By using this site, you agree to our updated Privacy Policy and our Terms of Use. Manage your Cookies Settings.
429,077 Members | 2,160 Online
Bytes IT Community
+ Ask a Question
Need help? Post your question and get tips & solutions from a community of 429,077 IT Pros & Developers. It's quick & easy.

Authenticate to a webservice by WindowsIdentity

P: n/a
I know how to authenticate to a webservice using either of these
ways(Assuming that rService represents the webservice):

1) rService.Credentials = new
System.Net.NetworkCredential("username","password" ,"domainName");
2)rService.Credentials = System.Net.CredentialCache.DefaultCredentials;

My question is that is there a way to authenticate to a user using
WindowsIdentity ???
Thanks for your help
Nov 23 '05 #1
Share this Question
Share on Google+
13 Replies


P: n/a
Hello ALI-R,
Both the methods you suggested use windows identity to authenticate! Only
they dont use ws security. They use IIS authentication.

HTH
Regards,
Dilip Krishnan
MCAD, MCSD.net
dkrishnan at geniant dot com
http://www.geniant.com
I know how to authenticate to a webservice using either of these
ways(Assuming that rService represents the webservice):

1) rService.Credentials = new
System.Net.NetworkCredential("username","password" ,"domainName");
2)rService.Credentials =
System.Net.CredentialCache.DefaultCredentials;

My question is that is there a way to authenticate to a user using
WindowsIdentity ???

Thanks for your help

Nov 23 '05 #2

P: n/a
what do you mean by they don't use windows security?

Thanks
"Dilip Krishnan" <dk*******@NOSPAM.geniant.com> wrote in message
news:22**********************@msnews.microsoft.com ...
Hello ALI-R,
Both the methods you suggested use windows identity to authenticate! Only they dont use ws security. They use IIS authentication.

HTH
Regards,
Dilip Krishnan
MCAD, MCSD.net
dkrishnan at geniant dot com
http://www.geniant.com
I know how to authenticate to a webservice using either of these
ways(Assuming that rService represents the webservice):

1) rService.Credentials = new
System.Net.NetworkCredential("username","password" ,"domainName");
2)rService.Credentials =
System.Net.CredentialCache.DefaultCredentials;

My question is that is there a way to authenticate to a user using
WindowsIdentity ???

Thanks for your help


Nov 23 '05 #3

P: n/a
Hello ALI-R,
ws = web service. In your case web page as such is protected by IIS (read
transport level). WS-Security gives you message level authentication/integrity/confidentiality
(has nothing to do with IIS or http). When you set the credentials you are
actually using windows/basic authentication supported by IIS.

HTH
Regards,
Dilip Krishnan
MCAD, MCSD.net
dkrishnan at geniant dot com
http://www.geniant.com
what do you mean by they don't use windows security?

Thanks
"Dilip Krishnan" <dk*******@NOSPAM.geniant.com> wrote in message
news:22**********************@msnews.microsoft.com ...
Hello ALI-R,
Both the methods you suggested use windows identity to authenticate!

Only
they dont use ws security. They use IIS authentication.

HTH
Regards,
Dilip Krishnan
MCAD, MCSD.net
dkrishnan at geniant dot com
http://www.geniant.com
I know how to authenticate to a webservice using either of these
ways(Assuming that rService represents the webservice):

1) rService.Credentials = new
System.Net.NetworkCredential("username","password" ,"domainName");
2)rService.Credentials =
System.Net.CredentialCache.DefaultCredentials;

My question is that is there a way to authenticate to a user using
WindowsIdentity ???

Thanks for your help

Nov 23 '05 #4

P: n/a
Thanks ,I think I somehow underestood it.Correct me if I'm wrong please?
Since we have enabled windows integrated authentication in our web service
which is serverd by IIS ,using
1) rService.Credentials = new
System.Net.NetworkCredential("username","password" ,"domainName");
2)rService.Credentials =
System.Net.CredentialCache.DefaultCredentials;

Infact we are using **WindowsIdentity** to authenticate to our
webservice,right?

