Logo Questions Linux Laravel Mysql Ubuntu Git Menu
HTML CSS JAVASCRIPT SQL PYTHON PHP BOOTSTRAP JAVA JQUERY R React Kotlin
 

Impersonation and NetworkCredential

Tags:

c#

asp.net

web-services

impersonation

I need to pass a NetworkCredential object with the credentials of the currently impersonated user to a web service from an asp.net application.
My code looks like this:

WindowsIdentity windowsIdentity = HttpContext.Current.User.Identity as WindowsIdentity;
WindowsImpersonationContext context = windowsIdentity.Impersonate();
try {
    var client = GetClient();
    client.ClientCredentials.Windows.ClientCredential = CredentialCache.DefaultNetworkCredentials;
    Log("WindowsIdentity = {0}", windowsIdentity.Name);
    Log("DefaultNetworkCredentials = {0}", CredentialCache.DefaultNetworkCredentials.UserName);
    client.DoSomething();
} finally {
    context.Undo();
}

I had understood that CredentialCache.DefaultNetworkCredentials should give the credentials of the currently impersonated user, but it is not the case.
The log messages I get are

WindowsIdentity = TESTDOMAIN\TESTUSER
DefaultNetworkCredentials =

Am I doing something wrong? If so, how do you get a NetworkCredential object for the currently impersonated user?

like image 967
Paolo Tedesco Avatar asked Jan 14 '10 10:01

Paolo Tedesco

People also ask

What is impersonation in web development?

The web server user often has different permissions than you do as the website administrator. There are times when you might need the web server user to have the same permissions you do. This is called impersonation: the web server user "impersonates" your site's main file transfer protocol (FTP) user.

What is IIS impersonation?

Impersonation is independent of the authentication mode configured using the authentication configuration element. The authentication element is used to determine the User property of the current HttpContext. Impersonation is used to determine the WindowsIdentity of the ASP.NET application.

What is impersonation in MVC?

Impersonation allows machine to machine impersonation, so the client browser and the server are on the same page when it comes to the impersonation.

What is impersonation in authentication?

User Impersonation allows Administrators to access and operate as if they were logged in as that User. Administrators can impersonate other authenticated users for testing purposes and view impersonation logs.

1 Answers

A somewhat lengthy article in MSDN explaining the options to obtain network credentials in ASP:

How To: Use Impersonation and Delegation in ASP.NET 2.0

Another blog article on the topic (though I didn't check whether the solution actually works:

.NET (C#) Impersonation with Network Credentials

like image 149
Dirk Vollmar Avatar answered Oct 19 '22 00:10

Dirk Vollmar
Sign in to Comment

Related questions

Mapping GraphQL query to Select() linq to sql
Why is the performance of this custom Vector2 struct so much worse than this custom Vector4?
Returning Large Results Via a Webservice
Compact Framework - Is there an MVC framework/library available?
Why the query strings in my ASP.NET MVC route?
How to get correctly-encoded HTML from the clipboard?
Can an ASP.NET HttpHandler handle an http 400 - Bad Request?
Unregistered event handlers cause memory leak
Why does text from Assembly.GetManifestResourceStream() start with three junk characters?
Best way to check OleDbConnection state
Bytes consumed by StreamReader
Thread safe usage of System.Configuration
How to automatically convert VS2003 classes to partial Designer.cs files?
Storing C# Service Settings in Windows & Mono
Limitations in Mono for a .Net framework developer
How can I step into Microsoft's .NET framework source code?
How to change the Assembly Name in C# Programmatically
Does NUnit's Is.EqualTo not work reliably for classes derived from generic classes?
Faster String GetHashCode (e.g. using Multicore or GPU)
Directory Security

Donate For Us

If you love us? You can donate to us via Paypal or buy me a coffee so we can maintain and grow! Thank you!