Security
From: Demetri (Demetri_at_discussions.microsoft.com)
Date: 10/08/04
- Next message: Leon Welicki: "RE: ErrorPage from ErrHandler"
- Previous message: Param R.: "Re: common assemblies"
- Next in thread: Jeffrey Palermo [MCP]: "Re: Security"
- Reply: Jeffrey Palermo [MCP]: "Re: Security"
- Messages sorted by: [ date ] [ thread ]
Date: Fri, 8 Oct 2004 12:35:02 -0700
I have a client that would like the asp.net application to have security as
follows:
Impersonated using account XXXXX for the purpose of using SSPI in making the
database connection. This way no user information is stored anywhere but IIS
security settings.
At the same time the app will be in need of capturing user NT credentials to
identify who is actually accessing the web application. The NT account itself
will not be set up in SQL server. So the app can not use integrated security.
Normally the web.config would have the db connection string using a db
defined user account. However, in this case we need the db user to be the
same user as the web app is running under yet we need the client user's NT
info.
Any help is appreciated.
-Demetri
- Next message: Leon Welicki: "RE: ErrorPage from ErrHandler"
- Previous message: Param R.: "Re: common assemblies"
- Next in thread: Jeffrey Palermo [MCP]: "Re: Security"
- Reply: Jeffrey Palermo [MCP]: "Re: Security"
- Messages sorted by: [ date ] [ thread ]
Relevant Pages
|