What I was looking for is to authenticate to the webservice in something
like where "LogonUser" is an API which I can use in conjunction with the
WindowsIdentity class to create a new temporary identity to impersonate with
later :

public static WindowsIdentity CreateIdentity(string User, string Domain,
string Password)
{
// The Windows NT user token.
IntPtr tokenHandle = new IntPtr(0);

const int LOGON32_PROVIDER_DEFAULT = 0;
const int LOGON32_LOGON_NETWORK_CLEARTEXT = 3;

tokenHandle = IntPtr.Zero;

// Call LogonUser to obtain a handle to an access token.
bool returnValue = LogonUser(User, Domain, Password,
LOGON32_LOGON_NETWORK_CLEARTEXT, LOGON32_PROVIDER_DEFAULT,
ref tokenHandle);
if (false == returnValue)
{
int ret = Marshal.GetLastWin32Error();
throw new Exception("LogonUser failed with error code: " +
ret);
}
//The WindowsIdentity class makes a new copy of the token.
//It also handles calling CloseHandle for the copy.
WindowsIdentity id = new WindowsIdentity(tokenHandle);
CloseHandle(tokenHandle);
return id;
}

Thanks again,
Ali-R

"Dilip Krishnan" <dk*******@NOSPAM.geniant.com> wrote in message
news:22**********************@msnews.microsoft.com ... Hello ALI-R,
ws = web service. In your case web page as such is protected by IIS (read
transport level). WS-Security gives you message level authentication/integrity/confidentiality (has nothing to do with IIS or http). When you set the credentials you are
actually using windows/basic authentication supported by IIS.

HTH
Regards,
Dilip Krishnan
MCAD, MCSD.net
dkrishnan at geniant dot com
http://www.geniant.com
what do you mean by they don't use windows security?

Thanks
"Dilip Krishnan" <dk*******@NOSPAM.geniant.com> wrote in message
news:22**********************@msnews.microsoft.com ...
Hello ALI-R,
Both the methods you suggested use windows identity to authenticate!

Only
they dont use ws security. They use IIS authentication.

HTH
Regards,
Dilip Krishnan
MCAD, MCSD.net
dkrishnan at geniant dot com
http://www.geniant.com
I know how to authenticate to a webservice using either of these
ways(Assuming that rService represents the webservice):

1) rService.Credentials = new
System.Net.NetworkCredential("username","password" ,"domainName");
2)rService.Credentials =
System.Net.CredentialCache.DefaultCredentials;

My question is that is there a way to authenticate to a user using
WindowsIdentity ???

Thanks for your help


Nov 23 '05 #5

P: n/a
Hello ALI-R,

Not sure I follow what you're trying to achieve... where do you hope to
call the Createidentity method?

HTH
Regards,
Dilip Krishnan
MCAD, MCSD.net
dkrishnan at geniant dot com
http://www.geniant.com
Thanks ,I think I somehow underestood it.Correct me if I'm wrong
please? Since we have enabled windows integrated authentication in our
web service which is serverd by IIS ,using
> 1) rService.Credentials = new
> System.Net.NetworkCredential("username","password" ,"domainName");
> 2)rService.Credentials =
> System.Net.CredentialCache.DefaultCredentials;
>

Infact we are using **WindowsIdentity** to authenticate to our
webservice,right?

What I was looking for is to authenticate to the webservice in
something like where "LogonUser" is an API which I can use in
conjunction with the WindowsIdentity class to create a new temporary
identity to impersonate with later :

public static WindowsIdentity CreateIdentity(string User, string
Domain,
string Password)
{
// The Windows NT user token.
IntPtr tokenHandle = new IntPtr(0);
const int LOGON32_PROVIDER_DEFAULT = 0;
const int LOGON32_LOGON_NETWORK_CLEARTEXT = 3;
tokenHandle = IntPtr.Zero;

// Call LogonUser to obtain a handle to an access token.
bool returnValue = LogonUser(User, Domain, Password,
LOGON32_LOGON_NETWORK_CLEARTEXT,
LOGON32_PROVIDER_DEFAULT,
ref tokenHandle);
if (false == returnValue)
{
int ret = Marshal.GetLastWin32Error();
throw new Exception("LogonUser failed with error code:
" +
ret);
}
//The WindowsIdentity class makes a new copy of the token.
//It also handles calling CloseHandle for the copy.
WindowsIdentity id = new WindowsIdentity(tokenHandle);
CloseHandle(tokenHandle);
return id;
}
Thanks again,
Ali-R
"Dilip Krishnan" <dk*******@NOSPAM.geniant.com> wrote in message
news:22**********************@msnews.microsoft.com ...
Hello ALI-R,
ws = web service. In your case web page as such is protected by IIS
(read
transport level). WS-Security gives you message level

authentication/integrity/confidentiality
(has nothing to do with IIS or http). When you set the credentials
you are actually using windows/basic authentication supported by IIS.

