-
Posted to
Security
by
gis-jedi
on
12-14-2007, 7:47 AM
I would think that as well Tom. After several tries I couldn't get it to work though. Dunno.
-
Posted to
Security
by
gis-jedi
on
12-13-2007, 7:34 AM
The path is a UNC path to a local directory; I meant I "tricked" IIS into thinking it was looking at a remote share by specifying it as a UNC path. ASP scripts in the Scripts vdir run under user permissions when I use a local path, as you can imagine.
-
Posted to
Security
by
gis-jedi
on
12-12-2007, 9:07 AM
Sorry, it was a while before I had a chance to try it out. I know what you mean about the challenge Steve -- there were ideas for workarounds I had, but I wanted to see this way work.
After all of this time I never thought there would be a simple way to do what I wanted to do, but it works perfectly! I only made slight changes to what ...
-
Posted to
Security
by
gis-jedi
on
12-09-2007, 1:20 PM
You are correct about what I want to do Steve.
To make things simple, here is what I'm trying to do:
* I'm authenticating users with Windows Integrated Authentication, but I want to access a remote share through an ASP script under a set of static credentials.
Here is what is happening:
* The remote share is being ...
-
Posted to
Security
by
gis-jedi
on
12-07-2007, 2:29 PM
For some extra details, this is the configuration I have for the file upload page in the Metabase Explorer:
KeyType: IIsWebFile
UNCUserName: mydomain\MyDomainAccount
UNCPassword: mypassword
AuthFlags: 4
WAMUserName: mydomain\MyDomainAccount
WAMUserPass: mypassword
Is this the correct way to specify UNCUserName?
-
Posted to
Security
by
gis-jedi
on
12-07-2007, 10:10 AM
This explained the cause of the above problem:
http://support.microsoft.com/kb/871179/en-us
I disabled Kerberos authentication, to just use NTLM, and the credentials passed but I still got a "permission denied" error when accessing the remote server. So changing the app pool context didn't resolve the issue. Thank you though.
-
Posted to
Security
by
gis-jedi
on
12-07-2007, 9:19 AM
At second glance, the pop-up box is just the regular login box shown by Windows Integrated Authentication when IE is configured not to log in automatically. My credentials fail when I enter them in this box, which is probably why the box showed up in the first place (the automatic login failed for my credentials).
The login also fails if I ...
-
Posted to
Security
by
gis-jedi
on
12-07-2007, 8:59 AM
OK, I tried changing the app pool to a domain user that has administrative rights over the web server, but when I try to visit the file upload page (the one that requires authentication) in IE, I get a pop up box that asks me for a certificate. When I use the certificate that appears in the drop list, that contains my username, the box comes back ...
-
Posted to
Security
by
gis-jedi
on
12-07-2007, 8:10 AM
Hi Tom,
I would like to use an existing user account (whether it be through UNCUserName, or some other method) to access remote content, rather than the authenticated user.
I did in fact see that link, and Figure 6 seems to indicate that what I want to do is possible. Is there some issue with the context that the ASP script is ...
-
Posted to
Security
by
gis-jedi
on
12-05-2007, 12:16 PM
Hi guys,
I have an intranet IIS 6.0 web server that has the default website configured for anonymous access. For a particular page used for file upload, I want to be able to retrieve the login name of domain users to associate with their uploaded files.
I set up the file upload page for Windows Integrated Authentication and removed the ...