Web Service within ASP.net application

Yes, you can impersonate the service to run under a dedicated Windows
account. I am doing this in an Intranet application. One advantage of using a
dedicated account, is that allows Connection Pooling when different users
connects to the database. The downsize is that you have to use the user
account/password in the code, something that may not respect the segragation
of duties principle in some companies (where the application administrator is
different from the SQL administrator).

private void StartWebServiceAsReadOnlyIdentity()
{
CredentialCache credentialCache = new CredentialCache();

// Create a new instance of NetworkCredential using the client
// credentials.
NetworkCredential credentials = new NetworkCredential();
credentials.UserName = m_strReadOnlyUserName;
credentials.Password = m_strReadOnlyUserPassword;
credentials.Domain = m_strReadOnlyUserDomain;

// Add the NetworkCredential to the CredentialCache.
credentialCache.Add(new Uri(service.Url),
"Negotiate", credentials);

// Add the CredentialCache to the proxy class credentials.
service.Credentials = credentialCache;
}
"c_shah" wrote:

I have a web application developed in ASP.net 2.0. I have to use SQL
server authentication (Our outside hosting company only allows sql
authentication)

Inside that web application I have a web service referenced that is
actually hosted within our company.
When you use that web service within your ASP.net web application.
What account is used by that web service? (anonymous account use by
ASP.net web application? Can that web service use a different account)
Sorry for my english..

The account used by the webservice depends on the iis settings for the
webservice.
To use different account for the webservice from your calling code,
you can supply the credentials after creating the web service object
using webService.Credentials property.
You can also configure the account used in the iis settings for the
web service if you want to configure that for all consumers.

Hi Latish,

>>You can also configure the account used in the iis settings for the
web service if you want to configure that for all consumers.

Did you mean to change anonymous account used by web service to a
specific account. Please advise. Thanks.

That depends on your requirements. If you enable anonymous access and
give the anonymous access account some rights or if you enable
impersonation , any user accessing the web service will have those
privileges.
If you want only specific(valid) users to be able to use the web
service, then you should enable windows authentication and pass in the
required credentials.
Check out http://www.15seconds.com/issue/020312.htm
and http://dotnetjunkies.com/Tutorial/5D...721A3FDF6.dcik
for a better understanding.