HTH
Regards,
Dilip Krishnan
MCAD, MCSD.net
dkrishnan at geniant dot com
http://www.geniant.com
what do you mean by they don't use windows security?

Thanks
"Dilip Krishnan" <dk*******@NOSPAM.geniant.com> wrote in message
news:22**********************@msnews.microsoft.com ...
Hello ALI-R,
Both the methods you suggested use windows identity to
authenticate!
Only

they dont use ws security. They use IIS authentication.

HTH
Regards,
Dilip Krishnan
MCAD, MCSD.net
dkrishnan at geniant dot com
http://www.geniant.com
> I know how to authenticate to a webservice using either of these
> ways(Assuming that rService represents the webservice):
>
> 1) rService.Credentials = new
> System.Net.NetworkCredential("username","password" ,"domainName");
> 2)rService.Credentials =
> System.Net.CredentialCache.DefaultCredentials;
>
> My question is that is there a way to authenticate to a user using
> WindowsIdentity ???
>
> Thanks for your help
>

Nov 23 '05 #6

P: n/a
I'd like to feed the output of this method which is of WindowsIdentity Type
to Webservice in a way.I just wondered if the following statements do the
same thing.
>> 1) rService.Credentials = new
>> System.Net.NetworkCredential("username","password" ,"domainName");
>> 2)rService.Credentials =
>> System.Net.CredentialCache.DefaultCredentials;

thanks,
ALI-R

"Dilip Krishnan" <dk*******@NOSPAM.geniant.com> wrote in message
news:22**********************@msnews.microsoft.com ... Hello ALI-R,

Not sure I follow what you're trying to achieve... where do you hope to
call the Createidentity method?
HTH
Regards,
Dilip Krishnan
MCAD, MCSD.net
dkrishnan at geniant dot com
http://www.geniant.com
Thanks ,I think I somehow underestood it.Correct me if I'm wrong
please? Since we have enabled windows integrated authentication in our
web service which is serverd by IIS ,using
>> 1) rService.Credentials = new
>> System.Net.NetworkCredential("username","password" ,"domainName");
>> 2)rService.Credentials =
>> System.Net.CredentialCache.DefaultCredentials;
>>

Infact we are using **WindowsIdentity** to authenticate to our
webservice,right?

What I was looking for is to authenticate to the webservice in
something like where "LogonUser" is an API which I can use in
conjunction with the WindowsIdentity class to create a new temporary
identity to impersonate with later :

public static WindowsIdentity CreateIdentity(string User, string
Domain,
string Password)
{
// The Windows NT user token.
IntPtr tokenHandle = new IntPtr(0);
const int LOGON32_PROVIDER_DEFAULT = 0;
const int LOGON32_LOGON_NETWORK_CLEARTEXT = 3;
tokenHandle = IntPtr.Zero;

// Call LogonUser to obtain a handle to an access token.
bool returnValue = LogonUser(User, Domain, Password,
LOGON32_LOGON_NETWORK_CLEARTEXT,
LOGON32_PROVIDER_DEFAULT,
ref tokenHandle);
if (false == returnValue)
{
int ret = Marshal.GetLastWin32Error();
throw new Exception("LogonUser failed with error code:
" +
ret);
}
//The WindowsIdentity class makes a new copy of the token.
//It also handles calling CloseHandle for the copy.
WindowsIdentity id = new WindowsIdentity(tokenHandle);
CloseHandle(tokenHandle);
return id;
}
Thanks again,
Ali-R
"Dilip Krishnan" <dk*******@NOSPAM.geniant.com> wrote in message
news:22**********************@msnews.microsoft.com ...
Hello ALI-R,
ws = web service. In your case web page as such is protected by IIS
(read
transport level). WS-Security gives you message level

authentication/integrity/confidentiality
(has nothing to do with IIS or http). When you set the credentials
you are actually using windows/basic authentication supported by IIS.

HTH
Regards,
Dilip Krishnan
MCAD, MCSD.net
dkrishnan at geniant dot com
http://www.geniant.com
what do you mean by they don't use windows security?

