Impersonation question

Is there any easy way to impersonate a user account in WCF similar to the
asp.net impersonate below?

<identity impersonate="true" userName="MYDOMAIN\sharepoint"
password="mysecretpassword" />

Thanks,

Clayton

Yes there is. Detailed info here:
http://blogs.msdn.com/wenlong/archiv...23/516041.aspx

However, make a careful decision when impersonating. In other words, the
best impersonation methodology is to only impersonate when needed. For
example, imagine you'd want to delegate the authenticated account when
invoking other services from you service ... in this scenario you would, for
example, create an IClientMessageInspector (and a behavior applied to the
required WCF proxy endpoint to inject the inspector) and perform the
delegation programatically.

Impersonation suffers from external factors such as user rights and
permissions on the same box where the user is being impersonated promoting
scenarios like privilege escalation and others. One should always decide
carefully when to impersonate.


Tiago Halm

"C Downey" <colleen_81@xxxxxx> wrote in message
news:uj2sTunPIHA.4440@xxxxxx

Impersonation is possible but tricky to set up. Many articles are misleading
and quote too many requirements to have it set up.

If you really are keen on setting that up, please reply to that post and I
shall give more details about how to set up WCF impersonation.

--
Best regards,
Cezary Nolewajka

Consultant | Microsoft Services | Microsoft | Poland

"Tiago Halm" <thalm@xxxxxx> wrote in message
news:%23YrkBUqPIHA.3940@xxxxxx