I've seen explainations on how to impersonate a non aspnet user when a web
page is called within an web application, but I have a different
impersonation issue.
I have a windows desktop application (not a web app) that is used by our web
administrator to control some of the web application's settings. It also
has some troubleshooting features. One feature that I'd like is to verify
that the aspnet user has some permissions to open some files and folders,
launch specific programs, etc.
In short, I'd like to impersonate the aspnet user (not the user running the
program) in the desktop application. Can I do this, and can it be done
without knowing the aspnet password?
I have machine A and B. A hosts my ASP page which is to create a user account on the machine B. The machine are not on Domain and not in AD environment. I userstand the the web page from A is to create a user account on B should use Impersonate function to log in as the user from the machine B which has the Admin rights.
So I did that.. But It does not seems to be working. I got this famous 80004005 error. I know it's something to do with permissions rights but I couldn't think of anymore. I have tried so many options.
When I use the upload file I get the following error message:
The following error occurred: Can't open file for writing.
I understand this to be because of permissions for the directory. I have looked at the user guide for the script and it mentions this problem and say that you can temporaraly impersonate user while the script is being run and then change back to the default afterwards. It says in the user guide to add the following lines:
UploadObject.ImpersonateUser(UserName As String, Password As String, [Domain As String], [Type As Long = 2])
UploadObject.ImpersonationTerminate()
My question is where in the following code do I need to put this and does this not open up the possibility for someone to get hold of my user name and password. Code:
I am starting to use the ASP.NET Commerce Starter Kit to initiate a website, and have had an installation error - 'computerName/ASPNET account not found.'. I am using XP Pro with IIS installed and according to documentation, this should create the account, but it is not listed - It is needed as even changing the folder permissions for the root folder to 'Everyone' will not enable to connection from SQL Server to remote folders.
I have tried installing and uninstalling IIS to no avail. There are some scripts to create the account but these are marked as suitable for .NET 1.1 only. I have .NET 2.0.
Just wondering if anyone else has encountered this and if there is a fix.
I was just looking things over and I noticed a new account under my users. It's and ASPNET user, (account used for ASP.NET worker process....) I hadn't noticed it before. What is is? What does it do? Should it be disabled? Should I make any changes? Have been out of the loop for a while, could someone bring me up to speed.
I am developing a website with ASP.NET /C#. The items will render automatically based on their "catID". So that the URL will look similar to the example:
I'm using a javascript layer to display some items on this page. However, I want this layer to show only when caID=1. I'm a newbie when it comes to javascript. So, I was trying to get the url using "document.url" and use if statement to show/hide the layer. But that didn't work. Can anybody help or provide some useful hints
How do you regenerate the ASP_NET login account? The password got changed which hosed everything. I can no longer see my web services and need to reset the ASP account. How do I do this?
ASPNET profile/account was accidentally deleted on NT/2000 platform. Is there anyway to get it back without reinstalling the whole exchange/IIS services?
I have written an ASP.NET 2.0 application that uses Active Directory or ADAM to manage account users - the site has a page that allows people to create an account (much like any site). The page populates the AD with all the information and the user account but I am unable to enable the account. Microsoft has information on how to do that here --> http://msdn.microsoft.com/library/d...ting_a_user.asp (the sample is for Visual Basic) - and I am unable to complete the bottom portion of the script. Can some one point me in the right direction - or can you tell me how I can add a snippet of VBscript code to an ASP.NET page.
I am using the Active DS Type library - not sure why there are multiple ones (System.DirectoryServices) but it is rather confusing - I seem to accomplish one thing with one and another with the other (they did have trouble co-existing however). Anyway my script works very well but I am not able to access the properties required to enable the account.
Here is a simple version (no error checking) of the code.....
how to go about setting up an asp script or flash action script to take the input from a user of his/her username and password then send an email to the user with the information. I am able to do all of this but the problem is that the users pc is the one sending the email. I want the server to send the email instead.
I'm having a real tough time getting a User's NT login after they submit a form.
I have Anon. Login disabled. I'm using Digest Authentication (although I've tried everything).
Every time I run the page, I get a blank string instead of the requested information.
The information is in a hidden field, with the value set to: <%=Request.ServerVariables("LOGON_USER")%>
The icing on the cake is that when I run this on my PWS, I can pull the information and it shows up in the SQL DB I'm sending it too. But, when put on our live box, it doesn't show up. The setting on each box are exactly the same.
I have a classic ASP program running on a server in the DMZ. I need to consume a web service so that I can consume data from that web service. However I am not able to call the web service from the DMZ since the server can not send messages out on the internet.
Thus, I need to send the call to another server running within the internal area of the company's internet. I need to send this message to an IIS server and then from the IIS server call the web service. I was thinking that I need to call the service on the IIS server with an ADO.NET connection. This ADO.NET connection object would be generated just long enough to call the web service, get a response from the web serice, and return the message to the server running in the DMZ.
