E
Evgeny Zoldin
Hi ALL.
I have the configuration:
1. WinXP PRO with MS IIS 5.0 and installed ASP.NET
2. ASP.NET application A configured to authenticate only users from
local Users group.
I would like to de the following:
Logged on user is able through ASP.NET-Pages to change its own Logon
Username, Password and Full Name
I tried to implement it by the code (C#):
DirectoryEntry deCurrUser = new DirectoryEntry("WinNT://" +
User.Identity.Name);
deCurrUser.Invoke("SetPassword", new string[]{"123"} ); // ***
If the logged on user belongs only to Users group then the statement ***
causes Exception "SystemUnautherizedException: General access denied error".
But as soon as that user has been included into Administrators group the
statement *** is executed well.
I know about impersonation possibility, but it requires to type clear
Administrators username and password in code-behind class that will be
published on target server.
So, what should I do in order to give to user the ability to change its
username, password and full name?
May be orginize on the target server a group, add the users into the group
and gain to this group some specils rights?
Thanx
Evgeny
I have the configuration:
1. WinXP PRO with MS IIS 5.0 and installed ASP.NET
2. ASP.NET application A configured to authenticate only users from
local Users group.
I would like to de the following:
Logged on user is able through ASP.NET-Pages to change its own Logon
Username, Password and Full Name
I tried to implement it by the code (C#):
DirectoryEntry deCurrUser = new DirectoryEntry("WinNT://" +
User.Identity.Name);
deCurrUser.Invoke("SetPassword", new string[]{"123"} ); // ***
If the logged on user belongs only to Users group then the statement ***
causes Exception "SystemUnautherizedException: General access denied error".
But as soon as that user has been included into Administrators group the
statement *** is executed well.
I know about impersonation possibility, but it requires to type clear
Administrators username and password in code-behind class that will be
published on target server.
So, what should I do in order to give to user the ability to change its
username, password and full name?
May be orginize on the target server a group, add the users into the group
and gain to this group some specils rights?
Thanx
Evgeny