Re: ASP.net authentication issue

Tech-Archive recommends: Repair Windows Errors & Optimize Windows Performance

Hi Gregory

I currently have no problem getting the logs from the server running the IIS
but do not know what to start with when trying to connect to other machines
on the same domain. Any suggestion on how to start with ? I have
impersonate set to true in the web.config and have no problem getting the
authenticated users' information.

Thanks
Peter

"Gregory A. Beamer" <NoSpamMgbworld@xxxxxxxxxxxxxxxxxx> wrote in message
news:Xns9C565867AEB77gbworld@xxxxxxxxxxxxxxxx
"Peter" <peterpao@xxxxxxx> wrote in
news:ekAcX00DKHA.1540@xxxxxxxxxxxxxxxxxxxx:

Hi

My IIS is running on a domain server and requires authentication for
all AD users to access my application. I would like to have my
application to access some of the resources (e.g Event logs) on a
remote server, which is on the same domain as the IIS server. Can I
use the authenticated user account to acess other servers in the
application instead of using the default IIS ASP account (since this
account do not have sufficient rights on all other servers) ? In
that case, access rights can depends on the Authenticated user.

If you log the person into your site (which can be done without a log in
screen with proper permissions), you can impersonate the user to get at
other resources.

The event log may be tricky, however, even with a domain user. This is
not guaranteed, as I have not done it, but I have found that contacting
resources outside of IIS is tricky, esp. on other machines.

If you end up with a problem, you could potentially set up a windows
service on the IIS box and call to it for the information. A simply WCF
service end for the windows service can save you tons of heartache. Take
the time to spec this out completely before starting the work, as you
need to really think through this type of system.

Good luck!


--
Gregory A. Beamer
MVP; MCP: +I, SE, SD, DBA

Twitter: @gbworld
Blog: http://gregorybeamer.spaces.live.com

*******************************************
| Think outside the box! |
*******************************************


.

Relevant Pages

  • [NT] Heap Overrun in HTR Chunked Encoding Could Enable Web Server Compromise
    ... This patch eliminates a newly discovered vulnerability affecting Internet ... in IIS 4.0 and 5.0, and could likewise be used to overrun heap memory on ... allowing code to be run on the server. ... * Microsoft has long recommended disabling HTR functionality unless there ...
    (Securiteam)
  • Re: Problem with connect computer wizard
    ... Make sure the Windows XP client is pointing to the SBS 2003 server as ... Please collect the IIS metabase and the latest IIS log files further ... This newsgroup only focuses on SBS technical issues. ...
    (microsoft.public.windows.server.sbs)
  • RE: IIS Key pairs (how to export an IIS 4.0 self-issued Root CA a nd import into new IIS 4.0 box)
    ... IIS key to an Intel SSL acelerator ... it issues client certificates to the end users. ... Step I - Installing the New Server ... Install NT SP 3 ONLY ...
    (Focus-Microsoft)
  • Re: SBS 2003 After Service Pack 1 for SBS
    ... we can conclude the SBS 2003 SP1 has been applied ... Please help me collect the IIS metabase to check ... and using server management console to reproduce the problem. ... This newsgroup only focuses on SBS technical issues. ...
    (microsoft.public.windows.server.sbs)
  • FW: Microsoft Security Advisory MS 03-007
    ... am trying to find a vulnerability tester/script and I could test it out ... Department of the Army server that had been compromised and that this ... announcement covers IIS 5.1 but not IIS 6, ... How a Hacker Uses SQL Injection to Steal Your SQL Data! ...
    (Focus-Microsoft)