Re: Impersonate, Windows Authentication and Database Access

From: Andrea D'Onofrio [MSFT] (andreado_at_online.microsoft.com)
Date: 04/14/04

• Next message: Arturo: "Re: Why is "Act as part of the operating system" dangerous?"
• Previous message: [MSFT]: "Re: cdoobject.send causes UnauthorizedAccessException"
• In reply to: Fabricio Sperandio: "Impersonate, Windows Authentication and Database Access"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

---

Date: Wed, 14 Apr 2004 12:13:02 +0200

You must grant the read/write permission to the temp folder to the
impersonated account (all the Users in your scenario).
Follow the suggestions of this article:
http://support.microsoft.com/?id=825738

HtH,
Andrea

-- 
This posting is provided "AS IS" with no warranties, and confers no rights.
"Fabricio Sperandio" <fabricio@masonichomes.com.au.invalid> wrote in message
news:uJJYl2rGEHA.2084@TK2MSFTNGP10.phx.gbl...
> Hi everyone,
>
> I am having problems in my Intranet web site. I recently changed the
> authentication mode from forms to windows. I turned "OFF" the anonymous
> access on the IIS security settings and turned "ON" the impersonate on my
> Web.config.
>
> That is ok, I am impersonating the user currently logged on each
workstation
> and it was working fine.
>
> The problem is that I just can execute a query on my Access database using
> OleDb for users that are members of the local Administrators group. For
the
> rest of them i received an "System.Data.OleDb.OleDbException: Unspecified
> error" message.
>
> Everyone has "Full Control" over the whole web site folder, the bin
folder,
> database, all of them and their respective files (*.mdb, *.dll).
>
> What's going one here? Help me!
>
> The only thing I can do is add all the users to the local Administrators
> group, and then it works.
>
> Cheers,
>
> Fabrício
>
>

---

• Next message: Arturo: "Re: Why is "Act as part of the operating system" dangerous?"
• Previous message: [MSFT]: "Re: cdoobject.send causes UnauthorizedAccessException"
• In reply to: Fabricio Sperandio: "Impersonate, Windows Authentication and Database Access"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

---

Relevant Pages RE: Filecopy to network share ... programmatically access a network share folder and copy some files into it. ... Thus, on our domainA webserver, we can impersonate our application to run ... Microsoft MSDN Online Support Lead ... public static extern int LogonUserA(String lpszUserName, ... (microsoft.public.dotnet.general) Re: Satellite assembly resources wont load if identity impersonate=true ... > folder so that rutnime won't lock the orginal deployed ones. ... > we using impersonate, the impersonated user account may haven't the ... > sufficient permission to create/modify file in the ASP.NET's temporary ... > account according to the monitor result. ... (microsoft.public.dotnet.framework.aspnet) Re: file download ... The problem is impersonate got failure. ... after impersonate i writen the username, its shows the current username and ... Most likely they are in a folder that does not ... Noww when I click the download button, ... (microsoft.public.dotnet.framework.aspnet) Re: File based database (dBASE III+) ... Data for the ASP.NET app is on this machine's F: in a shared folder. ... I created a user account on this machine with the same name and ... > If it's Anonymous then you can impersonate and delegate the IUSR account ... (microsoft.public.dotnet.framework.aspnet.security) Re: Restrict take ownership rights ... the machine (these are the people who have access to the folder I want to ... I need to be sure anyone in local admin ... ownership of a folder. ... I want to ensure that local administrators cannot come along ... (microsoft.public.security)

---

We are proud to have Web Hosting and Rack Housing from 9 Net Avenue Deutschland.
(16)