Re: How to access other machines' event log files from a web server?

From: Dominick Baier [DevelopMentor] <dbaier@xxxxxxxxxxxxxxxxxxxxxxxxxxxxx>
Date: Thu, 15 Dec 2005 09:23:33 -0800

Hello Andrew,

Have you enabled delegation on the server?
whom do you impersonate?

---------------------------------------
Dominick Baier - DevelopMentor
http://www.leastprivilege.com

Hello, friends,

We have a .net web app, which will need to access event log files of
other machines in our company's network using
System.Diagnostics.EventLog namespace.

In Web.config, we set:

<identity impersonate="true"/>

In IIS Directory Security setting tab, we checked all Authenticated
Access, and unchecked Anonymous Access.

But, it still does not work. When a user visit this web app, he/she
has no problem to visit other pages, except the one that needs to
retrieve event log info from other machines. The error message is:

Access to the registry key  is denied.

Any ideas, reference papers? Help please....

Thanks.

Prev by Date: Re: Creating custom Membership Provider
Next by Date: Re: Creating custom Membership Provider
Previous by thread: Re: About ASP.Net Impersonation
Next by thread: Re: Custom memebrship provider problem
Index(es):
- Date
- Thread

Relevant Pages

RE: WindowsIdentity.Impersonate() fails
... > Dominick Baier - DevelopMentor ... > creating WindowsIdentity object with the duplicatetoken obtained from ... > i am trying to impersonate but is gives error saying "unable to ...
(microsoft.public.dotnet.security)
Re: Multi-Domain Authentication for Windows Services
... Dominick Baier - DevelopMentor ... > if the trusts aren't in place in the first place? ... >> impersonate the user and perform the admin functions in the ...
(microsoft.public.dotnet.security)
Re: means can, not is
... that means that the request is executed in the security context of the client or IUSR. ... Dominick Baier - DevelopMentor ... that means I can impersonate on the server side. ...
(microsoft.public.dotnet.framework.aspnet.security)
Re: Securing static files
... Dominick Baier - DevelopMentor ... they are kicked back to the login page. ... The user may log in with other credentials. ...
(microsoft.public.dotnet.framework.aspnet.security)
Re: How to determine if the logged on user is in a group
... Dominick Baier - DevelopMentor ... I found that you to reboot the SERVER after you create a new group and put users in it so that the new group and the users appear in the whoami list on the server. ... although he is a member of these groups. ...
(microsoft.public.dotnet.security)