Re: asp.net: changing logon time to get LOGON32_LOGON_NETWORK_CLEARTEXT ?
From: Brian C (anonymous_at_discussions.microsoft.com)
Date: 11/27/03
- Previous message: Randy Charles Morin: "Re: how to secure asp.net code?"
- In reply to: Juri Zenkevitch: "Re: asp.net: changing logon time to get LOGON32_LOGON_NETWORK_CLEARTEXT ?"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Date: Wed, 26 Nov 2003 18:27:46 -0800
Yury,
mode="Windows" will not insure that the the app will
impersonate under the user. However, this will:
<identity impersonate="true" />
It is likely that the users are using the local ASPNET
user.
Brian
>-----Original Message-----
>Err, I meant to say "logon type" in subject :)
>
>"Juri Zenkevitch" <yury@altiris.ee> wrote in message
>news:#D7jIsBtDHA.3744@TK2MSFTNGP11.phx.gbl...
>> Hi All !
>>
>> I get into the problem... My web application, which
uses authentication
>> mode="Windows", so the app will impersonate under the
user, which access
>> it's pages. In the application, I do use
>> "Microsoft.Win32.RegistryKey.OpenRemoteBaseKey", which
fails, because the
>> app identity was (probably) logged on w/out the
NETWORK_CLEARTEXT flag
>> (LogonUser).
>>
>> So, the question is: can I change that flag somehow for
current
>application
>> identity ? I can not do the LogonUser, because my
server-side code do not
>> have the password for user, only it's identity (token)
in Principal
>> object...
>>
>> Any ideas ?
>>
>> Thank you,
>>
>> Yury.
>>
>>
>
>
>.
>
- Previous message: Randy Charles Morin: "Re: how to secure asp.net code?"
- In reply to: Juri Zenkevitch: "Re: asp.net: changing logon time to get LOGON32_LOGON_NETWORK_CLEARTEXT ?"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Relevant Pages
|
|
