Does anyone know how to get Process.Start() to use the security context of
the user that my ASP.NET app is impersonating? It seems that it is always
run as the ASPNET User no matter what I do.
I know that I can look into CreateProcessWithLogonW, but I really do not
want to ask and store a users password.
Anyone have any thoughts?
Thanks
Shawn 7 3170
you should use CreateProcessWithTokenW. you will have use DuplicateToken to
get a primary token necessary for the call.
-- bruce (sqlwork.com)
"Shawn Anderson" <sa*******@eye-catcher.com> wrote in message
news:O6**************@TK2MSFTNGP12.phx.gbl... Does anyone know how to get Process.Start() to use the security context of the user that my ASP.NET app is impersonating? It seems that it is always run as the ASPNET User no matter what I do.
I know that I can look into CreateProcessWithLogonW, but I really do not want to ask and store a users password.
Anyone have any thoughts?
Thanks Shawn
Excellent Idea -- only one major problem: It only works on Windows 2003.
Any other thoughts that will work on atleast Windows 2000?
Shawn
"bruce barker" <no***********@safeco.com> wrote in message
news:e9**************@TK2MSFTNGP10.phx.gbl... you should use CreateProcessWithTokenW. you will have use DuplicateToken to get a primary token necessary for the call.
-- bruce (sqlwork.com) "Shawn Anderson" <sa*******@eye-catcher.com> wrote in message news:O6**************@TK2MSFTNGP12.phx.gbl... Does anyone know how to get Process.Start() to use the security context of the user that my ASP.NET app is impersonating? It seems that it is always run as the ASPNET User no matter what I do.
I know that I can look into CreateProcessWithLogonW, but I really do not want to ask and store a users password.
Anyone have any thoughts?
Thanks Shawn
For one thing, you need a primary token to create a process, but to get a
primary token, you need a plain text password.
In a separate thread, we were just discussing getting our the Win2K security
issue by calling the runas service, but that still requires a plain text
password.
Can you get around asking for the pwd from the user? Maybe you could switch
to Basic authentication and SSL so that you would have it.
Joe K.
"Shawn Anderson" <sa*******@eye-catcher.com> wrote in message
news:uO******************@TK2MSFTNGP11.phx.gbl... Excellent Idea -- only one major problem: It only works on Windows 2003.
Any other thoughts that will work on atleast Windows 2000?
Shawn
"bruce barker" <no***********@safeco.com> wrote in message news:e9**************@TK2MSFTNGP10.phx.gbl... you should use CreateProcessWithTokenW. you will have use DuplicateToken to get a primary token necessary for the call.
-- bruce (sqlwork.com) "Shawn Anderson" <sa*******@eye-catcher.com> wrote in message news:O6**************@TK2MSFTNGP12.phx.gbl... Does anyone know how to get Process.Start() to use the security context of the user that my ASP.NET app is impersonating? It seems that it is always run as the ASPNET User no matter what I do.
I know that I can look into CreateProcessWithLogonW, but I really do
not want to ask and store a users password.
Anyone have any thoughts?
Thanks Shawn
Unfortunately it is a requirement to have "pass-through" authentication.
Asking for the password breaks that.
"Joe Kaplan (MVP - ADSI)" <jo*************@removethis.accenture.com> wrote
in message news:%2****************@TK2MSFTNGP09.phx.gbl... For one thing, you need a primary token to create a process, but to get a primary token, you need a plain text password.
In a separate thread, we were just discussing getting our the Win2K security issue by calling the runas service, but that still requires a plain text password.
Can you get around asking for the pwd from the user? Maybe you could switch to Basic authentication and SSL so that you would have it.
Joe K.
"Shawn Anderson" <sa*******@eye-catcher.com> wrote in message news:uO******************@TK2MSFTNGP11.phx.gbl... Excellent Idea -- only one major problem: It only works on Windows 2003.
Any other thoughts that will work on atleast Windows 2000?
Shawn
"bruce barker" <no***********@safeco.com> wrote in message news:e9**************@TK2MSFTNGP10.phx.gbl... > you should use CreateProcessWithTokenW. you will have use > DuplicateToken > to > get a primary token necessary for the call. > > -- bruce (sqlwork.com) > > > > "Shawn Anderson" <sa*******@eye-catcher.com> wrote in message > news:O6**************@TK2MSFTNGP12.phx.gbl... >> Does anyone know how to get Process.Start() to use the security >> context >> of >> the user that my ASP.NET app is impersonating? It seems that it is >> always >> run as the ASPNET User no matter what I do. >> >> I know that I can look into CreateProcessWithLogonW, but I really do not >> want to ask and store a users password. >> >> Anyone have any thoughts? >> >> Thanks >> Shawn >> >> > >
Shawn see my thread Access File Share from ASP.NET using Unmanaged Code which may solve your problem but of course I have found that has issues as well which is obviously the reason for my post.
