Implementing ASP.NET Impersonation

Previous page
Table of content
Next page

Impersonation, instead of writing ASP.NET code for authentication and authorization, employs IIS to authenticate the user. If the user is authenticated, it passes an authenticated token to the ASP.NET application; otherwise , it passes an unauthenticated token. In an ASP.NET application, if the impersonation is enabled, ASP.NET assumes the client identity and relies on the settings in the NTFS directories and files to permit or deny the request. If impersonation is disabled, it runs with the local machine identity. For ASP compatibility, impersonation is disabled by default.

To enable impersonation, configure the configuration file in the application root directory as follows .

[View full width] 
 
 [View full width] 
 <identity impersonate="true" name="Username" password="Password" />  [17]

[17] In .NET Framework graphics/ccc.gif version 1.1 you can put the password in an encrypted (DPAPI) registry key. There is a graphics/ccc.gif hotfix for .NET Framework version 1.0. Read more about it at http://support.microsoft.com graphics/ccc.gif /default.aspx?scid=kb;en-us;329250.


Previous page
Table of content
Next page
.NET Security and Cryptography
.NET Security and Cryptography
ISBN: 013100851X
EAN: 2147483647
Year: 2003
Pages: 126
Authors: Peter Thorsteinson, G. Gnana Arun Ganesh
BUY ON AMAZON
Java I/O
Managing Enterprise Systems with the Windows Script Host
MySQL Clustering
The Complete Cisco VPN Configuration Guide
Sap Bw: a Step By Step Guide for Bw 2.0
Oracle SQL*Plus: The Definitive Guide (Definitive Guides)
flylib.com © 2008-2017.
If you may any questions please contact us: flylib@qtcs.net
Privacy policy