Re: Impersonate NT user from Anonymous login

From: Shawn H. Mesiatowsky (smesiatowsky_at_spam_no_perfectfit-ind.com)
Date: 02/03/05 

Date: Thu, 3 Feb 2005 16:11:12 -0700

Can the IT department make the IIS server a Domain member? if it is a domain
member then you should be able to authenticate with user: domain\username

"ajamrozek" <ajamrozek@msn.com> wrote in message
news:1107457671.645716.143710@f14g2000cwb.googlegroups.com...
>I have an ASPX page that needs to display data from an Access DB that
> resides on a network resource other than the running server. To access
> the web page itself, I need IIS to have anonymous login set to true,
> but to access the Access DB I need to pass an authenticated network
> user. Not for the DB's sake but for the network directory that it
> resides on.
> Some more environment background: large company with tight server
> control. I don't directly work for the IT dept., so I need to make
> this as easy on IT as possible. Meaning, I can't do any server
> configuration (IIS settings or machine.config) and can not store my
> database on the server. Everything needs to be run from the .Net
> project.
> I've tried the following methods with no success:
> 1. <identity impersonate="true" userName="domain\Username"
> password="password"/>
> fails because this user is not setup on the machine running IIS and
> I won't be able too.
> 2. set the User name and password in IIS anonymous access config to
> the authenticated user. will not work because I will not be able to
> edit these values in production.
> 3. attempted to use API's from MS's KB
> failed because it uses tokens based on the current user, which
> returned 0 for the token so the impersonation never executes.
>
> thanks,
> Alex Jamrozek
>

Relevant Pages

  • [NT] Heap Overrun in HTR Chunked Encoding Could Enable Web Server Compromise
    ... This patch eliminates a newly discovered vulnerability affecting Internet ... in IIS 4.0 and 5.0, and could likewise be used to overrun heap memory on ... allowing code to be run on the server. ... * Microsoft has long recommended disabling HTR functionality unless there ...
    (Securiteam)
  • Re: Problem with connect computer wizard
    ... Make sure the Windows XP client is pointing to the SBS 2003 server as ... Please collect the IIS metabase and the latest IIS log files further ... This newsgroup only focuses on SBS technical issues. ...
    (microsoft.public.windows.server.sbs)
  • RE: IIS Key pairs (how to export an IIS 4.0 self-issued Root CA a nd import into new IIS 4.0 box)
    ... IIS key to an Intel SSL acelerator ... it issues client certificates to the end users. ... Step I - Installing the New Server ... Install NT SP 3 ONLY ...
    (Focus-Microsoft)
  • Re: SBS 2003 After Service Pack 1 for SBS
    ... we can conclude the SBS 2003 SP1 has been applied ... Please help me collect the IIS metabase to check ... and using server management console to reproduce the problem. ... This newsgroup only focuses on SBS technical issues. ...
    (microsoft.public.windows.server.sbs)
  • FW: Microsoft Security Advisory MS 03-007
    ... am trying to find a vulnerability tester/script and I could test it out ... Department of the Army server that had been compromised and that this ... announcement covers IIS 5.1 but not IIS 6, ... How a Hacker Uses SQL Injection to Steal Your SQL Data! ...
    (Focus-Microsoft)