Identity Impersonation in .NET

With impersonation enabled the asp.net application code is relieved off the duty to authenticate and authorize a particular user. Instead the IIS will be doing this to get the identity of the client.

Upon authentication the IIS passes a token to the application code. Based on the type of authentication token, the application uses the NTFS settings of the directories to allow the user access to them. By default impersonation is disabled and the token for the anonymous user is given to the application.

To enable impersonation you have to use a configuration file at the application root level. For this you can put a configuration file in the application root directory. In that configuration file you should have a line like,

< identity impersonate = “false” />

which is the default setting. To enable impersonation you have to change that attribute value of ‘impersonate’ to that of ‘true’. This would enable impersonation. To impersonate a particular user the syntax would be,

<identity impersonate = “true” name = “name_of_user” password = “pwd_for_user” />

With such impersonation the entire application will run as “name_of_user”.



Aspiring actor poses as Cong leader's son (NDTV)
He pursues a course in acting, but his skills in impersonation as the son of Congress leader Janardhan Dwivedi to get some VIP passes for the World Cup Hockey matches failed to hoodwink IOC chief Suresh Kalmadi.

Salem superintendent takes on Scott Brown (The Salem News)
Just as Sen. Scott Brown is challenging President Barack Obama to a basketball game, Salem Superintendent William Cameron issued Brown a challenge of his own. While listening to public radio one morning last week, Cameron heard the junior senator from Massachusetts assert that the American Recovery and Reinvestment Act, known as the stimulus package, has created no jobs in Massachusetts and ...

World Wide Weird (RTÉ News)
Here in the RTÉ Sport office we come across some pretty strange content on the World Wide Web. As purveyors of the perverse, we have decided to construct a lasting tribute to these oddities - a bazaar of the bizarre, if you will.



______________________________________________________

Recommended Resource


| Security in .NET Impersonation | ASP.NET Impersonation for a specific user | Implementing Impersonation in ASP.NET | Identity Impersonation in .NET | How to Enable and Disable Impersonation in ASP.NET |



_______________

FREE Subscription

Stay Current With the Latest Technology Developments Realted to .NET. Signup for Our Newsletter and Receive New Articles Through Email.

Name:

Email:

Note : We never rent, trade, or sell our email lists to anyone. We assure that your privacy is respected and protected.

 

| Privacy Policy for www.dotnet-guide.com | Disclosure | Contact |