Re: How to change user account properties by ASP.NET?

From: Evgeny Zoldin (zoldin_at_hotmail.com)
Date: 11/23/04

• Next message: Evgeny Zoldin: "Re: How to change user account properties by ASP.NET?"
• Previous message: Joe Kaplan \(MVP - ADSI\): "Re: start process as impersonated account for NETSH DHCP?"
• In reply to: Scott Allen: "Re: How to change user account properties by ASP.NET?"
• Next in thread: Scott Allen: "Re: How to change user account properties by ASP.NET?"
• Reply: Scott Allen: "Re: How to change user account properties by ASP.NET?"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

Date: Tue, 23 Nov 2004 23:37:31 +0100

Hi Scott,

thanks a lot for your help. One more question. is it possible to use
impresonating not for whole application but for selected page of them,
namely that where user will be change its data under imparsonated Admin
account?

Thank you in advance

Evgeny

"Scott Allen" <bitmask@[nospam].fred.net> wrote in message
news:9ra7q0t3440us63d0vce8pje4n0tl6igk1@4ax.com...
> Hi Evgeny:
>
>>I know about impersonation possibility, but it requires to type clear
>>Administrators username and password in code-behind class that will be
>>published on target server.
>
> If you use
> <identity impersonate="true"/>
> in the web.config file, than you are impersonating the client without
> using an explicit username / password. This is probably the safest
> approach, because only local admins would be able to change the
> passwords for the local users.
>
> You can put username and password attributes in the <indentity>
> element and have the password encrypted in the registry. This is
> described in the remarks section of the following:
> http://msdn.microsoft.com/library/default.asp?url=/library/en-us/cpgenref/html/gngrfidentitysection.asp
>
> Note however, that all users will then have a request impersonating an
> admin, so it's a dangerous approach.
>
> --
> Scott
> http://www.OdeToCode.com/blogs/scott/

• Next message: Evgeny Zoldin: "Re: How to change user account properties by ASP.NET?"
• Previous message: Joe Kaplan \(MVP - ADSI\): "Re: start process as impersonated account for NETSH DHCP?"
• In reply to: Scott Allen: "Re: How to change user account properties by ASP.NET?"
• Next in thread: Scott Allen: "Re: How to change user account properties by ASP.NET?"
• Reply: Scott Allen: "Re: How to change user account properties by ASP.NET?"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

Relevant Pages Re: How to change user account properties by ASP.NET? ... > Hi Evgeny: ... than you are impersonating the client without ... because only local admins would be able to change the ... > admin, ... (microsoft.public.de.german.entwickler.dotnet.asp) Re: How to change user account properties by ASP.NET? ... > Hi Evgeny: ... than you are impersonating the client without ... because only local admins would be able to change the ... > admin, ... (microsoft.public.de.inetserver.iis.asp) Re: Admin right for station ... > group to let all domain users automatically be local admins when they ... It runs under the system context and has admin rights. ... (microsoft.public.windowsxp.security_admin) Re: Dynamically modify Web.config ... why you need to run impersonating an Admin as this is not a good idea from a ... This posting is provided "AS IS" with no warranties, and confers no rights. ... > I need to set an impersonation with a domain admin account ... (microsoft.public.dotnet.framework.aspnet.security) Re: How to raise rights... ... CredUI API only exists on XP while LogonUser is ... inaccessible to non-admins on Win2k and NT ... if I'm impersonating an admin, ... > admin, and not the original user which called setup. ... (microsoft.public.win32.programmer.kernel)

• Security
• UNIX
• Linux
• Coding
• Usenet

• News
• Mailing-Lists
• Newsgroups
• Service
• About
• Privacy
• Search
• Imprint