|
 |  |  |  |  |  |  |
| Welcome to Windows Vista Forums. Our forum is dedicated to helping you find solutions with any problems, errors or issues you are experiencing with Windows Vista. The Vista forum also covers news and updates and has an extensive Windows Vista tutorial section that covers a wide range of tips and tricks. |
| |||||||
| |
12-14-2007
| #1 (permalink) |
| | Impersonation question Is there any easy way to impersonate a user account in WCF similar to the asp.net impersonate below? <identity impersonate="true" userName="MYDOMAIN\sharepoint" password="mysecretpassword" /> Thanks, Clayton |
My System Specs |
|
12-14-2007
| #2 (permalink) |
| | Re: Impersonation question Yes there is. Detailed info here: http://blogs.msdn.com/wenlong/archiv...23/516041.aspx However, make a careful decision when impersonating. In other words, the best impersonation methodology is to only impersonate when needed. For example, imagine you'd want to delegate the authenticated account when invoking other services from you service ... in this scenario you would, for example, create an IClientMessageInspector (and a behavior applied to the required WCF proxy endpoint to inject the inspector) and perform the delegation programatically. Impersonation suffers from external factors such as user rights and permissions on the same box where the user is being impersonated promoting scenarios like privilege escalation and others. One should always decide carefully when to impersonate. Tiago Halm "C Downey" <colleen_81@xxxxxx> wrote in message news:uj2sTunPIHA.4440@xxxxxx Quote: > Is there any easy way to impersonate a user account in WCF similar to the > asp.net impersonate below? > > <identity impersonate="true" userName="MYDOMAIN\sharepoint" > password="mysecretpassword" /> > > Thanks, > > Clayton > > |
| My System Specs |
|
01-22-2008
| #3 (permalink) |
| | Re: Impersonation question Impersonation is possible but tricky to set up. Many articles are misleading and quote too many requirements to have it set up. If you really are keen on setting that up, please reply to that post and I shall give more details about how to set up WCF impersonation. -- Best regards, Cezary Nolewajka Consultant | Microsoft Services | Microsoft | Poland "Tiago Halm" <thalm@xxxxxx> wrote in message news:%23YrkBUqPIHA.3940@xxxxxx Quote: > Yes there is. Detailed info here: > http://blogs.msdn.com/wenlong/archiv...23/516041.aspx > > However, make a careful decision when impersonating. In other words, the > best impersonation methodology is to only impersonate when needed. For > example, imagine you'd want to delegate the authenticated account when > invoking other services from you service ... in this scenario you would, > for example, create an IClientMessageInspector (and a behavior applied to > the required WCF proxy endpoint to inject the inspector) and perform the > delegation programatically. > > Impersonation suffers from external factors such as user rights and > permissions on the same box where the user is being impersonated promoting > scenarios like privilege escalation and others. One should always decide > carefully when to impersonate. > > > Tiago Halm > > "C Downey" <colleen_81@xxxxxx> wrote in message > news:uj2sTunPIHA.4440@xxxxxx Quote: >> Is there any easy way to impersonate a user account in WCF similar to the >> asp.net impersonate below? >> >> <identity impersonate="true" userName="MYDOMAIN\sharepoint" >> password="mysecretpassword" /> >> >> Thanks, >> >> Clayton >> >> > |
| My System Specs |
| Thread Tools | |
| |
Similar Threads | ||||
| Thread | Forum | |||
| Impersonation Vs RunAs | VB Script | |||
| vbscritp Sql Impersonation | VB Script | |||
| Impersonation | VB Script | |||
| Impersonation in Powershell | PowerShell | |||
