Re: help on caller credentials !! :-(

hi dominick,

thanks for those points I will give a try.
By the way concerning those sample I download did you see my last mesage
based on the excfeption I get ? Could not make it run :-(

regard
serge

"Dominick Baier" wrote:

several things..

a) as Joe pointed out - switch to Network Service
b) you get the client identity from Thread.CurrentPrincipal
c) if you want to delegate the token to a backend service you need an impersonationLevel="Delegation"
d) you additionally need impersonate="true" in your config file, you you
wanto to use the auto impersonation feature


very much like the sample you downloaded ;)


-----
Dominick Baier (http://www.leastprivilege.com)

Developing More Secure Microsoft ASP.NET 2.0 Applications (http://www.microsoft.com/mspress/books/9989.asp)

Dear all,

I start to loose my hairs. Hoep someone could help me to recover..:-)
I have build a remote object hosted in a Windows Service runing as
LocalService.
I have then a claient application which calling that remote object and
based
on the caller credential I shouzld authorise hit or not to access to
back end
database.
The situation is as follow :
My client is running as BOB. BOB is calling the remote object for data
storage. What I try to do is retriveing the caller credential from my
remote
object in order to athauticated for further process. The problem is
that when
I check the wndows identity on my server side, it return the context
on which
my service is running and not my caller's context.
MY server config file is as follow :

<channels>
<!--<channel ref="tcp" port="8090"
useDefaultCredentials="False">-->
<channel ref="tcp" port="8090" secure="True"
impersonationLevel="Impersonate" protectionLevel="EncryptAndSign">
<serverProviders>
<formatter ref="binary" typeFilterLevel="Full"/>
</serverProviders>
</channel>
</channels>
Note that I am using .NEt 2.0

Thnaks again for your help ( I am fighting for a full week now on this
grrr
:-()
regards
serge



.

Relevant Pages

  • where to get OS 9 install discs
    ... server to download from. ... Any leads welcome. ... Bob ...
    (comp.sys.mac.misc)
  • Re: Presentations
    ... Bob I wrote: ... they will have to download it. ... Is there a way to setup a server so we can leave the ...
    (microsoft.public.win2000.networking)
  • Re: Problem Updating New Messages from NTTP News Server OE
    ... > as far as I know and he doesn't have a server in his setup. ... download the answer to a problem he had posted in the Outlook group and I had seen the answer almost immediately on July 1. ... sure how taking the check out of the download headers boxes would have helped. ... pane 3) Get headers at a time 4) No check in mark all messages as read when exiting newsgroup ...
    (microsoft.public.windows.inetexplorer.ie6_outlookexpress)
  • Re: OL2003 OAB: Exceeded the download limit set by your administra
    ... 13:50:37 Sam Jones: Synch operation completed ... reference to Outlook Verbose Logging. ... Sort Locale being used by the server is: ... trying to download the OAB then closing Outlook ...
    (microsoft.public.exchange.clients)
  • Re: SUS
    ... > I have setup a SUS Server on win2k. ... 0-2.reg will not configure your machine to automatically download updates from ... critical updates or service packs that your machine needs. ... It will also ask you if you want to install them, ...
    (microsoft.public.windows.server.general)