Security :: Some Or All Identity References Couldn't Translate?

Jun 2, 2010

We use HttpContext.Current.User.Identity.Name to resolve the name of the currently loggen in user in the intranet sites we develop. Normally this works adequately, but we've recently encountered problems when installing an intranet on an IIS7.5 Server. The weird thing is that ASP.NET throws an error when executing an extremely simple page for debugging purposes:

<%@ Page Language="C#" %>
<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "[URL]/TR/xhtml1/DTD/xhtml1-transitional.dtd">
<script runat="server">
</script>
<html xmlns="[URL]/1999/xhtml">
<head runat="server">
<title></title>
</head>
<body>
<form id="form1" runat="server">
<div>
<%= HttpContext.Current.User.Identity.Name %>
</div>
</form>
</body>
</html>

The error is:

[Code]....

[IdentityNotMappedException: Some or all identity references could not be translated.] System.Security.Principal.SecurityIdentifier.Translate(IdentityReferenceCollection sourceSids, Type targetType, Boolean forceSuccess) +309 System.Security.Principal.SecurityIdentifier.Translate(Type targetType) +125 System.Security.Principal.WindowsIdentity.GetName() +154 System.Security.Principal.WindowsIdentity.get_Name() +42 ASP.test_default_aspx.__Renderform1(HtmlTextWriter __w, Control parameterContainer) in c:inetpubwebsitewwwroot extranet estdefault.aspx:16 System.Web.UI.Control.RenderChildrenInternal(HtmlTextWriter writer, ICollection children) +115 System.Web.UI.HtmlControls.HtmlForm.RenderChildren(HtmlTextWriter writer) +253 System.Web.UI.HtmlControls.HtmlForm.Render(HtmlTextWriter output) +87 System.Web.UI.HtmlControls.HtmlForm.RenderControl(HtmlTextWriter writer) +53 System.Web.UI.Control.RenderChildrenInternal(HtmlTextWriter writer, ICollection children) +240 System.Web.UI.Page.Render(HtmlTextWriter writer) +38 System.Web.UI.Page.ProcessRequestMain(Boolean includeStagesBeforeAsyncPoint, Boolean includeStagesAfterAsyncPoint) +4240

The beauty of it all is that an old school, classic ASP page that basically does the same thing doesn't throw an error, but just does what it has to do:

<%
response.write "Remote User: " & Request.ServerVariables("REMOTE_USER")
%>

This code simply delivers the name of the remote user. But the ASP.Net version doesn't deliver. The same server, same directory, same user. Different ASP version. Does anyone have an idea?

View 2 Replies


Similar Messages:

Social Networking :: Translate TextBox Text Using Google Translate API?

Apr 17, 2014

I want use Google API to Translate  the English to Marathi and vice-versa.

View 1 Replies

Security :: RSA Key Container Couldn't Be Opened / Found

Jan 25, 2010

When trying to open a page I am getting this error: Failed to decrypt using provider 'RsaProtectedConfigurationProvider'. Error message from the provider: The RSA key container could not be opened. I did some reading and it seems that this command woudl fix it:

from here [URL]
aspnet_regiis -pa "NetFrameworkConfigurationKey" "ASPNET"

I tried that but I get a new error:

C:WINDOWSMicrosoft.NETFrameworkv2.0.50727>aspnet_regiis -pa "NetFrameworkCon
figurationKey" "ASPNET"

Adding ACL for access to the RSA Key container. The RSA key container was not found. failed . Now, I don't really understand all of this stuff (my boss just said: Heres the problem, fix it).

View 1 Replies

C# - SQL Server Reporting Services: Web References Versus Assembly References, Poor Performance

Feb 16, 2010

I am using Reporting Services to render a report directly to PDF. It requires that I use two web references: ReportExecution2005.asmx and ReportService2005.asmx. The performance on web references seems really poor. Since my web server (IIS7) and my SQL Server (2008) are on the same box, is there a way I can reference them directly? If not is there any way I can explicitly cache them or something. First load is really really slow, second load is perfectly acceptable.

