Pierre Greborio.NET

Talking about .NET world

Windows Impersonation in ASP.NET

There are several scenario where you have to use the impersonation in ASP.NET. Consider, for example, you have to save and load files from a network share (file server). In that case, if the web site accept anonymous authentications, you have to impersonate a windows user who has enought privileges to access to that resource.

You have three choices (I guess):

  1. Elevate the ASP.NET process identity - worse case since you could compromise the whole site security
  2. Impersonate a windows user during the single call (http://blogs.msdn.com/shawnfa/archive/2005/03/22/400749.aspx)
  3. Demand the task to a COM+ server application

I think that the last is the best since we have more security and maintenance control.

Posted: Apr 10 2005, 12:02 PM by PierreG | with 4 comment(s)
Filed under:

Comments

TrackBack said:

# June 19, 2005 9:54 PM

7th grade science fair project ideas about said:

7th grade science fair project ideas about

# September 14, 2007 2:44 PM

free myspace music codes no videos said:

free myspace music codes no videos

# September 18, 2007 10:26 AM

asp net windows impersonation said:

Pingback from  asp net windows impersonation

# May 14, 2008 9:46 AM