Thanks
"Dilip Krishnan" <dk*******@NOSPAM.geniant.com> wrote in message
news:22**********************@msnews.microsoft.com ...
> Hello ALI-R,
> Both the methods you suggested use windows identity to
> authenticate!
Only

> they dont use ws security. They use IIS authentication.
>
> HTH
> Regards,
> Dilip Krishnan
> MCAD, MCSD.net
> dkrishnan at geniant dot com
> http://www.geniant.com
>> I know how to authenticate to a webservice using either of these
>> ways(Assuming that rService represents the webservice):
>>
>> 1) rService.Credentials = new
>> System.Net.NetworkCredential("username","password" ,"domainName");
>> 2)rService.Credentials =
>> System.Net.CredentialCache.DefaultCredentials;
>>
>> My question is that is there a way to authenticate to a user using
>> WindowsIdentity ???
>>
>> Thanks for your help
>>


Nov 23 '05 #7

P: n/a
Hello Ra*@Alirezaei.com,
It will not. You need to convert the Identity into an ICredential implementing
class. You could get the identity using the api and create a network credential
from the identity values

HTH
Regards,
Dilip Krishnan
MCAD, MCSD.net
dkrishnan at geniant dot com
http://www.geniant.com
I'd like to feed the output of this method which is of WindowsIdentity
Type to Webservice in a way.I just wondered if the following
statements do the same thing.
>>> 1) rService.Credentials = new
>>> System.Net.NetworkCredential("username","password" ,"domainName")
>>> ; 2)rService.Credentials =
>>> System.Net.CredentialCache.DefaultCredentials;
>>>

thanks,
ALI-R
"Dilip Krishnan" <dk*******@NOSPAM.geniant.com> wrote in message
news:22**********************@msnews.microsoft.com ...
Hello ALI-R,

Not sure I follow what you're trying to achieve... where do you hope
to
call the Createidentity method?
HTH
Regards,
Dilip Krishnan
MCAD, MCSD.net
dkrishnan at geniant dot com
http://www.geniant.com
Thanks ,I think I somehow underestood it.Correct me if I'm wrong
please? Since we have enabled windows integrated authentication in
our web service which is serverd by IIS ,using

>>> 1) rService.Credentials = new
>>> System.Net.NetworkCredential("username","password" ,"domainName")
>>> ; 2)rService.Credentials =
>>> System.Net.CredentialCache.DefaultCredentials;
>>>
Infact we are using **WindowsIdentity** to authenticate to our
webservice,right?

What I was looking for is to authenticate to the webservice in
something like where "LogonUser" is an API which I can use in
conjunction with the WindowsIdentity class to create a new temporary
identity to impersonate with later :

public static WindowsIdentity CreateIdentity(string User, string
Domain,
string Password)
{
// The Windows NT user token.
IntPtr tokenHandle = new IntPtr(0);
const int LOGON32_PROVIDER_DEFAULT = 0;
const int LOGON32_LOGON_NETWORK_CLEARTEXT = 3;
tokenHandle = IntPtr.Zero;
// Call LogonUser to obtain a handle to an access token.
bool returnValue = LogonUser(User, Domain, Password,
LOGON32_LOGON_NETWORK_CLEARTEXT,
LOGON32_PROVIDER_DEFAULT,
ref tokenHandle);
if (false == returnValue)
{
int ret = Marshal.GetLastWin32Error();
throw new Exception("LogonUser failed with error code:
" +
ret);
}
//The WindowsIdentity class makes a new copy of the token.
//It also handles calling CloseHandle for the copy.
WindowsIdentity id = new WindowsIdentity(tokenHandle);
CloseHandle(tokenHandle);
return id;
}
Thanks again,
Ali-R
"Dilip Krishnan" <dk*******@NOSPAM.geniant.com> wrote in message
news:22**********************@msnews.microsoft.com ...
Hello ALI-R,
ws = web service. In your case web page as such is protected by IIS
(read
transport level). WS-Security gives you message level
authentication/integrity/confidentiality

(has nothing to do with IIS or http). When you set the credentials
you are actually using windows/basic authentication supported by
IIS.

