Re: Calling NetUserGetInfo from ASP.NET app

From: "Michael D'Angelo" <nospamnmdange@xxxxxxxxxxxxxxx>
Date: Thu, 25 May 2006 15:42:09 -0400

"Joe Kaplan (MVP - ADSI)" <joseph.e.kaplan@xxxxxxxxxxxxxxxxxxxxxxxx> wrote
in message news:%23nuA5VCgGHA.2416@xxxxxxxxxxxxxxxxxxxxxxx

Regarding permissions, that could be. Perhaps there is some DCOM thing or
something? I really don't know. I've never tried to use those APIs in an
architecture like this. In web apps, I mostly do delegation stuff with
HTTP, SQL and and LDAP.

Well I discovered if I put the user in the Pre-Windows 2000 Compatible group
it works. However, the user does have read access to the object in the tree
I'm trying to get info on. It seems to be something else that's failing,
which isn't getting audited in the event log.

Also, when using basic auth, you aren't really using Kerberos delegation
since basic auth performs a local login with plain credentials. There is
only one hop involved there.

Joe K.

--
Joe Kaplan-MS MVP Directory Services Programming
Co-author of "The .NET Developer's Guide to Directory Services
Programming"
http://www.directoryprogramming.net
--

Follow-Ups:
- Re: Calling NetUserGetInfo from ASP.NET app
  - From: Michael D'Angelo

References:
- Calling NetUserGetInfo from ASP.NET app
  - From: Michael D'Angelo
- Re: Calling NetUserGetInfo from ASP.NET app
  - From: Michael D'Angelo
- Re: Calling NetUserGetInfo from ASP.NET app
  - From: Joe Kaplan \(MVP - ADSI\)
- Re: Calling NetUserGetInfo from ASP.NET app
  - From: Michael D'Angelo
- Re: Calling NetUserGetInfo from ASP.NET app
  - From: Joe Kaplan \(MVP - ADSI\)
- Re: Calling NetUserGetInfo from ASP.NET app
  - From: Michael D'Angelo
- Re: Calling NetUserGetInfo from ASP.NET app
  - From: Michael D'Angelo
- Re: Calling NetUserGetInfo from ASP.NET app
  - From: Joe Kaplan \(MVP - ADSI\)

Prev by Date: Looking for unit tests for Custom Provider
Next by Date: Re: Profile provider question
Previous by thread: Re: Calling NetUserGetInfo from ASP.NET app
Next by thread: Re: Calling NetUserGetInfo from ASP.NET app
Index(es):
- Date
- Thread

Relevant Pages

Re: Calling NetUserGetInfo from ASP.NET app
... delegation work with... ... It is probably a lot easier than getting delegation working and I ... Joe Kaplan-MS MVP Directory Services Programming ... Co-author of "The .NET Developer's Guide to Directory Services ...
(microsoft.public.dotnet.framework.aspnet.security)
Re: Help encrypt conn string - no ASP, no server, cant protect keys, cant use Windows Authentica
... Joe Kaplan-MS MVP Directory Services Programming ... Co-author of "The .NET Developer's Guide to Directory Services Programming" ... I also considered putting it in the normal location in the registry as ... Installer property with the result and your installer can then just ...
(microsoft.public.dotnet.security)
Re: Help encrypt conn string - no ASP, no server, cant protect keys, cant use Windows Authentica
... Joe Kaplan-MS MVP Directory Services Programming ... Co-author of "The .NET Developer's Guide to Directory Services Programming" ... also considered putting it in the normal location in the registry as you ... Installer property with the result and your installer can then just ...
(microsoft.public.dotnet.security)
Re: Getting GROUPS from Active Directory by inputing an AD username
... Joe Kaplan-MS MVP Directory Services Programming ... Co-author of "The .NET Developer's Guide to Directory Services Programming" ... DirectoryEntry searchRoot = new DirectoryEntry( ... WindowsIdentity for a user and get their groups. ...
(microsoft.public.dotnet.framework.aspnet.security)
Re: Getting GROUPS from Active Directory by inputing an AD username
... Joe Kaplan-MS MVP Directory Services Programming ... Co-author of "The .NET Developer's Guide to Directory Services ... DirectoryEntry searchRoot = new DirectoryEntry( ... generate a WindowsIdentity for a user and get their groups. ...
(microsoft.public.dotnet.framework.aspnet.security)