D
Dominick Baier
which OS?
before XP/2k3 LogonUser needed basically SYSTEM privileges...
before XP/2k3 LogonUser needed basically SYSTEM privileges...
You are using an out of date browser. It may not display this or other websites correctly.
You should upgrade or use an alternative browser.
You should upgrade or use an alternative browser.
B
Bill Alexander
I'm also having problems with impersonation. Or rather, I'm not quite
getting that far.
I need to be able to manually authenticate users. However, every attempt to
make the Win32 call to LogonUser returns an "Access Denied" exception.
I've attempted this from both web and windows forms apps, with identical
results. I've tried demanding full trust to no effect.
I'm running the 2.0 framework.
Anyone have any ideas?
Thanks.
getting that far.
I need to be able to manually authenticate users. However, every attempt to
make the Win32 call to LogonUser returns an "Access Denied" exception.
I've attempted this from both web and windows forms apps, with identical
results. I've tried demanding full trust to no effect.
I'm running the 2.0 framework.
Anyone have any ideas?
Thanks.
B
Bill Alexander
Actually, I found the problem. The true error code was being overridden by
some code that I hadn't noticed. This was causing any failure to
authenticate to be reported as "Access Denied".
The problem was an actual failure to authenticate due to attempting to pass
the domain and username as "domain\username" while leaving the domain
argument null. The docs state that this is an acceptable practice, but it
wasn't able to authenticate this way.
I suspect that the slash's escaped form "\\" may have been passed to
LogonUser without being unescaped, and may have been the source of the
problem. Though I haven't had time to confirm that yet.
some code that I hadn't noticed. This was causing any failure to
authenticate to be reported as "Access Denied".
The problem was an actual failure to authenticate due to attempting to pass
the domain and username as "domain\username" while leaving the domain
argument null. The docs state that this is an acceptable practice, but it
wasn't able to authenticate this way.
I suspect that the slash's escaped form "\\" may have been passed to
LogonUser without being unescaped, and may have been the source of the
problem. Though I haven't had time to confirm that yet.
Ask a Question
Want to reply to this thread or ask your own question?
You'll need to choose a username for the site, which only take a couple of moments. After that, you can post your question and our members will help you out.
Similar Threads
Forum statistics
Latest Threads
-
Can I stop HTTPS?
- Started by IBMJunkman
-
Stephanie Beaudeau Emsworth is Running a Prostitution Ring
- Started by verona
-
Reverse search for a website
- Started by DRCM
-
What are the key advantages of using a SaaS (Software as a Service) model for application development?
- Started by remotedevelopers
-
How to build a database-driven web page
- Started by av3mar1a153
-
Hola
- Started by luuciefer
-
Using a DTSX file with GoDaddy
- Started by IBMJunkman