asp.net - Steps to enable double-hop delegation in IIS7 windows 2008 -


my asp.net web application uses windows authentication on our intranet. want able make server-side http request server on same domain requires windows authentication.

i've followed instructions on temporarily impersonating authenticated user when making additional request here:

http://msdn.microsoft.com/en-us/library/ff647404.aspx

using code this:

using system.security.principal;  // obtain authenticated user's identity windowsidentity winid = (windowsidentity)httpcontext.current.user.identity; windowsimpersonationcontext ctx = null; try {   // start impersonating   ctx = winid.impersonate();   // impersonating   // access resources using identity of authenticated user   var request = webrequest.create("http://intranet/secureapp");   request.credentials = credentialcache.defaultcredentials;   var response = request.getresponse();   using (var streamreader = new streamreader(response.getresponsestream()))   {       response.write(streamreader.readtoend());   } } // prevent exceptions propagating catch { } {   // revert impersonation   if (ctx != null)     ctx.undo(); } // running under default asp.net process identity

but, unfortunately, 401 unauthorized error.

do need configure our webserver active directory allow delegate autenticated user (could 1 of 200 users, don't want have 200 times :))? if so, can tell me how this?

there several steps configuring kerberos/delegation windows.

first, need configure asp.net use delegation. assume have configured in web.config.

then need configure asp.net service account delegation. have create spn.

then enable delegation iis server , account in active directory.

step step instructions provided here: http://msdn.microsoft.com/en-us/library/ms998355.aspx follow steps 1-3.


Comments

Post a Comment

Popular posts from this blog

asp.net - repeatedly call AddImageUrl(url) to assemble pdf document -

i'm using abcpdf , i'm curious if can recursively call addimageurl() function assemble pdf document compile multiple urls? something like: int pagecount = 0; int theid = thedoc.addimageurl("http://stackoverflow.com/search?q=abcpdf+footer+page+x+out+of+", true, 0, true); //assemble document while (thedoc.chainable(theid)) { thedoc.page = thedoc.addpage(); theid = thedoc.addimagetochain(theid); } pagecount = thedoc.pagecount; console.writeline("1 document page count:" + pagecount); //flatten document (int = 1; <= pagecount; i++) { thedoc.pagenumber = i; thedoc.flatten(); } //now try again theid = thedoc.addimageurl("http://stackoverflow.com/questions/1980890/pdf-report-generation", true, 0, true); //assemble document while (thedoc.chainable(theid)) { thedoc.page = thedoc.addpage(); theid = thedoc.addimagetoc
Read more

java - Android recognize cell phone with keyboard or not? -

in android app, want detect user's device if device has keyboard(like motorola milestone) , show corresponding user interface. guys know how that? ! regards justicepenny http://developer.android.com/reference/android/content/res/configuration.html public int keyboard the kind of keyboard attached device. 1 of: keyboard_nokeys, keyboard_qwerty, keyboard_12key. that's it!
Read more

iphone - How would you achieve a LED Scrolling effect? -

how achieve led scrolling effect example below? led sign - led ticker emulator iphone , ipad http://img.skitch.com/20101201-rsfh4p1bajb1wp94k466pdpiuj.preview.jpg sometimes remunerates comment in other posts :) have put code you, should implement font '8pin matrix' realistic feeling. uilabel *label; - (void)viewdidload { [super viewdidload]; label = [[uilabel alloc]initwithframe:cgrectmake(10, 50, 300, 20)]; label.font = [uifont fontwithname:@"courier-bold" size:16.0]; label.backgroundcolor = [uicolor blackcolor]; label.textcolor = [uicolor greencolor]; label.linebreakmode = uilinebreakmodecharacterwrap; // otherwise "…" label.text = @"this led text scrolled "; // blanks space between [self.view addsubview:label]; [nstimer scheduledtimerwithtimeinterval:0.12f target:self selector:@selector(scrolllabel) use
Read more