WindowsIdentity.GetCurrent() vs Request.LogonUserIdentity?
Im trying to understand the difference between assigning permission in here :
vs
assigning via impersonation :
1) ive heard that impersonation is used to access resources rather than running exe process
ive tried to run an EXE Process with only impersonation to my user , with NO success.
Later i set the user to the application pool identity - (first picture here) and then i was able to run exe files.
what are their job difference between those two ?
if i set only the application pool identity ( and not impersonation) - will it be able to access external resources which has special permissions?
I think you misunderstood/mixed the definition of Pool Identity and Impersonate Identity
- Pool Identity is the identity IIS used to start your web application. So your web application will have all the access right to your system as this user.
E.g. If you set the Pool Identity to a low privileged user, you will find your web application cannot access the files on your system; but if you set the pool identity to Administrator, your web application can access everything on your system, even restart your computer. Yes, your security is screwed :P
- Impersonate Identity is the identity your web application thinks who made the request. More specifically, when you use WindowsIdentity.GetCurrent to get the current user identity. If you set the impersonation, you will get the fixed user identity. If you disabled impersonation, it will be the user's identity. This is usually helpful in a Windows domain.
PS:
hmmm...these two identities are not related. so you should not put them in a fight :)
Let met try this: Pool Identity is like your ID to your parents. They know who you are, how old you are, you cannot lie; Impersonate Identity is like your ID card, if you get a fake ID card, you can go to a bar under the age 21, and get drunk xD
- jQuery UI " $("#datepicker").datepicker is not a function"
- Why do nested locks not cause a deadlock?
- How import WebApplicationBuilder in a Class Library?
- video file loaded sucussefully when run my website locally but not after publishing
- Does the client knowing all the endpoint names pose a security risk?
- Paging, sorting, searching on Ajax View in asp.net mvc
- Dynamically added ListBox's EventHandler is not firing on ASP.Net
- Asp.Net Core create a controller to send emails using SendGrid
- How to constrain a POST call to just one submit button in ASP.NET Web pages?
- Resx file default 'internal' to 'public'
- How do I attach the debugger to IIS instead of ASP.NET Development Server?
- Publishing ASP.NET Core 7 Web API on Windows Plesk - error: Could not load file or assembly 'Microsoft.Data.SqlClient'
- Invoking SignalR from Postman
- Parse ajax json response
- How to update a List<> item's property in C#
- In-line validation with dynamic components in Blazor/Mudblazor
- How do I pass a Model from a View, to another view, without data getting Lost?
- Process.Start(...) Suddenly Fails when Called by ASP.NET MVC 5 Running in IIS on Windows 10 and Windows Server 2019
- How do you include a non-referenced dll when publishing a web application?
- IIS 7.5 only shows directory list or 403 instead of ASP.NET Application
- The request was aborted: Could not create SSL/TLS secure channel
- Entity Framework vs Direct Data Access
- How can I set Async="true" for all pages?
- How do I encrypt URLs in ASP.NET MVC?
- Login failed for user 'NT AUTHORITY\NETWORK SERVICE'
- Publish ASP.NET app without certain folders
- Multiple database in one transaction in Entity Framework
- VSTS Build Pipeline: Test fails connecting to Azure Key Vault
- How to Get BootStrapper.exe work in Windows Azure?
- How to fix "No .NET SDKs were found." error--VSCode