Re: Login failed for user 'NT AUTHORITY\ANONYMOUS LOGON'
From: Joe Kaplan \(MVP - ADSI\) (joseph.e.kaplan_at_removethis.accenture.com)
Date: 07/01/05
- Next message: Justin: "Re: Login failed for user 'NT AUTHORITY\ANONYMOUS LOGON'"
- Previous message: Justin: "Re: Login failed for user 'NT AUTHORITY\ANONYMOUS LOGON'"
- In reply to: Justin: "Re: Login failed for user 'NT AUTHORITY\ANONYMOUS LOGON'"
- Next in thread: Justin: "Re: Login failed for user 'NT AUTHORITY\ANONYMOUS LOGON'"
- Reply: Justin: "Re: Login failed for user 'NT AUTHORITY\ANONYMOUS LOGON'"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Date: Fri, 1 Jul 2005 11:48:19 -0500
Yeah, I'm not sure if you can get this to work in that case. You would
essentially be looking for the "hack" way of doing this with matching local
machine accounts. I'm not really too familiar with how or why that even
works, so I'm probably not the right guy to ask.
Is there any way that you can actually just get this working correctly,
possibly by using a machine that is a domain member? It seems like a bad
idea to pin your integration scenario on what is basically a hack.
Joe K.
"Justin" <Justin@discussions.microsoft.com> wrote in message
news:3BB8FB68-FB4F-4B8B-AB9A-A7B9F37B89C2@microsoft.com...
> Hi Joe,
>
> Thank you for responding. Unfortunately I'm running the webserver on my
> computer, which is not on the same domain as the SQL Server. This is
> because
> I just VPN into my client to do my work. I know that there is "the rub".
> :-)
>
>
> "Joe Kaplan (MVP - ADSI)" wrote:
>
>> Is the SQL server box in the same domain as the web server (or do they
>> have
>> a trust)? When you impersonate via web.config this way, it should work.
>> There should be no reason to have machine accounts with matching IDs if
>> the
>> domain stuff is configured correctly.
>>
>> As you have discovered, these types of issues can be really painful to
>> debug
>> as there is no well known, straightforward technique for diagnosing what
>> went wrong with your impersonation.
>>
>> Joe K.
>>
>> "Justin" <Justin@discussions.microsoft.com> wrote in message
>> news:2CDF22AC-CA14-490D-8799-927DEF54B141@microsoft.com...
>> >I know this has been out there a thousand times. I've looked and looked
>> >and
>> > can't find anything that will solve my problem. I'm not even sure it
>> > is
>> > solveable.
>> >
>> > I have a client that I VPN into. My computer is not on their domain.
>> >
>> > I have a local webservice and I was to use to access a SQL server on
>> > their
>> > domain. I have set impersonation to true and put the username and
>> > password
>> > of the domain user in the web.config.
>> >
>> > <identity impersonate="true" userName="domain\user" password="password"
>> > />
>> >
>> > I also created a local user on my computer with the same username and
>> > password. (This is how I was able to get the webservice asmx page to
>> > successfully load and display the available webservices).
>> >
>> > However, when I try to actually call the webservice and access the sql
>> > server I get the classic "Login failed for user 'NT AUTHORITY\ANONYMOUS
>> > LOGON'" error.
>> >
>> > I've tried everything I can think of, even creating a
>> > WindowsImpersonationContext object. No luck.
>> >
>> > The sql server *has* to use integrated security so a connection string
>> > is
>> > "right out".
>> >
>> > Any ideas?
>> >
>> > Thanks,
>> >
>> > Justin
>>
>>
>>
- Next message: Justin: "Re: Login failed for user 'NT AUTHORITY\ANONYMOUS LOGON'"
- Previous message: Justin: "Re: Login failed for user 'NT AUTHORITY\ANONYMOUS LOGON'"
- In reply to: Justin: "Re: Login failed for user 'NT AUTHORITY\ANONYMOUS LOGON'"
- Next in thread: Justin: "Re: Login failed for user 'NT AUTHORITY\ANONYMOUS LOGON'"
- Reply: Justin: "Re: Login failed for user 'NT AUTHORITY\ANONYMOUS LOGON'"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Relevant Pages
|
