WindowsIdentity.GetCurrent() vs Request.LogonUserIdentity?
Im trying to understand the difference between assigning permission in here :
vs
assigning via impersonation :
1) ive heard that impersonation is used to access resources rather than running exe process
ive tried to run an EXE Process with only impersonation to my user , with NO success.
Later i set the user to the application pool identity - (first picture here) and then i was able to run exe files.
what are their job difference between those two ?
if i set only the application pool identity ( and not impersonation) - will it be able to access external resources which has special permissions?
I think you misunderstood/mixed the definition of Pool Identity and Impersonate Identity
- Pool Identity is the identity IIS used to start your web application. So your web application will have all the access right to your system as this user.
E.g. If you set the Pool Identity to a low privileged user, you will find your web application cannot access the files on your system; but if you set the pool identity to Administrator, your web application can access everything on your system, even restart your computer. Yes, your security is screwed :P
- Impersonate Identity is the identity your web application thinks who made the request. More specifically, when you use WindowsIdentity.GetCurrent to get the current user identity. If you set the impersonation, you will get the fixed user identity. If you disabled impersonation, it will be the user's identity. This is usually helpful in a Windows domain.
PS:
hmmm...these two identities are not related. so you should not put them in a fight :)
Let met try this: Pool Identity is like your ID to your parents. They know who you are, how old you are, you cannot lie; Impersonate Identity is like your ID card, if you get a fake ID card, you can go to a bar under the age 21, and get drunk xD
- bootstrap modal+ajax+jquery+validation+.net core 2.0
- Run web service API on same or separate servers?
- Join Date and Time to DateTime in VB.NET
- The Id cannot be computed, since the navigation source 'values' cannot be resolved to a known entity set from model
- C# HttpClient's PostAsync fails when HttpRuntime's TargetFramework is set to 4.8
- Chargify how can get total transactions of between two dates?
- Dynamic property type based on value of another property
- Using tinyurl.com in a .Net application ... possible?
- Swagger different classes in different namespaces with same name don't work
- Reference to IExceptionHandler interface not being resolved from Microsoft.AspNetCore.Diagnostics
- Improve Performance of initial page load time with Blazor Webassembly
- OAuth2 WebApi Token Expiration
- IIS API - Create virtual directories?
- Cannot drop database because it is currently in use
- How do I find type of c# project from Visual Studio?
- Calling Javascript from a SSR Page Blazor .NET core
- Blazor webassembly pwa session storage not persisting after deployment to Azure
- How to determine whether an IP address is private?
- How to access ASP.NET Swagger API published in Docker?
- Identity Server 4 ASP.NET Quickstart 'refused connection'
- How to get a List of valid currencies from Stripe
- Strange behaviour of ViewState
- HttpResponse content with bad encoding
- Display bytes as images on an .aspx page
- Class in App_Code not accessible
- Accessing a Class that is NOT declared in App_Code in ASP.NET
- Classes residing in App_Code is not accessible
- Is it possible to use SignalR on a Node.js backend?
- What does "cannot be marshaled by the runtime marshaler" mean?
- Add a column to a gridview associated with an SQL data source [C#/ASP/Webform]