Ask a Question related to ASP.NET Security, Design and Development.
-
Carl #1
Security issue with DirectoryServices
In an attempt to programmatically create a website using
Dim site As New DirectoryEntry(CType(objIIs.Invoke("Create", "IIsWebServer",
intSiteID), DirectoryEntry))
....
site.Invoke("SetInfo")
works fine until the SetInfo is called.
It produces an "Access denied" from source "mscorlib". I am sure this as
been address here previously but can someone who has resolved this kindly
repost the fix/workaround.
Thanks
Carl Guest
-
Odd security issue
We have set-up our HR dept. with Contribute to manage their Intranet content. In doing so, I created a security group on the server and applied it... -
Is this a security issue
While trying to signon at a website, I got the following PHP code back. I suppose that their apache was mistakenly returning php text instead of... -
Similar issue with .NET Security
Hello; having similar ASP.NET security issues. Upgrading a number of ASP classic apps to .NET and haveeverything done but cant figure out how to... -
Major ASP.Net Security Issue?
I have found what I believe to be a serious security issue in ASP.Net. If you have: 1. Your website configured for anonymous access 2. Elect... -
New security issue
New security update will not download on my Computer (HP....Windows XP). Message states that I need to see if Cryptographic is in my computer.... -
Joe Kaplan \(MVP - ADSI\) #2 Re: Security issue with DirectoryServices
Are you modifying IIS on the local machine or a remote machine? Is the
current thread executing with an account with administrator rights?
Joe K.
"Carl" <rushrush@verizon.net> wrote in message
news:urkRvHmOFHA.1476@TK2MSFTNGP09.phx.gbl...> In an attempt to programmatically create a website using
> Dim site As New DirectoryEntry(CType(objIIs.Invoke("Create",
> "IIsWebServer",
> intSiteID), DirectoryEntry))
>
> ...
>
> site.Invoke("SetInfo")
>
> works fine until the SetInfo is called.
>
> It produces an "Access denied" from source "mscorlib". I am sure this as
> been address here previously but can someone who has resolved this kindly
> repost the fix/workaround.
>
> Thanks
>
>
Joe Kaplan \(MVP - ADSI\) Guest
-
Carl #3 Re: Security issue with DirectoryServices
The ASP.NET pages are running on the local machine. I am using the machine's
administartor/password for site.username/site.password as:
Dim site As New DirectoryEntry(CType(objIIs.Invoke("Create", "IIsWebServer",
intSiteID), DirectoryEntry))
site.Username = "Administrator"
site.Password = "xxyyzz1234"
"Joe Kaplan (MVP - ADSI)" <joseph.e.kaplan@removethis.accenture.com> wrote
in message news:umcAVHtOFHA.164@TK2MSFTNGP12.phx.gbl...kindly> Are you modifying IIS on the local machine or a remote machine? Is the
> current thread executing with an account with administrator rights?
>
> Joe K.
>
> "Carl" <rushrush@verizon.net> wrote in message
> news:urkRvHmOFHA.1476@TK2MSFTNGP09.phx.gbl...> > In an attempt to programmatically create a website using
> > Dim site As New DirectoryEntry(CType(objIIs.Invoke("Create",
> > "IIsWebServer",
> > intSiteID), DirectoryEntry))
> >
> > ...
> >
> > site.Invoke("SetInfo")
> >
> > works fine until the SetInfo is called.
> >
> > It produces an "Access denied" from source "mscorlib". I am sure this as
> > been address here previously but can someone who has resolved this>> > repost the fix/workaround.
> >
> > Thanks
> >
> >
>
Carl Guest
-
Joe Kaplan \(MVP - ADSI\) #4 Re: Security issue with DirectoryServices
Ah, the IIS provider ignores passed in credentials. I really wish MS would
document this more clearly as it trips up a lot of people!
It only works with the security context of the current thread
(System.Security.Principal.WindowsIdentity.GetCurr ent().Name). So, you need
to make sure that is set to the administrator account you need.
Typically you do that with either impersonation to change the thread
identity or by changing the worker process identity.
Joe K.
