web page calls web service - security

Discussion in 'ASP .Net' started by Mark, Jan 4, 2007.

  1. Mark

    Mark Guest

    Assume you have a web page hosted on a local server in your domain. You
    have a .NET web service on a different server in the same domain. The web
    page calls the web service using domain authentication. By default, does
    the web page attempt to use the local ASPNET account used to run the web
    page or the domain credentials of the user?

    Thanks.

    Mark
    Mark, Jan 4, 2007
    #1
    1. Advertising

  2. Mark

    bruce barker Guest

    the default is anonymous. commonly you'd set the credential to the cache
    default (in code). the default account will depend on web.config
    settings and whether app pools are used.

    if impersonate user is set, then the cache default is the user account
    unless overridden in the web config.

    if impersonate user not set its the app pool account or the asp.net
    account if app pools are not used.

    note: if you impersonate user, then you will have a secondary token
    which can only be used for a web service on the same server. if you need
    to access a different server, then you will need to switch to kerberos,
    and enable credentials forwarding on the servers involved.

    -- bruce (sqlwork.com)

    Mark wrote:
    > Assume you have a web page hosted on a local server in your domain. You
    > have a .NET web service on a different server in the same domain. The web
    > page calls the web service using domain authentication. By default, does
    > the web page attempt to use the local ASPNET account used to run the web
    > page or the domain credentials of the user?
    >
    > Thanks.
    >
    > Mark
    >
    >
    bruce barker, Jan 4, 2007
    #2
    1. Advertising

Want to reply to this thread or ask your own question?

It takes just 2 minutes to sign up (and it's free!). Just click the sign up button to choose a username and then you can ask your own questions on the forum.
Similar Threads
  1. Isaias Formacio Serna

    Web Service that calls an external Web Service

    Isaias Formacio Serna, Jan 28, 2004, in forum: ASP .Net Security
    Replies:
    5
    Views:
    247
  2. Replies:
    1
    Views:
    233
    Joe Kaplan \(MVP - ADSI\)
    Jun 14, 2006
  3. Multiple web service calls from web service

    , Jan 5, 2006, in forum: ASP .Net Web Services
    Replies:
    1
    Views:
    180
    Rodrigo García
    Jan 9, 2006
  4. Replies:
    3
    Views:
    366
  5. Scott Baierl
    Replies:
    1
    Views:
    278
    Scott Baierl
    Jul 29, 2006
Loading...

Share This Page