Security :: Access The Database With "winAcc1" Windows Account?
Jul 27, 2010
Let me explain briefly how the app is being setup (by the previous architect).. I have the following app:
1) Server1
2) Server2
3) WPF app which installed on the client desktop
4) WCF app which hosted on IIS in Server1
5) SQL server instance which installed on Server2 (with internal IP addr 10.111.3.10)
WPF on client side calls the WCF service on Server1 and WCF on server1 accesses the database on Server2. The connection string on WCF web config (server1) looks like this:
<add name="App.ConnectionString" connectionString="Persist Security Info=False;Initial Catalog=customerDB;Data Source=10.111.3.10;Integrated Security=SSPI"/>.
There is a windows account (say winAcc1) on the Server2 which is currently dedicated as DBowner of customerDB.
Now the question is "How does the WCF on Server1 know to access the database with "winAcc1" windows account?" I have checked on web config or anywhere app and i could not find any impersonation or programmatically set the network credential to be "winAcc1".
View 1 Replies
Similar Messages:
Mar 21, 2011
I am able to get a token with Windows Live Delegate Authentication samples provided by Microsoft.
Now I want to access emails (New, Read, Unread etc) from live account. How can I achieve it with the help of Windows Live Delegate Authentication? Are there any examples for the same?
The Samples given by Microsoft are not related to emails.
View 2 Replies
Oct 5, 2010
I have seen this error many times in past and what all I used to do was to add aspnet account to the directory and provide it with read and write access. But this time I am trying to run an application in Windows 7(64 bits) - I had to manually enable the IIS from windows feature in Control Panel.
But I dont see any aspnet account in 'security' tab of any of the directories (in its properties). I even ran aspnet_regiis -i in v2.0.50727 and v4.030319 directories. How do I get aspnet user account to show up in any folder?
View 1 Replies
Feb 18, 2010
I face this problem when my client setting the LAN like this: the database server is in server A, the web application is in server B, and the windows login server control (is it what we call "windows domain"?) is in server C.
When I use windows authentication in the web application I built, it checked only the windows account in server B. How to authenticate with server C's windows account?
View 2 Replies
Aug 31, 2010
I have a requirement I should connect to MS SQL server under IIS Application pool account from ASP.NET application where Windows Authentication is enabled. I cannot use user name and password in connection string.
ASP.NET application should use Entity Framework 4.0 to work with data.
View 1 Replies
Mar 16, 2011
If I enable Anonymous in IIS under windows 2003, the ASP.NET will execute code under IUSR_XXX or account of application pool?
View 3 Replies
Sep 19, 2010
i have a problem with the users authentication on my site. I made <authentication mode="Windows"> in my web.config. The LoginView shows "mycomputermyusername" if i request the page. So far as well. Now i want to login with a different username. Users are stored in an Active Directory. My questions: wich setting i have to do, that user's account and password checked by Active Directory? how can i force the system to make a new login? Logout doesn't work, i always see my on account.
View 1 Replies
Aug 2, 2010
I run a simple .aspx website on a Windows Server 2008 machine.There is no impersonation, and System.Security.Principal.WindowsIdentity.GetCurrent().Name returns NT AUTHORITYNETWORK SERVICE, which it the account which the application pool runs.I tried to test the security of the application and server by removing file permissions to the .aspx files. I was greatly worried when the website continued to run without problem (it should not have been able to read the .aspx files).By turning on file level auditing, I discovered that the .aspx files were being read by the machine$ account (if the machine is called Serv1, then the files would be read by the Serv1$ account, which seems to have access to all files on the local machine).Is this a security breach or is this behaviour by design ?
View 4 Replies
Apr 23, 2010
I've been researching and I've spent pratically all day on this. Here's my issue. The website uses forms authentication that we authenticate against active directory. I've been attempting to access files we have on a network share and push them down to the user (when they request them) in an http response. I keep getting "Access to the path <unc path> is denied".
Here's the code:
[Code]....
Things I've tried:1) When I add the "Computer" to the permissions of the folder it works and I dont even need to emulate a user (essentially just commenting out this code), but I'm not sure we want to explicitly give the computer access to some of our network shares 2) I've verified it's the correct username and password for the active directory account and that they have permissions on these network shares 3) I've fooled around with the WebProxy class with no luck (as I'm not entirely familiar with it) 4) I've tried impersonating the user by creating a windows token and passing the token as credentials (i've done this with similar websites) with no luck, plus this seemed a bit complicated for something I figured would be relatively easy.Its almost as if, the WebClient class isn't even using the credentials i've passed it.We've got it working now, but only by giving the "Computer" specific permissions on the network shares, which we'd like to avoid.
View 1 Replies
Apr 9, 2010
the only way to make themes work is to allow user "Everyone" to access the folder App_Themes. I am wondering if a more specific user instead of "Everyone" can be granted the access to allow themems work.Account "IIS_IUSRS" and "NETWORK SERVICE" have already been granted access.This is about folder access of Windows 7 running IIS7, not web page authorization configured via web.config. The web page is browsed via local host (i.e. the web page address is something like "[URL]
View 1 Replies
Jun 18, 2010
I wrote an asp.net application that I'm trying to run on a godaddy domain I bought. I need to read a file in a folder that I did not give read access to so that your average user cannot see in the informaion in that folder. I assumed that the asp.net program would have the same credentials as myself because server-side code. Turns out I am wrong. When I go to use the asp.net application it throws an access denied error saying that the ASP.NET user account has to be given permissions to access the folder.
