Re: remoting & security.

Tech-Archive recommends: Fix windows errors by optimizing your registry

From: Sam Santiago (ssantiago_at_n0spam-SoftiTechture.com)
Date: 08/11/04 

Date: Wed, 11 Aug 2004 16:23:03 -0700

I have not implemented any custom sinks. If you just want basic
authentication of clients you might want to host your remote objects in IIS.
Here's a another link with info:

Remoting Overview / Security
http://msdn.microsoft.com/library/default.asp?url=/library/en-us/cpguide/html/cpconSecurity.asp?frame=true

Here's an excerpt:
"The user authentication and authorization model for the server might vary
widely, but hosting your remote objects in IIS supports the most complex
solutions. They require little coding, and you have default support on the
server for discovering the WindowsPrincipal object or GenericPrincipal
object of the client. This is convenient when you need to impersonate the
client to perform some function on the user's behalf."

Thanks,

Sam 

-- 
_______________________________
Sam Santiago
ssantiago@n0spam-SoftiTechture.com
http://www.SoftiTechture.com
_______________________________
"r" <r@discussions.microsoft.com> wrote in message
news:4FB9B7CF-EDFB-4DEB-A89D-72B226F5DB57@microsoft.com...
> Hi Sam ...
>
> thanx for this...
>
> Is writing custom sinks the only option to do this. If in the same network
> then the auth info should be delegated to the server by default. isnt it
??
>
> Have you implemented any custom sinks ?? Does that add significant
overhead
> to the system ??
>
> Cheers
>
>
>
> "Sam Santiago" wrote:
>
> > Check out this guide from the Patterns and Practices group:
> >
> > ..NET Remoting Security
> >
http://msdn.microsoft.com/library/en-us/secmod/html/secmod11.asp?frame=true
> >
> > Thanks,
> >
> > Sam
> >
> > -- 
> > _______________________________
> > Sam Santiago
> > ssantiago@n0spam-SoftiTechture.com
> > http://www.SoftiTechture.com
> > _______________________________
> > "r" <r@discussions.microsoft.com> wrote in message
> > news:F3E7DFEE-6049-42CC-B924-2E8B66691561@microsoft.com...
> > > I have a client proxy which accesses a remote server object, both on
the
> > same
> > > network domain. How would i get details of the client authentication
> > > information (login/role) at the server ??
> > >
> > > Would this be passed across with the remote call or i need to
explicitly
> > > send it across & extract ???
> > >
> > > Advance thanx.
> > >
> > > cheers
> >
> >
> >

Relevant Pages

  • Re: Windows Authentication, Single sign on and Active Directory
    ... service proxy client fails to connect due to authentication failure and then ... Co-author of "The .NET Developer's Guide to Directory Services Programming" ... The server is always in the domain. ...
    (microsoft.public.dotnet.framework.aspnet.security)
  • Re: BASIC authentication Issues with IE - Part II - Solved but WHY?
    ... it does not know the difference between a request from IE or from ... some other HTTP client. ... Some other authentication schemes are more ... IIS can sometimes remember the token for a particular set of credentials so ...
    (microsoft.public.inetserver.iis.security)
  • Re: Sporadic IAS Authentication problems
    ... * Some times however, a physical reboot of the client laptop is required, ... *The remote access policy in IAS is set to grant access to the group 'Domain ... Proxy-Policy-Name = Use Windows authentication for all users ...
    (microsoft.public.internet.radius)
  • Re: ISAPI Authentication
    ... The job of your authentication filter is to accept ... non-Windows credentials from the client and then map them to a Windows ...
    (microsoft.public.inetserver.iis.security)
  • Re: WCF security advice (and clarification) needed
    ... You, the client, resolve the foo.mycompany.com hostname within your ... TCP/IP) with that ticket as the security token. ... There are two parties participating in a security scenario, the server ... HTTP supports other authentication ...
    (microsoft.public.dotnet.framework.webservices)