View 2 Replies

Security :: Identity Impersonate + Integrated Security(DB) And Programatically Impersonating The User?

Nov 19, 2010

I have identity impersonate = true in the Web.config file. I have integrated security = true in the DB connection string in the Web.config file.Before identity impersonate was true,users were able to access the DB through the web service account (seemingly).Now I get an error which says " Login failed for ... " because I am aware there is no specific account for that user in the permissions for that DB instance.I needed to set identity impersonate = true because the web service does not have access to the Active Directory,which I need to retrieve certain user information.

My question is,does identity impersonate = true override the integrated security and attempt to user the authenticated user's account to connect to the DB? Is there a simple way to prevent this in the Web.config itself?If not,would programatically impersonating the user within the Active Directory query functions and setting identity impersonate = false do the trick here?

View 2 Replies

Security :: Couldn't Get Strip To Remove The Domain From The Username (as The Format Is Domainnameusername)?

Aug 26, 2010

I've got a literal control to display the username of the user logged into our companies intranet system, originally I had a LoginName control but couldn't get strip to remove the domain from the username (as the format is domainnameusername) so I'm trying it this way.

[Code]....

protected void Page_Load(object sender, System.EventArgs e)

View 7 Replies

Security :: Windows Integrated Security And Application Pool Identity?

Aug 9, 2010

My website security is configured with "Windows Integrated Security" only (anonymous is disabled).

I also want to set a specific account to run the w3wp.exe process using the
Application Pool Identity to a domain account.

Running directly from the server works without any problem but from remote computers I always get the authenticaion window then the 401.1 error (after 3 attempts).

It seems that its the combination of "Windows Integrated Security" along with the "Application Pool Identity" that causes the problem. When I disable one of the two it works properly.

My server is Windows Server 2003 R2, running IIS 6.0­.

View 1 Replies

Installation :: Couldn't Load Type 'System.Security.Authentication.ExtendedProtection.ChannelBinding'

Oct 21, 2010

I am running Windows Server 2008, ASP.NET 3.5, IIS7 i wonder if it's IIS7 problem, or .NET Framework or even security updates problem suddenly all websites do not work, and from event viewer there're two errors

Exception: System.TypeLoadException

Message: Could not load type 'System.Security.Authentication.ExtendedProtection.ChannelBinding' from assembly 'System, Version=2.0.0.0, Culture=neutral, PublicKeyToken=b77a5c561934e089'.

StackTrace: at System.Web.Hosting.IIS7WorkerRequest.Dispose()

at System.Web.Hosting.PipelineRuntime.DisposeHandlerPrivate(HttpContext context)
at System.Web.HttpRuntime.FinishRequestNotification(IIS7WorkerRequest wr, HttpContext context, RequestNotificationStatus& status)
at System.Web.HttpRuntime.ProcessRequestNotificationPrivate(IIS7WorkerRequest wr, HttpContext context)
at System.Web.Hosting.PipelineRuntime.ProcessRequestNotificationHelper(IntPtr managedHttpContext, IntPtr nativeRequestContext, IntPtr moduleData, Int32 flags)
at System.Web.Hosting.PipelineRuntime.ProcessRequestNotification(IntPtr managedHttpContext, IntPtr nativeRequestContext, IntPtr moduleData, Int32 flags)
Faulting application w3wp.exe, version 7.0.6002.18005, time stamp 0x49e023cf, faulting module kernel32.dll, version 6.0.6002.18005, time stamp 0x49e037dd

it's on SP2 already

View 1 Replies

Security :: Authentication Using IIS's Windows Identity?

Jul 30, 2010

I want to know if this kind of authentication is possible.

We have an Active Directory account and that account we are using to log in to windows. I have a simple system that needs authentication using the IIS log in box (i dont know what do you call this but what I know is it only comes out when Anonymous user is unchecked in the IIS configuration.) Now, I want this box to appear before my page and the user will be authenticated and be compare to the user who logged in to the windows. If the user who have been authenticated is the same as the user who logged in to the windwos then we will let him in if not he must be denied in accessing the page.

The first problem I have in my mind is how to code it in asp.net to make an authentication when he will try to access my page.

