Re: WindowsTokenRoleProvider Anyone?

Tech-Archive recommends: Fix windows errors by optimizing your registry

On Thu, 23 Mar 2006 13:41:41 -0800, progrock wrote:

I don't know what to make of this. The error seems to imply the need for
impersonation, which would be bad if true. Problem is, even with
impersonation turned on there is still no joy (same error). Another
thought is that it wants the full domain\account syntax in the login
control. No, that just fails to authenticate entirely. It's probably
something obvious and I'm just too tired to think straight.

I don't think you understand what impersonation does in this context. With
FormsAuthentication, impersonation either impersonates Worker process or
the user credentials supplied in the web.config. It doesn't impersonate
the user logging in. That's why you get the error even when using
impersonation.

WindowsTokenRoleProvider doesn't work very well with FormsAuthenitcation.

A better approach is to use Authorization Manager (aka AzMan), though this
is a little more complex to set up and requires support from your
administrator.
.