HTH
Regards,
Dilip Krishnan
MCAD, MCSD.net
dkrishnan at geniant dot com
http://www.geniant.com
> what do you mean by they don't use windows security?
>
> Thanks
> "Dilip Krishnan" <dk*******@NOSPAM.geniant.com> wrote in message
> news:22**********************@msnews.microsoft.com ...
>> Hello ALI-R,
>> Both the methods you suggested use windows identity to
>> authenticate!
> Only
>
>> they dont use ws security. They use IIS authentication.
>>
>> HTH
>> Regards,
>> Dilip Krishnan
>> MCAD, MCSD.net
>> dkrishnan at geniant dot com
>> http://www.geniant.com
>>> I know how to authenticate to a webservice using either of these
>>> ways(Assuming that rService represents the webservice):
>>>
>>> 1) rService.Credentials = new
>>> System.Net.NetworkCredential("username","password" ,"domainName")
>>> ; 2)rService.Credentials =
>>> System.Net.CredentialCache.DefaultCredentials;
>>>
>>> My question is that is there a way to authenticate to a user
>>> using WindowsIdentity ???
>>>
>>> Thanks for your help
>>>

Nov 23 '05 #8

P: n/a
Why not use WSE which has rich support for security tokens such as
UsernameTokens and SecurityContextTokens?

--
William Stacey, MVP
http://mvp.support.microsoft.com

<Ra*@Alirezaei.com> wrote in message
news:uv**************@TK2MSFTNGP14.phx.gbl...
I'd like to feed the output of this method which is of WindowsIdentity Type to Webservice in a way.I just wondered if the following statements do the
same thing.
>>> 1) rService.Credentials = new
>>> System.Net.NetworkCredential("username","password" ,"domainName");
>>> 2)rService.Credentials =
>>> System.Net.CredentialCache.DefaultCredentials;
thanks,
ALI-R

"Dilip Krishnan" <dk*******@NOSPAM.geniant.com> wrote in message
news:22**********************@msnews.microsoft.com ...
Hello ALI-R,

Not sure I follow what you're trying to achieve... where do you hope

to call the Createidentity method?
HTH
Regards,
Dilip Krishnan
MCAD, MCSD.net
dkrishnan at geniant dot com
http://www.geniant.com
Thanks ,I think I somehow underestood it.Correct me if I'm wrong
please? Since we have enabled windows integrated authentication in our
web service which is serverd by IIS ,using

>>> 1) rService.Credentials = new
>>> System.Net.NetworkCredential("username","password" ,"domainName");
>>> 2)rService.Credentials =
>>> System.Net.CredentialCache.DefaultCredentials;
>>>
Infact we are using **WindowsIdentity** to authenticate to our
webservice,right?

What I was looking for is to authenticate to the webservice in
something like where "LogonUser" is an API which I can use in
conjunction with the WindowsIdentity class to create a new temporary
identity to impersonate with later :

public static WindowsIdentity CreateIdentity(string User, string
Domain,
string Password)
{
// The Windows NT user token.
IntPtr tokenHandle = new IntPtr(0);
const int LOGON32_PROVIDER_DEFAULT = 0;
const int LOGON32_LOGON_NETWORK_CLEARTEXT = 3;
tokenHandle = IntPtr.Zero;

// Call LogonUser to obtain a handle to an access token.
bool returnValue = LogonUser(User, Domain, Password,
LOGON32_LOGON_NETWORK_CLEARTEXT,
LOGON32_PROVIDER_DEFAULT,
ref tokenHandle);
if (false == returnValue)
{
int ret = Marshal.GetLastWin32Error();
throw new Exception("LogonUser failed with error code:
" +
ret);
}
//The WindowsIdentity class makes a new copy of the token.
//It also handles calling CloseHandle for the copy.
WindowsIdentity id = new WindowsIdentity(tokenHandle);
CloseHandle(tokenHandle);
return id;
}
Thanks again,
Ali-R
"Dilip Krishnan" <dk*******@NOSPAM.geniant.com> wrote in message
news:22**********************@msnews.microsoft.com ...

Hello ALI-R,
ws = web service. In your case web page as such is protected by IIS
(read
transport level). WS-Security gives you message level
authentication/integrity/confidentiality

(has nothing to do with IIS or http). When you set the credentials
you are actually using windows/basic authentication supported by IIS.