Second is, let us say we have succeeded to show the authentication box, how can I get the username from the log in box and compare it to the user who logged on in windows. Of course we can get the user id of the logged in user from the windows using User.Identity.Name but how about the username from the log in box.

Note: I will not use log in forms even using https. Just the log in provided by the IIS according to the configuration.

View 1 Replies

Security :: What Is The Use FormsAuthentication.user.identity

Oct 7, 2010

what is the use formsAuthentication.user.identity

is it one of the property of page

View 1 Replies

Security :: User.Identity.Name In Global.asax

Jun 1, 2010

In the website we have several folders, some folders are accessible by anonymous users, others are accessible by members only, some by administrators or a both administrators and members can view this folder. Each folder contains some forms; these forms are based on the role as well. We'd like to add "user.identity" as to authenticate the user based on the user_id from table websit_ users.

However we are not sure , wither we need to specify each and every form, folder or this will be done automatically once authentication is applied. And where do we put the user.identity and what is the exact format of it. Do we include it in our Global.asax after the authentication part?! This is the code in global.asax:

[Code]....

View 1 Replies

Security :: Which Identity Is Authenticated By FormsAuthentication.SetAuthCookie

Mar 15, 2011

i have created a custom principal class, and a custom Identity.

named SystemIdentity and SystemPrincipal.

SystemIdentity class has some additional properties ( UserID, UserName, Age, ...)

in my Global.asax file I changed PostAuthenticateRequest event as bottom

[code]....

i wonder theese questions answer now:

1. where i can assign the additional properties of SystemIdentity ( UserID, UserName, Age, ...)
2. which Identity is Authenticated by FormsAuthentication.SetAuthCookie? is my custom Identity, or GenericIdentity?

View 2 Replies

Security :: Is The Value Of Identity.Name Accessable At Client Side

Feb 25, 2010

I wonder if the value of Identity.Name is visible (any way) at the client side?

So, it is safe to use the userID as cookie name?

[Code]....

View 5 Replies

Security :: Windows Identity Foundation For .NET Framework 2?

Jan 23, 2011

I have an requirement to implement single sign on solution using SAML 2. I had a look at a tirdparty toolkit in componentspace, but I would prefer some microsoft components.

the features provided in componentspace toolkit can be done using some Microsoft .NET libraries itself. identify the microsoft way to do this?. I looked at the Windows Identity Foundation SDK, but it is now supported only for .NET 3.5. My web application is built on .NET 2.0.

Is there any alternative for Windows Identity Foundation in .NET framework 2.0?

View 2 Replies

Security :: Creating Another User Without Changing Login Identity?

Apr 23, 2010

I wanted to be able, as an administrator, to create new users using the createuser wizard. When I use the wizard to add a new user, however, I end up logged in as that user, instead of as my admin account. How do I prevent from being logged in as the user I just created?

View 2 Replies

Security :: Assuming Identity Of Other Logged In Users In Web Application

Nov 1, 2010

I have a web application with a login form. A user enters a user name and password. If they exist in the database the user is authenticated using these two lines:
[Code]....

The problem is that when a user logs in at first he is logged in as himself. When navigating on the web application for a while the user assumes the identity of another logged in user. This happens all the time. In my web.config the authentication mode looks like this:
[Code]....

The site does not use ASP.NET session variables. Instead each page initializes a Singleton class, which stores itself in a static class variable, always accessing the users data already read from the database. The Singleton implementation is:
[Code]....

Could the problem with assuming another logged in users "session" be related to static classes in my application or a Forms Authentication configuration or a configuration in IIS (e.g. is it possible for users to have their own process?).

View 12 Replies

Security :: Unable To Retrieve Current.User.Identity.Name In II7

Feb 26, 2010

I'm in the middle of moving a web application from IIS6 to IIS7. I've enabled "Windows Authentication" and added <deny users="?" /> to the authorization section of my web.config file. When the app was running on IIS6 my users where able to access the web app without logging in because their windows login was automatically recognized. This does not seem to be the case in II7. I can not get a value for "Current.User.Identity.Name" in my ASP.Net code.