"Carl" <rushrush@verizon.net> wrote in message
news:%23zlxuyGPFHA.524@TK2MSFTNGP09.phx.gbl...> The ASP.NET pages are running on the local machine. I am using the
> machine's
> administartor/password for site.username/site.password as:
>
> Dim site As New DirectoryEntry(CType(objIIs.Invoke("Create",
> "IIsWebServer",
> intSiteID), DirectoryEntry))
> site.Username = "Administrator"
> site.Password = "xxyyzz1234"
>
>
> "Joe Kaplan (MVP - ADSI)" <joseph.e.kaplan@removethis.accenture.com> wrote
> in message news:umcAVHtOFHA.164@TK2MSFTNGP12.phx.gbl...> kindly>> Are you modifying IIS on the local machine or a remote machine? Is the
>> current thread executing with an account with administrator rights?
>>
>> Joe K.
>>
>> "Carl" <rushrush@verizon.net> wrote in message
>> news:urkRvHmOFHA.1476@TK2MSFTNGP09.phx.gbl...>> > In an attempt to programmatically create a website using
>> > Dim site As New DirectoryEntry(CType(objIIs.Invoke("Create",
>> > "IIsWebServer",
>> > intSiteID), DirectoryEntry))
>> >
>> > ...
>> >
>> > site.Invoke("SetInfo")
>> >
>> > works fine until the SetInfo is called.
>> >
>> > It produces an "Access denied" from source "mscorlib". I am sure this
>> > as
>> > been address here previously but can someone who has resolved this>>>>> > repost the fix/workaround.
>> >
>> > Thanks
>> >
>> >
>>
>
Joe Kaplan \(MVP - ADSI\) Guest
-
Carl #5 Re: Security issue with DirectoryServices
Many thanks Joe!
For those that need further information, I found this.
[url]http://msdn.microsoft.com/library/default.asp?url=/library/en-us/secmod/html/secmod15.asp[/url]
"Joe Kaplan (MVP - ADSI)" <joseph.e.kaplan@removethis.accenture.com> wrote
in message news:#H3IXaHPFHA.2252@TK2MSFTNGP15.phx.gbl...would> Ah, the IIS provider ignores passed in credentials. I really wish MSneed> document this more clearly as it trips up a lot of people!
>
> It only works with the security context of the current thread
> (System.Security.Principal.WindowsIdentity.GetCurr ent().Name). So, youwrote> to make sure that is set to the administrator account you need.
>
> Typically you do that with either impersonation to change the thread
> identity or by changing the worker process identity.
>
> Joe K.
>
> "Carl" <rushrush@verizon.net> wrote in message
> news:%23zlxuyGPFHA.524@TK2MSFTNGP09.phx.gbl...> > The ASP.NET pages are running on the local machine. I am using the
> > machine's
> > administartor/password for site.username/site.password as:
> >
> > Dim site As New DirectoryEntry(CType(objIIs.Invoke("Create",
> > "IIsWebServer",
> > intSiteID), DirectoryEntry))
> > site.Username = "Administrator"
> > site.Password = "xxyyzz1234"
> >
> >
> > "Joe Kaplan (MVP - ADSI)" <joseph.e.kaplan@removethis.accenture.com>>> > in message news:umcAVHtOFHA.164@TK2MSFTNGP12.phx.gbl...> > kindly> >> Are you modifying IIS on the local machine or a remote machine? Is the
> >> current thread executing with an account with administrator rights?
> >>
> >> Joe K.
> >>
> >> "Carl" <rushrush@verizon.net> wrote in message
> >> news:urkRvHmOFHA.1476@TK2MSFTNGP09.phx.gbl...
> >> > In an attempt to programmatically create a website using
> >> > Dim site As New DirectoryEntry(CType(objIIs.Invoke("Create",
> >> > "IIsWebServer",
> >> > intSiteID), DirectoryEntry))
> >> >
> >> > ...
> >> >
> >> > site.Invoke("SetInfo")
> >> >
> >> > works fine until the SetInfo is called.
> >> >
> >> > It produces an "Access denied" from source "mscorlib". I am sure this
> >> > as
> >> > been address here previously but can someone who has resolved this> >> >> > repost the fix/workaround.
> >> >
> >> > Thanks
> >> >
> >> >
> >>
> >>
> >
>
Carl Guest
Reply With QuoteSimilar Questions and Discussions
Posting Permissions
- You may not post new threads
- You may post replies
- You may not post attachments
- You may not edit your posts
