Authorizing Anonymous User - IIS6/.NET

K

Kevin Hoskins

Is there anyway to force authentication of the Anonymous user?

Here is the situation:
I have an ASP.NET page which calls an assembly which requires a certain
level of permissions. The page is running in a virtual server whose
anonymous user is a network account with the required permissions. This
allows anyone to view the page and see the data. This is working great,
however, due to what is being returned, the page load time is longer than
what I want the user to have to wait for.

I moved the process to a seperate thread in order to return the page to the
user right away. Where the process was working great when run in the same
thread, it fails to work in the 2nd thread. Somehow the single thread is
authenticating the anonymous user to run the process, but when spun to a
different thread which should have the same permissions as the parent, it is
not authorizing.

Any suggestions on how to get the thread to use the credentials of the
parent?
 
B

bruce barker

when you start a thread in NT, it runs under the context (user) of the
originating process, not thread. this means if you create a thread, it will
be the user that asp.net process is running under. you have two options:

1) change the asp.net machine account to your anonymous account.
2) have the thread login as the anonymous account at startup.

-- bruce (sqlwork.com)
 
K

Kevin Hoskins

Option #1 requires that the password is in cleartext in the xml - that is
not acceptable here.
Option #2 was the route that I went using the network account as the
anonymous user.

As of about 15 minutes ago, I solved my problem. In hopes that this will
help someone else, here is the solution:

My original code was using the current thread's principal to set the
WindowsPrincipal. By switching this around to get the WindowsPrincipal and
use that to set the thread's principal, the authentication started to work.
Original Code:
_winPrincipal =(WindowsPrincipal) Thread.CurrentPrincipal;
_winIdentity = (WindowsIdentity) _winPrincipal.Identity;

Working Code:
_winIdentity = WindowsIdentity.GetCurrent();
_winPrincipal = new WindowsPrincipal(_winIdentity);

Virtual Directory: Anonymous access only using user account with network
access
Web.config: authentication mode: Windows
impersonation: false
 

Ask a Question

Want to reply to this thread or ask your own question?

You'll need to choose a username for the site, which only take a couple of moments. After that, you can post your question and our members will help you out.

Ask a Question

Similar Threads

web.config and Anonymous Authentication problems ??? 0
Anonymous User 3
Permissions on new Text File - IIS6 and Windows authentication. 1
Configure IIS6 to run asp.net 2
Problem with a login script, SESSION user rights and put this together so it works with the other pages and MySQL. Code examples. 2
Login failed for user 'NT AUTHORITY\ANONYMOUS LOGON 5
Impersonation and Anonymous User 1
Hi, I am a webflow user. I am looking for CSS code that can KEEP ALL ELEMENTS POSITIONED in the SAME spot across all resolutions 0

Staff online

Members online

Total: 37 (members: 2, guests: 35)
Robots: 319

Forum statistics

Threads
473,755
Messages
2,569,536
Members
45,012
Latest member
RoxanneDzm

Latest Threads

Top