Let me know if you think this would be a good solution and tell me how you would setup this interface. (Should C#.NET or Visual Basic.NET be used or some other lanaguge.)
Also after this solution works, I will need to implement this similar type of solution to call other web services.
does anyone know a way to show a users USER name instead of just there login name its for a school intranet currently we retrieve a lot of data based on the login name by using this script:
[code] <%=Request.ServerVariables("LOGON_USER")%>
it would be a lot more functional if i could pull the full name, we are using Active Directory 2003 and iis6, and all the logins have the full username inputted in the AD?
I'm developing an ASP form registeration system. The details of the form must be added to a text file not the tradional database. Each time a new user adds a record it should be added to the list at the bottom to the previos adder. Does anyone have a script sniplet of how i could do this. Remember details from the form i.e. name, firstname should be added to a text file...
I am new to .NET and I am trying to get the user name from a kerberos ticket and I have no idea how to do that. There seems to be some ability to do it using WSE 2.0 but I cant really see why there is not an easier way. how to do this?
I have a admin-page wich is username and password protection and Microsoft Access database with table called "member" and fields "username and "password" in it. I wan't to have a welcome message when user is successfully logged in so he/her can see for example "Welcome Chris". How to I do this?
I'm running IIS5 on a Win2K server, and I want to have an ASP page that creates new users. I have some simple code to test this, but am getting a "500" error when I run it. The ASP looks like:
<%
strDomain ="Foo.com" strUser ="Foo1"
' Create new user with password Set oDomain = GetObject("WinNT://" & strDomain) Set oUser = oDomain.Create ("User", strUser) oUser.SetPassword = "password" oUser.SetInfo %>
Just for this testing, I've added IUSR_machinename to the Administrators group, but am still getting the 500 error.
I have a login page. and more users. Let's call them users A, users B and Users C. Users A can only access page A, users B page B, ... All the pages uses the same DB, but different tables (table A, table B, table C).
I surveyed 1000 people and 884 of them said that they prefer forms that are filled out in sections (multiple pages) instead of one long form. I am trying to do that with my site. Currently the way I was planning it was:
register.asp - sets up username >> stage1.asp - checks for unique username >> stage2.asp - personal info >> stage3.asp - more personal info >> stage4.asp - even more personal info >> stage5.asp - yet more personal inf >> stage6.asp - employer info >> stage7.asp - Finished
When users go to register, I want to: select a user name and password, then make sure the user name isnt taken, make sure the passwords match, collect personal info over a few pages, then finish.
I would like to do all this only utilizing the register.asp and possibly a process page. Anyone have any links or tutorials on creating pages like this.
Do you know how to get windows login variables (i.e. the LOGON_USER server variable) from ASP without having to fill in the challenge response message box that automatically appears when you configure IIS to Integrated Windows Security for a particular site? I don't want users to have to log in again to the site as they have already logged in to windows but I want to use their username on the back end to verify permissions. Is it possible?
I'm facing a situation where my team leader wants me to create some ASP code that will pull the user's ID (which is no problem - request the LOGON_USER server variable) and THEN pull that user's NT Permissions to determine what kind of permissions the user will have when he/she comes onto the website. There is to be no logon screen at all. The permissions cannot be determined via a database or through cookies. Only NT Authentication can be used.
I have a small hunch that the HTTP_AUTHORIZATION server variable might provide a clue, but the value of that variable is a bunch of (encrypted?) gibberish that means nothing to me, except probably the NTLM part at the beginning. Is there a way to decode the value of that variable into something coherent that I can use in my code?
I have a button that would allow a user to logout of the program, how can this be done? Also, how can I allow the program to logout and terminate if not used after so many minutes?
I have five forms in my website, what I'm trying to accomplish is to track the users history. For an example if the user save their information on the first page and exit the system; Whenever that user logs back in I want them to be where they left off. I hope I'm clear on what I need help with. Does anyone know how to accomplish this task? P.s I'm using Deamweaver to create my page.
What I am trying to do is to develop a dhtml based chat system. So far everything is working as planned, took me over 6 hours to get it working, but I am pleased with the results, it is comparable to java chat. With no page refresh. My problem is How do we manage which users are online on chat and which are not. I do not wish to use any application variables nor do i wish to use session variables. i am trying to avoid the 2 Either the user may simply close the chat window, or he might just go and browse another site. Either way I do not get to write the even to the database.
I have created a form with simple fields such as address and phone number. I would like to, in real time, take the value a person puts in for name (ex. John Smith), check a database to see if he is there, then to populate his address fields and phone number to save the user the trouble of typing it in repeatedly. Any ideas how to go about this? I created a button for the user to "look up" to see if his info is saved but cant seem to get the syntax write. I have written similar code for the information to be put in the database, and it works, just need to retreive it while the user is on the form.
I just made a simple thing on my page that says Active Users: and the number by adding 1 to session_onstart in global.asa. It seems to work. Is there a way I can have this store IP's of the active user, etc without using a database to store the stuff in?