HTH
Regards,
Dilip Krishnan
MCAD, MCSD.net
dkrishnan at geniant dot com
http://www.geniant.com
> what do you mean by they don't use windows security?
>
> Thanks
> "Dilip Krishnan" <dk*******@NOSPAM.geniant.com> wrote in message
> news:22**********************@msnews.microsoft.com ...
>> Hello ALI-R,
>> Both the methods you suggested use windows identity to
>> authenticate!
> Only
>
>> they dont use ws security. They use IIS authentication.
>>
>> HTH
>> Regards,
>> Dilip Krishnan
>> MCAD, MCSD.net
>> dkrishnan at geniant dot com
>> http://www.geniant.com
>>> I know how to authenticate to a webservice using either of these
>>> ways(Assuming that rService represents the webservice):
>>>
>>> 1) rService.Credentials = new
>>> System.Net.NetworkCredential("username","password" ,"domainName");
>>> 2)rService.Credentials =
>>> System.Net.CredentialCache.DefaultCredentials;
>>>
>>> My question is that is there a way to authenticate to a user using
>>> WindowsIdentity ???
>>>
>>> Thanks for your help
>>>




Nov 23 '05 #9

P: n/a
Do u mean Webservices Enhancements 2.0?

"William Stacey [MVP]" <st***********@mvps.org> wrote in message
news:uo**************@TK2MSFTNGP11.phx.gbl...
Why not use WSE which has rich support for security tokens such as
UsernameTokens and SecurityContextTokens?

--
William Stacey, MVP
http://mvp.support.microsoft.com

<Ra*@Alirezaei.com> wrote in message
news:uv**************@TK2MSFTNGP14.phx.gbl...
I'd like to feed the output of this method which is of WindowsIdentity

Type
to Webservice in a way.I just wondered if the following statements do the
same thing.
>>>>> 1) rService.Credentials = new
>>>>> System.Net.NetworkCredential("username","password" ,"domainName");
>>>>> 2)rService.Credentials =
>>>>> System.Net.CredentialCache.DefaultCredentials;


thanks,
ALI-R

"Dilip Krishnan" <dk*******@NOSPAM.geniant.com> wrote in message
news:22**********************@msnews.microsoft.com ...
Hello ALI-R,

Not sure I follow what you're trying to achieve... where do you hope

to call the Createidentity method?
HTH
Regards,
Dilip Krishnan
MCAD, MCSD.net
dkrishnan at geniant dot com
http://www.geniant.com

> Thanks ,I think I somehow underestood it.Correct me if I'm wrong
> please? Since we have enabled windows integrated authentication in our> web service which is serverd by IIS ,using
>
>>>>> 1) rService.Credentials = new
>>>>> System.Net.NetworkCredential("username","password" ,"domainName");
>>>>> 2)rService.Credentials =
>>>>> System.Net.CredentialCache.DefaultCredentials;
>>>>>
> Infact we are using **WindowsIdentity** to authenticate to our
> webservice,right?
>
> What I was looking for is to authenticate to the webservice in
> something like where "LogonUser" is an API which I can use in
> conjunction with the WindowsIdentity class to create a new temporary
> identity to impersonate with later :
>
> public static WindowsIdentity CreateIdentity(string User, string
> Domain,
> string Password)
> {
> // The Windows NT user token.
> IntPtr tokenHandle = new IntPtr(0);
> const int LOGON32_PROVIDER_DEFAULT = 0;
> const int LOGON32_LOGON_NETWORK_CLEARTEXT = 3;
> tokenHandle = IntPtr.Zero;
>
> // Call LogonUser to obtain a handle to an access token.
> bool returnValue = LogonUser(User, Domain, Password,
> LOGON32_LOGON_NETWORK_CLEARTEXT,
> LOGON32_PROVIDER_DEFAULT,
> ref tokenHandle);
> if (false == returnValue)
> {
> int ret = Marshal.GetLastWin32Error();
> throw new Exception("LogonUser failed with error code:
> " +
> ret);
> }
> //The WindowsIdentity class makes a new copy of the token.
> //It also handles calling CloseHandle for the copy.
> WindowsIdentity id = new WindowsIdentity(tokenHandle);
> CloseHandle(tokenHandle);
> return id;
> }
> Thanks again,
> Ali-R
> "Dilip Krishnan" <dk*******@NOSPAM.geniant.com> wrote in message
> news:22**********************@msnews.microsoft.com ...
>
>> Hello ALI-R,
>> ws = web service. In your case web page as such is protected by IIS
>> (read
>> transport level). WS-Security gives you message level
> authentication/integrity/confidentiality
>
>> (has nothing to do with IIS or http). When you set the credentials
>> you are actually using windows/basic authentication supported by IIS.>>
>> HTH
>> Regards,
>> Dilip Krishnan
>> MCAD, MCSD.net
>> dkrishnan at geniant dot com
>> http://www.geniant.com
>>> what do you mean by they don't use windows security?
>>>
>>> Thanks
>>> "Dilip Krishnan" <dk*******@NOSPAM.geniant.com> wrote in message
>>> news:22**********************@msnews.microsoft.com ...
>>>> Hello ALI-R,
>>>> Both the methods you suggested use windows identity to
>>>> authenticate!
>>> Only
>>>
>>>> they dont use ws security. They use IIS authentication.
>>>>
>>>> HTH
>>>> Regards,
>>>> Dilip Krishnan
>>>> MCAD, MCSD.net
>>>> dkrishnan at geniant dot com
>>>> http://www.geniant.com
>>>>> I know how to authenticate to a webservice using either of these
>>>>> ways(Assuming that rService represents the webservice):
>>>>>
>>>>> 1) rService.Credentials = new
>>>>> System.Net.NetworkCredential("username","password" ,"domainName");
>>>>> 2)rService.Credentials =
>>>>> System.Net.CredentialCache.DefaultCredentials;
>>>>>
>>>>> My question is that is there a way to authenticate to a user using>>>>> WindowsIdentity ???
>>>>>
>>>>> Thanks for your help
>>>>>