After talking to two different tech support people at godaddy I've come to the realization that they are either dumb or lazy (or a combo of the two).I came across some code that you can put into the web.config file that would allow the asp.net application to impersonate a user, which would work great to use myself as the impersonated user. However it seems that godaddy cannot give me the name of the server that my domain is on (that's understandable) so I don't know what to put in the identity tag to get this to work.
Here is the code I found:
[Code]....
(of course I filled in the username and password with the correct info)
When I went to use it again it threw this error:
System.Web.HttpException: The current identity (PHX3username) does not have write access to 'C:WindowsMicrosoft.NETFrameworkv2.0.50727Temporary ASP.NET Files'.
View 3 Replies
Aug 18, 2010
I'm writing a simple Intranet application using windows authentication. I want to restrict access to Safe/UCantSeeMe.aspx. I am aware of the AuthorizeAttribute, but this only works on methods. I also found a good post on doing this with the MVC pattern, but I'm not using MVC. This can be done with roles in forms based security. I read on MSDN that using windows based security means roles are based on groups, but it doesn't go into any detail. how can I restrict access to Safe/UCantSeeMe.aspx?
View 1 Replies
Oct 4, 2010
I have created an asp.net web application on windows server 2008. I have created a website in IIS 7 with an application pool. The application pool has the identity "NETWORKSERVICE". I have a web reference in my application with a certificate.
When I create a new web application and add the code below and add the web reference, and run the web application from the solution (and not from a website in IIS), the web service works fine. I think the local administrator has permissions and the network service account not.
public static PartsService MyCompanyPartsService
{
get
{
if (_partsService != null)
return _partsService;
_partsService = new PartsService();
_partsService.PreAuthenticate = true;
[Code]....
View 1 Replies
Nov 23, 2010
I am working on a site that uses windows authentication, but I have one page for password resets that I want to allow anonymous access to.I have tried doing authorization, allow users="*", but it doesn't appear to work with this.Do I need to have another seperate site for this section?
View 2 Replies
Nov 24, 2010
I need to have a root web site using Windows Authentication and subweb under it as Forms Authentication. But when I access the subweb it still ask me for the Windows Authentication.
View 3 Replies
Feb 19, 2010
I want to access membership and profile objects and wants to access profile properties that I have defined in my web app web.config file, from a windows service. Anyone have any idea on how to do this?
View 3 Replies
Oct 15, 2010
I have an intranet site that i set up to windows authentication. It works fine most of the time but some departments wont be able to access the site and will be asked to enter user name and password.I checked their Active Directory account and the only difference i could see was that the organizational unit parameter was different than the rest of the users.
View 5 Replies
Jun 11, 2010
I set up a secured folder in my website. When I access this folder via web page, it pop up a windows login form to ask for user name and password. I would like to code the asp.net page or java script to access this secured folder with username and password without pop up the login form. find the method for asp.net page accessing the secured folder automatically.
View 2 Replies
Mar 29, 2011
My web application need to list the network share information. The return code is '5' after I call NetShareEnum[Netapi32.dll] in windows integrated authentication.
I found that currently I am using Kerberos protocol to authenticate the access users and the token is grenerated with [TokenImpersonationLevel.Impersonation].
Who know how to resolve this problem? Is there any way to get a token with [TokenImpersonationLevel.Delegation] in Kerberos? BTW, I am sure about that the access user has the Access privilege to list the network share in target server.
View 1 Replies
Jun 17, 2010
I am trying to set up my intranet site so the user logs in with his windows domain account and that account is passed to the sql database to access the database. I have been able to succesfully set up the windows authentication to my website, but when I try to use
<identity impersonate="true"/>
in my webconfig I get a 500 errror on my site when trying to open any page. My server is 2008 R2
View 11 Replies
Dec 3, 2010
I'm using IIS Express to host my website, and I would like to do something similar to Directory Security in IIS 6. In IIS 6, I was able to go to the Directory Security tab and allow the anonymous user to be a local windows account.
Is there something equivalent in IIS Express for that? What changes do I need to make in applicationhost.config?
View 2 Replies
May 19, 2010
i want to create application that register host and domain in pleskany guya have sample? or source code? or documentation
View 1 Replies
Feb 18, 2011
I wand to download the files in Windows server 2003. For that the ASP.Net application needs access control to the directory. I searched the ASP.NET Account. But I cannot find. How Can i find or add?IF I try to add the ASPNET account using User Accounts panel. I cannot open the localusers It says an error "the computer is a domain controller. This snap-in cannot be used on a domail controller. Domain accounts are managed with active directory users and computers snap-in"
View 2 Replies
Feb 21, 2011
I have an ASP.Net app, that runs using windows authentication. The connection to the SQL Server is usually done by creating a sql server account and using that in the connection string.
However, in this specific very restrictive hosting environment, we have been asked to use a specific WINDOWS/active directory account to connect to the SQL Server.
note it is not the windows credentials of the user of the website, we need to connect to the SQL server with - it is one specific windows/AD account.
How do I configure that in my connection-string?
View 2 Replies
Jul 23, 2010
If WebApp is configured as Windows Authentication, how to get the user credential in code?How to create NetworkCredential using this exsiting user credential?
View 1 Replies
