Security context question

K

Kevin Jackson

If I turn off anonymous access to an ASP page and then use "Integrated
Authentication" in a Intranet environment, I expected the user context to be
the user who is accessing the page. It doesn't seem to be the case.

I'm using a component (ASPUpload) to move a file to a share point on another
box. The user context that I thought I was running under has write access
to this share but I keep getting a 500 back when I run the page. Local
paths work fine, share points are a no go.

I turned to basic authentication, put the name of the domain in the domain
box and then used the same username and password to access the page and it
copied the file with no problems. So in this case it seems that the user
context WAS the user I expected.

What am I missing that I cannot get Integrated Authentication to work in the
expected user context?

Any ideas?
 
L

Leo Chen [MSFT]

Hi Kevin,

This is because the token doesn't have the outbound privilege. This article
may be what you are looking for.

207671 HOW TO: Access Network Files from IIS Applications
http://support.microsoft.com/?id=207671

You can configure the component in COM+ and specify an identity for the
COM+ component, so that it can access files on another machine.

Hope this helps.

Best Regards,
Leo Chen

This posting is provided "AS IS" with no warranties, and confers no rights.




--------------------
| From: "Kevin Jackson" <[email protected]>
| Subject: Security context question
| Date: Wed, 6 Aug 2003 15:15:27 -0500
| Lines: 20
| X-Priority: 3
| X-MSMail-Priority: Normal
| X-Newsreader: Microsoft Outlook Express 6.00.2800.1158
| X-MimeOLE: Produced By Microsoft MimeOLE V6.00.2800.1165
| Message-ID: <[email protected]>
| Newsgroups: microsoft.public.inetserver.asp.general
| NNTP-Posting-Host: 12.96.65.193
| Path: cpmsftngxa06.phx.gbl!TK2MSFTNGP08.phx.gbl!TK2MSFTNGP10.phx.gbl
| Xref: cpmsftngxa06.phx.gbl microsoft.public.inetserver.asp.general:248835
| X-Tomcat-NG: microsoft.public.inetserver.asp.general
|
| If I turn off anonymous access to an ASP page and then use "Integrated
| Authentication" in a Intranet environment, I expected the user context to
be
| the user who is accessing the page. It doesn't seem to be the case.
|
| I'm using a component (ASPUpload) to move a file to a share point on
another
| box. The user context that I thought I was running under has write access
| to this share but I keep getting a 500 back when I run the page. Local
| paths work fine, share points are a no go.
|
| I turned to basic authentication, put the name of the domain in the domain
| box and then used the same username and password to access the page and it
| copied the file with no problems. So in this case it seems that the user
| context WAS the user I expected.
|
| What am I missing that I cannot get Integrated Authentication to work in
the
| expected user context?
|
| Any ideas?
|
|
|
 

Ask a Question

Want to reply to this thread or ask your own question?

You'll need to choose a username for the site, which only take a couple of moments. After that, you can post your question and our members will help you out.

Ask a Question

Members online

Forum statistics

Threads
474,079
Messages
2,570,575
Members
47,207
Latest member
HelenaCani

Latest Threads

Top