Re: "Requested registry access is not allowed" and Web Service cal
From: Clint (cjmueller_at_gmail.com)
Date: 12/14/04
- Next message: Faraz: "generating dll at runtime"
- Previous message: David K.: "Saving DataGrid changes to database"
- In reply to: Brian Brown: "Re: "Requested registry access is not allowed" and Web Service cal"
- Next in thread: Nicole Calinoiu: "Re: "Requested registry access is not allowed" and Web Service call"
- Messages sorted by: [ date ] [ thread ]
Date: 14 Dec 2004 09:29:36 -0800
Don't mention it - there's always other things to work on here :)
As it stands, that user is a base AD user (only a member of "Domain
Users" and a few groups dedicated to this program alone). Seems odd
that you'd be restricted to a certain permission set in order to access
a web service, unless I'm misunderstanding that I need to apply the
permission set in code and not the actual user. Either way - it's not
my specialty, so I'll take a closer look and see what crops up.
To answer your question - the code above is simply a test, a proof of
concept. The process it needs to complete is integral, the means of
doing so lean very heavily towards a central, remote server doing the
processing (I'll explain a little below).
The concept is rather straight forward - I need a central means of
performing transactions (if they were performed from the desktop, we'd
have to purchase a slew of licenses at a rather high cost, as opposed
to using a server that already has the product we'd need on it). The
web service is called from a desktop application that requires a user
to login using their domain login and account, and then impersonates
that user whenever it makes a call to the SQL server (for example, if
TestUser happens to run the program while I'm logged into the
workstation, they have less rights than me, and the program as well as
sql server would take on the rights of that user, not who's actually
logged into the workstation).
I wanted the same means of accessing sql through the web service as
using the desktop app, only certain users can access certain stored
procesudes - no generic accounts that allow access to all stored procs.
The idea was solid ... but it seems executing it isn't as simple as I
had figured it would be.
I have a few generic domain accounts at my disposal, two with only
"User" rights, and my own which is considered a local administrator.
If you have any suggestions, I'm certainly open to them. Thanks again
for taking your time to look over this!
Clint
- Next message: Faraz: "generating dll at runtime"
- Previous message: David K.: "Saving DataGrid changes to database"
- In reply to: Brian Brown: "Re: "Requested registry access is not allowed" and Web Service cal"
- Next in thread: Nicole Calinoiu: "Re: "Requested registry access is not allowed" and Web Service call"
- Messages sorted by: [ date ] [ thread ]
Relevant Pages
|