"Shawn Anderson" wrote: Unfortunately it is a requirement to have "pass-through" authentication. Asking for the password breaks that.
"Joe Kaplan (MVP - ADSI)" <jo*************@removethis.accenture.com> wrote in message news:%2****************@TK2MSFTNGP09.phx.gbl... For one thing, you need a primary token to create a process, but to get a primary token, you need a plain text password.
In a separate thread, we were just discussing getting our the Win2K security issue by calling the runas service, but that still requires a plain text password.
Can you get around asking for the pwd from the user? Maybe you could switch to Basic authentication and SSL so that you would have it.
Joe K.
"Shawn Anderson" <sa*******@eye-catcher.com> wrote in message news:uO******************@TK2MSFTNGP11.phx.gbl... Excellent Idea -- only one major problem: It only works on Windows 2003.
Any other thoughts that will work on atleast Windows 2000?
Shawn
"bruce barker" <no***********@safeco.com> wrote in message news:e9**************@TK2MSFTNGP10.phx.gbl... > you should use CreateProcessWithTokenW. you will have use > DuplicateToken > to > get a primary token necessary for the call. > > -- bruce (sqlwork.com) > > > > "Shawn Anderson" <sa*******@eye-catcher.com> wrote in message > news:O6**************@TK2MSFTNGP12.phx.gbl... >> Does anyone know how to get Process.Start() to use the security >> context >> of >> the user that my ASP.NET app is impersonating? It seems that it is >> always >> run as the ASPNET User no matter what I do. >> >> I know that I can look into CreateProcessWithLogonW, but I really do not >> want to ask and store a users password. >> >> Anyone have any thoughts? >> >> Thanks >> Shawn >> >> > >
And where might I find this thread? :)
Shawn
"Mark Duregon" <ms********@aspect.com.au> wrote in message
news:6F**********************************@microsof t.com... Shawn see my thread Access File Share from ASP.NET using Unmanaged Code which may solve your problem but of course I have found that has issues as well which is obviously the reason for my post.
"Shawn Anderson" wrote:
Unfortunately it is a requirement to have "pass-through" authentication. Asking for the password breaks that.
"Joe Kaplan (MVP - ADSI)" <jo*************@removethis.accenture.com> wrote in message news:%2****************@TK2MSFTNGP09.phx.gbl... > For one thing, you need a primary token to create a process, but to get > a > primary token, you need a plain text password. > > In a separate thread, we were just discussing getting our the Win2K > security > issue by calling the runas service, but that still requires a plain > text > password. > > Can you get around asking for the pwd from the user? Maybe you could > switch > to Basic authentication and SSL so that you would have it. > > Joe K. > > "Shawn Anderson" <sa*******@eye-catcher.com> wrote in message > news:uO******************@TK2MSFTNGP11.phx.gbl... >> Excellent Idea -- only one major problem: It only works on Windows >> 2003. >> >> Any other thoughts that will work on atleast Windows 2000? >> >> Shawn >> >> "bruce barker" <no***********@safeco.com> wrote in message >> news:e9**************@TK2MSFTNGP10.phx.gbl... >> > you should use CreateProcessWithTokenW. you will have use >> > DuplicateToken >> > to >> > get a primary token necessary for the call. >> > >> > -- bruce (sqlwork.com) >> > >> > >> > >> > "Shawn Anderson" <sa*******@eye-catcher.com> wrote in message >> > news:O6**************@TK2MSFTNGP12.phx.gbl... >> >> Does anyone know how to get Process.Start() to use the security >> >> context >> >> of >> >> the user that my ASP.NET app is impersonating? It seems that it is >> >> always >> >> run as the ASPNET User no matter what I do. >> >> >> >> I know that I can look into CreateProcessWithLogonW, but I really >> >> do > not >> >> want to ask and store a users password. >> >> >> >> Anyone have any thoughts? >> >> >> >> Thanks >> >> Shawn >> >> >> >> >> > >> > >> >> > >
in this news group I posted it about and hour ago.
"Shawn Anderson" wrote: And where might I find this thread? :)
Shawn "Mark Duregon" <ms********@aspect.com.au> wrote in message news:6F**********************************@microsof t.com... Shawn see my thread Access File Share from ASP.NET using Unmanaged Code which may solve your problem but of course I have found that has issues as well which is obviously the reason for my post.
"Shawn Anderson" wrote:
Unfortunately it is a requirement to have "pass-through" authentication. Asking for the password breaks that.
