case) that need to reside on a remote server. We must leave our files
> on a remote server due to their size. All of the solutions that I have run
> across have used impersonation with some type of windows or forms based
> security in the ASP.NET application. Our application does not require user
> authentication so we use never collect usernames and passwords. The
> application trying to access the remote resource is a webservice but I do
> not want to grant the entire web service access to the remote resource.
>
> Is there a way to set full access to a particular remote resource directory
> that the ASPNET user has access to or a way to specify a username and
> password at runtime when I access the remote resource?
>
> Thanks,
>
> Tim
>
>Raterus Guest
Reply With QuoteSimilar Questions and Discussions
Posting Permissions
- You may not post new threads
- You may post replies
- You may not post attachments
- You may not edit your posts