Nov 23 '05 #10

P: n/a
> Do u mean Webservices Enhancements 2.0?

Yes :)
--wjs
Nov 23 '05 #11

P: n/a
I'm reading that now but before going further,
Can I flow the SecurityContextTokens from a webservice on one server to
another webservice on another server using WSE ?

Thanks,
"William Stacey [MVP]" <st***********@mvps.org> wrote in message
news:%2****************@TK2MSFTNGP12.phx.gbl...
Do u mean Webservices Enhancements 2.0?


Yes :)
--wjs

Nov 23 '05 #12

P: n/a
Yes. There is doco on how to use SCTs in a web farm using a DB as the
"cache" so that all servers can see the SCTs.
http://www.microsoft.com/indonesia/msdn/sctinfarm.asp
--
William Stacey, MVP
http://mvp.support.microsoft.com

"ALI-R" <ne****@microsoft.com> wrote in message
news:OT**************@TK2MSFTNGP10.phx.gbl...
I'm reading that now but before going further,
Can I flow the SecurityContextTokens from a webservice on one server to
another webservice on another server using WSE ?

Thanks,
"William Stacey [MVP]" <st***********@mvps.org> wrote in message
news:%2****************@TK2MSFTNGP12.phx.gbl...
Do u mean Webservices Enhancements 2.0?


Yes :)
--wjs



Nov 23 '05 #13

P: n/a
Let me describe you my problem:

I 'm using a webpart which is on the sharepoint portal server to connect to
another webservice (which Reporting Services expose to the out-side world)
on a completely different Server.
My problem is that because Sharepoint authenticates the user (And I'm using
Windows Integrated Security in IIS) the token that user represents is gone
and I can't use that token to authenticate to the other webservice so I was
curious to see if I can make a WindowsIdentity in my webpart(in sharepoint)
by which I can impersonate the user (or a privilaged account) to
authenticate to the webservice the Reporting services exposes.I know that
,RS webservice might not using WSE 2.0 ,but I can write another
webservice(using WSE 2.0) which gets my credetional and authenticate to the
Reoporting services webservice.how about that?

Thanks for monitoing this thread.

Ali-R
"William Stacey [MVP]" <st***********@mvps.org> wrote in message
news:%2******************@TK2MSFTNGP12.phx.gbl...
Yes. There is doco on how to use SCTs in a web farm using a DB as the
"cache" so that all servers can see the SCTs.
http://www.microsoft.com/indonesia/msdn/sctinfarm.asp
--
William Stacey, MVP
http://mvp.support.microsoft.com

"ALI-R" <ne****@microsoft.com> wrote in message
news:OT**************@TK2MSFTNGP10.phx.gbl...
I'm reading that now but before going further,
Can I flow the SecurityContextTokens from a webservice on one server to
another webservice on another server using WSE ?

Thanks,
"William Stacey [MVP]" <st***********@mvps.org> wrote in message
news:%2****************@TK2MSFTNGP12.phx.gbl...
> Do u mean Webservices Enhancements 2.0?

Yes :)
--wjs


Nov 23 '05 #14

This discussion thread is closed

Replies have been disabled for this discussion.