Re: Asp.net impersonate

From: Joe Kaplan \(MVP - ADSI\) (joseph.e.kaplan_at_removethis.accenture.com)
Date: 08/29/04

  • Next message: Mohamed Sharaf: "Re: ASP.NET with ADirectory role based authentication" 
    Date: Sat, 28 Aug 2004 21:49:45 -0500

    I don't think impersonation loads the user profile of the account being
    impersonated. If you think about it, that would make impersonation very
    slow.

    Do you need the user profile loaded for some reason?

    Joe K.

    "Frederik Vermeersch via .NET 247" <anonymous@dotnet247.com> wrote in
    message news:%23$tKgsPjEHA.3148@TK2MSFTNGP10.phx.gbl...
    > Hi,
    >
    > My global.asax contains:
    > <authentication mode="Windows" />
    > <identity impersonate="true"/>
    >
    > in my aspx page Environment.UserName returns the correct impersonated
    username,
    > but Environment.GetEnvironmentVariable("USERPROFILE") returns the
    userprofile of the ASPNET user, being: C:\Documents and
    Settings\COMPUTERNAME\ASPNET
    > (Strange behaviour, but I asume that this is by design.)
    > Is there no way to return the userprofile for the impersonated account?
    >
    > Thanks,
    > Frederik
    >
    > -----------------------
    > Posted by a user from .NET 247 (http://www.dotnet247.com/)
    >
    > <Id>EUpSiezJAUCDSil1IuWbOg==</Id>

  • Next message: Mohamed Sharaf: "Re: ASP.NET with ADirectory role based authentication"

    Relevant Pages

    • Re: Asp.net impersonate
      ... > Hi Joe, ... >> I don't think impersonation loads the user profile of the account being ... that would make impersonation very ...
      (microsoft.public.dotnet.framework.aspnet.security)
    • Re: Asp.net impersonate
      ... Active Directory?For example if i allow only members in a security group in ... > I don't think impersonation loads the user profile of the account being ... that would make impersonation very ... >> Is there no way to return the userprofile for the impersonated account? ...
      (microsoft.public.dotnet.framework.aspnet.security)
    • Re: SetPassword access denied
      ... safely invoke SetPassword etc..... ... impersonation or using the process token without impersonation) is NOT ... account that is used for performing remote activities in the directory. ... Co-author of "The .NET Developer's Guide to Directory Services ...
      (microsoft.public.windows.server.active_directory)
    • Re: VS.NET 2005 and the "allowDefinition=MachineToApplication" error
      ... Your description of impersonation is great. ... If you want to use the default configured account, eliminate that entry, or configure it as: ... The easiest way to assign correct permissions to all required directories is to run: ... I re-started IIS and tried to access my ASPX page again -- same ...
      (microsoft.public.dotnet.framework.aspnet)
    • [Full-disclosure] Maybe nothing so shady; depends on the motive.
      ... There may be no impersonation going on. ... attempted use of a disabled account would produce messages about "account foo login fail" ... SecureWorks was still reading email addressed to David Maynor. ...
      (Full-Disclosure)