View 1 Replies

Security :: Get The GUID In Similar Manner To User.Identity.Name?

Mar 17, 2011

Once the client is logged in, do I have access to their GUID via something like

User.Identity.Name

View 2 Replies

Cookies - Windows Identity Foundation - How To Get New Security Token

Feb 1, 2010

I'm writing an ASP.net application that uses Windows Identity Foundation. My ASP.net application uses claims-based authentication with passive redirection to a security token service. This means that when a user accesses the application, they are automatically redirected to the Security Token Service where they receive a security token which identifies them to the application.

In ASP.net, security tokens are stored as cookies.

I want to have something the user can click on in my application that will delete the cookie and redirect them to the Security Token Service to get a new token. In short, make it easy to log out and log in as another user. I try to delete the token-containing cookie in code, but it persists somehow.

How do I remove the token so that the user can log in again and get a new token?

View 2 Replies

Security :: User Identity. Name Is Blank On Page Load?

Jul 29, 2010

I have an aspx page which displays a user's details in a Label. It takes their User.Identity.Name and queries Active Directory using the following code:

[Code]....

View 1 Replies

Security :: User.Identity.Name.ToString() Is This Secure And How To Store It

Feb 10, 2010

I have created an asp.net site with anonymous access turned off. Its for an internal (intranet) system which uses User.Identity.Name.ToString() to get the users login windows ID and then displays some records from a datagrid depending on their login ID. Is this secure? Also i am struggling to workout how best to store the result of User.Identity.Name.ToString() as I am not keen on storing it in a hidden text field and would rather not call it all the time unless this is the best way?

View 3 Replies

Security :: User.Identity.AuthenticationType Returns Custom Always?

Jan 18, 2010

when ever i check User.Identity.AuthenticationType the returned string is 'Custom' always, doesn't matter my authentication type is 'Windows' or '''Forms'.

I want to do some different coding in aspx.cs for windows and forms authentication, but i am unable to differentiate between them because 'User.Identity.AuthenticationType' always returns 'Custom'.

View 3 Replies

Security :: Unable To Cast Custom Identity When Using Application_AuthenticateRequest?

Feb 8, 2010

When I add

if (Context.User != null)
{
if (Context.User.Identity.IsAuthenticated)
{
if (!(Context.User is AdministratorPrincipal))
{
Admin.Web.Principal.AdministratorPrincipal newUser = new Admin.Web.Principal.AdministratorPrincipal(Context.User.Identity.Name);
}
}
}

to Application_AuthenticateRequest in global.asax file i always get an error when I try to reference it

Unable to cast object of type 'Admin.Web.Identity.AdministratorIdentity' to type 'Admin.Web.Identity.AdministratorIdentity'.
protected void Page_Load(object sender, System.EventArgs e)
Line 26: {
Line 27: this.adminID = ((AdministratorIdentity)HttpContext.Current.User.Identity).AdminID.ToString();
Line 28: }

I did a test and tried to move the code from global.asax to a Page_Load() of webform and worked fine.

View 1 Replies

Security :: Identity Impersonate - False And IIS In Windows Mode

Feb 21, 2011

I have a webpage stored on a local server (Site A) which when I browse to it is given my windows account details, this site then checks within AD to get my email address. My email address is then passed to another website (Site B) and consumed. The Website A is set in IIS to Integrated Windows Auth Only, WebSite A has

<identity impersonate="false"/>

set in the web.config What I dont understand is what user is accessing AD from site A - with impersonate = false that is telling the site not impersonate the windows user, but this seems at odds with the setting in IIS.

View 3 Replies

Security :: Pass Membership Identity Object Across Domain?

Aug 20, 2010

I am trying to figure a way to SSO with ASP.NET membership and role model.

I can implement custom membership provider which consume web services hosting on a server.

With encryption of data. No problem.

But my question is, If I sign on a website with my provider, got my identity object on that application,

could I pass it to another website on another domain which use the same provider and by doing so, do not need to login again?

View 2 Replies







Copyrights 2005-15 www.BigResource.com, All rights reserved