Re: Using HttpContext from a web server?

From: Nicole Calinoiu (calinoiu)
Date: 04/13/05 

Date: Wed, 13 Apr 2005 15:58:03 -0400

Weird... Is it remotely possible that the client application is actually
running in the context of the ASPNET account? If not, is your web service
application using any custom HTTP handlers or modules (as specified in
machine.config or its web.config)?

"Jeff Connelly" <nomail@thank.you> wrote in message
news:O8zh2OFQFHA.248@TK2MSFTNGP15.phx.gbl...
>
> "Nicole Calinoiu" <calinoiu REMOVETHIS AT gmail DOT com> wrote in message
> news:uaPKGwEQFHA.508@TK2MSFTNGP12.phx.gbl...
>> "Jeff Connelly" <nomail@thank.you> wrote in message
>> news:u0dM8IEQFHA.4024@TK2MSFTNGP10.phx.gbl...
>>> This doesn't work like I'd expect. Looking at this page
>>> http://msdn.microsoft.com/library/default.asp?url=/library/en-us/dnnetsec/html/SecNetAP05.asp
>>>
>>> Table 4 IIS Integrated Windows, impersonate false, authentication mode
>>> Windows. It seems to be saying that HttpContext.Current.User.Identity
>>> should give the identity of the user that's been authenticated.
>>> However, it's always MACHINE\APSNET, just like WindowsIdentity.
>>>
>>> For the web service side, I have anonymous access off, and Integrated
>>> Windows Auth on.
>>
>> In IIS, or just in your web.config file? If IIS is set to allow only
>> Windows integrated authentication for the web service file, you really
>> should be seeing the client user identified via the HttpContext user. If
>> this still doesn't work, rebooting the machine might help. If if
>> doesn't, could you please indicate what versions of Windows and the .NET
>> Framework you are using?
>
> In web.config, I have <authentication mode="Windows"/>. In IIS, I have
> Anonymous access off and Integrated Windows authorization on. Rebooting
> did not seem to help. I'm using Visual C# .NET 1.1, and Windows XP Pro
> version 2002 SP2.
>

Relevant Pages

  • Re: Impersonated login to web service from outside domain
    ... the client is part of the domain group. ... : integrated windows auth fails. ... You can try creating an identical local user on the server (as the one you ... next call to the web service (ie. the process requiring the credentials to ...
    (microsoft.public.dotnet.framework.aspnet.security)
  • Re: Impersonated login to web service from outside domain
    ... the client is part of the domain group. ... You can try creating an identical local user on the server (as the one you ... next call to the web service (ie. the process requiring the credentials to ... Any other windows server gurus care to clarify? ...
    (microsoft.public.dotnet.framework.aspnet.security)
  • Which X ?
    ... I don't mean a popup window, ... of a client application floating menu type thingy. ... customers can't get enough of popup windows. ... I am working on web service service consumers. ...
    (sci.physics)
  • Re: How to call Web Service Securely
    ... you could provide a logon screen in the client app and create a NetworkCredential from that - then use SSL and basic auth to access the web service ... make a web method via dialup to my IIS Web Service. ... integrated security without having to have the standard windows login ...
    (microsoft.public.dotnet.framework.aspnet.security)
  • RE: AD clients can no longer connect to DC in 2003
    ... That didn't do anything (and wouldn't rebooting the DC, ... >> down 1st listed DNS server and client can no long ... >> though if client is rebooted it uses the 2nd DNS ... >> Everything was installed from scratch for Windows ...
    (microsoft.public.windows.server.active_directory)