B
Brian
I have read various articles regarding explaining ASP.Net
security model. I have one simple question regarding
Delegation that i can't seemed to get answered:
I have a web service that opens a file on another server
and reads the contents.
If I set an IIS application to Anoymous which uses a
domain account, I also set-up Impersonate = True in
web.config, do I need to turn on Kerebos Delegation for
the web server or the other server?
My understanding is that the ASP.NET will impersonate the
Domain account and since IIS knows the password it passes
it successfully to the other server which also receives
the credentials. However,if another hop was involved,
delegation would be required.
security model. I have one simple question regarding
Delegation that i can't seemed to get answered:
I have a web service that opens a file on another server
and reads the contents.
If I set an IIS application to Anoymous which uses a
domain account, I also set-up Impersonate = True in
web.config, do I need to turn on Kerebos Delegation for
the web server or the other server?
My understanding is that the ASP.NET will impersonate the
Domain account and since IIS knows the password it passes
it successfully to the other server which also receives
the credentials. However,if another hop was involved,
delegation would be required.