"Joe Kaplan (MVP - ADSI)" <jo*************@removethis.accenture.com> wrote in message news:%2****************@TK2MSFTNGP09.phx.gbl... > For one thing, you need a primary token to create a process, but to get > a > primary token, you need a plain text password. > > In a separate thread, we were just discussing getting our the Win2K > security > issue by calling the runas service, but that still requires a plain > text > password. > > Can you get around asking for the pwd from the user? Maybe you could > switch > to Basic authentication and SSL so that you would have it. > > Joe K. > > "Shawn Anderson" <sa*******@eye-catcher.com> wrote in message > news:uO******************@TK2MSFTNGP11.phx.gbl... >> Excellent Idea -- only one major problem: It only works on Windows >> 2003. >> >> Any other thoughts that will work on atleast Windows 2000? >> >> Shawn >> >> "bruce barker" <no***********@safeco.com> wrote in message >> news:e9**************@TK2MSFTNGP10.phx.gbl... >> > you should use CreateProcessWithTokenW. you will have use >> > DuplicateToken >> > to >> > get a primary token necessary for the call. >> > >> > -- bruce (sqlwork.com) >> > >> > >> > >> > "Shawn Anderson" <sa*******@eye-catcher.com> wrote in message >> > news:O6**************@TK2MSFTNGP12.phx.gbl... >> >> Does anyone know how to get Process.Start() to use the security >> >> context >> >> of >> >> the user that my ASP.NET app is impersonating? It seems that it is >> >> always >> >> run as the ASPNET User no matter what I do. >> >> >> >> I know that I can look into CreateProcessWithLogonW, but I really >> >> do > not >> >> want to ask and store a users password. >> >> >> >> Anyone have any thoughts? >> >> >> >> Thanks >> >> Shawn >> >> >> >> >> > >> > >> >> > > This thread has been closed and replies have been disabled. Please start a new discussion. Similar topics |
by: Dmitri Shvetsov |
last post by:
Hi,
Can I start an external process from the Web Service?
I'm using a code, compiler keeps silence, compiles ok and starts the
project. When I trace in Debugger it doesn't start an external...
|
by: Jeff Reed |
last post by:
I am experiencing the the problem outlined the below. Unfortunately, I am using WinXP and I not sure if I can apply the solution due to lack of security control
Any feed back would be apreciated
...
|
by: Jesse Cates via DotNetMonster.com |
last post by:
I am trying to launch a command-line program that came with a program called Live Stats. This command-line program is used to automate configuration of Live Stats. In order to test this, I am just...
|
by: Phillip N Rounds |
last post by:
What I would like to do is to have a console application on my server
started when a user performs a specific action on a web form. Specifically,
MyConsoleApp overwrites an existing file with...
|
by: Kirk |
last post by:
The following C# web service works fine until you uncomment the lines
setting UserName and Password. Then, Process.Start throws an
Access is Denied Exception. This is with .NET 2.0, of
course...
| |
by: Paul |
last post by:
Hi,
I am trying to start a process hidden. My code:
wordprocess = new System.Diagnostics.Process(); ;
wordprocess.StartInfo = new System.Diagnostics.ProcessStartInfo(wcmd,
args);...
|
by: Pierre |
last post by:
Can someone set me straight on things to look out for in regards to being
able to launch an external application from within an asp.net 2.0 web
application please? I am using impersonation in...
|
by: illegal.prime |
last post by:
Hi all, I have a service that needs to start a regular windows
application.
I'm running the service as ServiceAccount.LocalSystem.
But, when it starts the process (using Process.Start) the GUI...
|
by: SR |
last post by:
I have a requirement from a customer to run some command line applications
from a service. I have most of my service coded and I've come across an
issue with the important part of the application,...
|
by: marktang |
last post by:
ONU (Optical Network Unit) is one of the key components for providing high-speed Internet services. Its primary function is to act as an endpoint device located at the user's premises. However,...
|
by: jinu1996 |
last post by:
In today's digital age, having a compelling online presence is paramount for businesses aiming to thrive in a competitive landscape. At the heart of this digital strategy lies an intricately woven...
| |
by: tracyyun |
last post by:
Dear forum friends,
With the development of smart home technology, a variety of wireless communication protocols have appeared on the market, such as Zigbee, Z-Wave, Wi-Fi, Bluetooth, etc. Each...
|
by: agi2029 |
last post by:
Let's talk about the concept of autonomous AI software engineers and no-code agents. These AIs are designed to manage the entire lifecycle of a software development project—planning, coding, testing,...
|
by: isladogs |
last post by:
The next Access Europe User Group meeting will be on Wednesday 1 May 2024 starting at 18:00 UK time (6PM UTC+1) and finishing by 19:30 (7.30PM).
In this session, we are pleased to welcome a new...
|
by: conductexam |
last post by:
I have .net C# application in which I am extracting data from word file and save it in database particularly. To store word all data as it is I am converting the whole word file firstly in HTML and...
|
by: TSSRALBI |
last post by:
Hello
I'm a network technician in training and I need your help.
I am currently learning how to create and manage the different types of VPNs and I have a question about LAN-to-LAN VPNs.
The...
|
by: adsilva |
last post by:
A Windows Forms form does not have the event Unload, like VB6. What one acts like?
| |
by: bsmnconsultancy |
last post by:
In today's digital era, a well-designed website is crucial for businesses looking to succeed. Whether you're a small business owner or a large corporation in Toronto, having a strong online presence...
| |