Re: Impersonate and shared hosting

From: Ion (icx-spam@spam-noos.fr)
Date: 08/23/02 

From: "Ion" <icx-spam@spam-noos.fr>
Date: Fri, 23 Aug 2002 21:07:46 +0200

Hi Willy.

Instead of "logon" I tested a simpler solution with a web.config containing
a "location" section with "identity impersonate, username, password etc."
It worked fine as long as I had "system" account in machine.config.

It is a pity (aka functionality miss) an application can not access a folder
although it has the right credentials, when a manual login can do it!

Maybe .NET 1.i will get it.

Thanks for confirming the deadlock.

Best regards

Ion Cartiant
http://www.sysoft-sa.com/

"Willy Denoyette [MVP]" <willy.denoyette@pandora.be> wrote in message
news:#MLD9ArSCHA.2556@tkmsftngp11...
> Sorry, but you said " impersonate logged users...." not another user.
> That means you have to call "LogonUser", and that's something wich
requires the process to run in the TCB on Windows 2000.
> It's quite normal that the ISP is not allowing this.
>
> Willy.
>
> "Ion" <icx-spam@spam-noos.fr> wrote in message
news:3d6626ff$0$8620$79c14f64@nan-newsreader-01.noos.net...
> > Willy,
> >
> > Your suggestion means to give the unique pass (folder access) to
visitors.
> > They can pick any file afterwards from the folder.
> >
> > Maybe I was not clear enough. I would like to impersonate (temporarily)
> > *another* security account that gives acces to a protected folder.
People
> > register, using <forms> authentification. This does not give access to
> > protected folder. The access should be made be made by program only, so
it
> > seems I have to change the security level etc..
> >
> > Do I miss something ?
> >
> > Best,
> >
> > Ion Cartiant
> > http://www.sysoft-sa.com/
> >
> >
> >
> > "Willy Denoyette [MVP]" <willy.denoyette@pandora.be> wrote in message
> > news:u32OptoSCHA.1632@tkmsftngp11...
> > > You don't need aspnet_wp.exe to run in the system logon session in
order
> > to impersonate a client.
> > > You only have to set identity impersonate=true and use basic
> > authentication.
> > >
> > > Willy.
> > >
> >
> >
> >
>
>

Relevant Pages

  • Re: Impersonate, Windows Authentication and Database Access
    ... You must grant the read/write permission to the temp folder to the ... > access on the IIS security settings and turned "ON" the impersonate on my ... > OleDb for users that are members of the local Administrators group. ... > The only thing I can do is add all the users to the local Administrators ...
    (microsoft.public.dotnet.framework.aspnet.security)
  • RE: Filecopy to network share
    ... programmatically access a network share folder and copy some files into it. ... Thus, on our domainA webserver, we can impersonate our application to run ... Microsoft MSDN Online Support Lead ... public static extern int LogonUserA(String lpszUserName, ...
    (microsoft.public.dotnet.general)
  • Re: Satellite assembly resources wont load if identity impersonate=true
    ... > folder so that rutnime won't lock the orginal deployed ones. ... > we using impersonate, the impersonated user account may haven't the ... > sufficient permission to create/modify file in the ASP.NET's temporary ... > account according to the monitor result. ...
    (microsoft.public.dotnet.framework.aspnet)
  • Re: file download
    ... The problem is impersonate got failure. ... after impersonate i writen the username, its shows the current username and ... Most likely they are in a folder that does not ... Noww when I click the download button, ...
    (microsoft.public.dotnet.framework.aspnet)
  • Re: File based database (dBASE III+)
    ... Data for the ASP.NET app is on this machine's F: in a shared folder. ... I created a user account on this machine with the same name and ... > If it's Anonymous then you can impersonate and delegate the IUSR account ...
    (microsoft.public.dotnet.framework.aspnet.security)