Integrated windows authentication and NetworkCredential
sorpor
I have my asp.net webpage configured to use the integrated windows
authentication in IIS. I need to use NetworkCredential object to get access
to a webservice and I want to retrieve the authenticated user information to
create it so user doesn't have to re-enter password. How can I do that?
Thanks a lot!
-sorpor
![Paul Glavich [MVP - ASP.NET]'s profile photo](https://lh3.googleusercontent.com/a/default-user=s40-c)
Paul Glavich [MVP - ASP.NET]
server to another server. You cannot easily do this (its called delegation)
without specifically enabling this for the specific user account to be
delegated. Note that this only applies to Windows Integrated auth (as this
"limitation" is actually a security feature and the scenario you describe is
termed a "double hop" issue with security credentials.
Basic auth does not ehibit this behaviour as the security credentials are
embedded as part of the Http header and so are easily extracted and passed
on.
HTH
--
- Paul Glavich
Microsoft MVP - ASP.NET
"sorpor" <anon...@discussions.microsoft.com> wrote in message
news:uzui#UxLEH...@TK2MSFTNGP12.phx.gbl...
Joe Kaplan (MVP - ADSI)
the user who authenticated, you can get a valid credential object via:
System.Net.CredentialCache.DefaultCredentials
Delegating user's credentials is one of the most often asked about, hardest
to get working things that people try to do. You should find lots of
answers via Google searches.
Joe K.
"Paul Glavich [MVP - ASP.NET]" <gl...@aspalliance.com-NOSPAM> wrote in
message news:OxWQ9HEM...@TK2MSFTNGP12.phx.gbl...
Paul Glavich [MVP - ASP.NET]
Kerberos is used, then delegation is possible, however if NTLM is used, then
delegation is not possible. This is a limitation with the NTLM protocol.
--
- Paul Glavich
Microsoft MVP - ASP.NET
"Joe Kaplan (MVP - ADSI)" <joseph....@removethis.accenture.com> wrote
in message news:uPBzhyFM...@TK2MSFTNGP09.phx.gbl...