Frequently Asked Interview Questions

Interview Questions on ASP.NET Impersonation

Interview Questions on ASP.NET Impersonation
Impersonation
By default, all ASP.NET code is executed using a fixed machine-specific account. To execute code using a specific identity we can use the built-in impersonation capabilities of ASP.NET.

If you enable impersonation, Asp.Net application runs in the context of the identity whose access token IIS passes to ASP.NET. That token can be either an authenticated user token, such as token for a logged-in windows user, or token that IIS provides for anonymous users (IUSER_MACHINENAME identity).
  • If you want to give each web application different permissions.
  • If you want to use existing windows user permissions.
IUSER_MACHINENAME
If anonymous access is disabled in IIS, the request is made using the account of the authenticated user.
We can impersonate a user on a thread in ASP.NET, you can use the following methods.
  1. Impersonate the IIS Authenticated Account or User

    Include an <identity> tag in the Web.config file of this application and set the impersonate attribute to true.
    For example:
    <identity impersonate="true" />
  2. Impersonate a Specific User for All the Requests of an ASP.NET Application.

    Specify the userName and password attributes in the <identity> tag of the Web.config file for that application.
    For example:
    <identity impersonate="true" userName="accountname" password="password" />
  3. Impersonate the Authenticating User in Code

    To impersonate the authenticating user (User.Identity) only when you run a particular section of code, you can use the code to follow. This method requires that the authenticating user identity is of type WindowsIdentity

    System.Security.Principal.WindowsImpersonationContext impersonationContext;
    impersonationContext = 
        ((System.Security.Principal.WindowsIdentity)User.Identity).Impersonate();

    //Insert your code that runs under the security context of the authenticating user here.

    impersonationContext.Undo();
Impersonation
Posted by Ramu

Most Visited Pages

  • Unable to process SMSESSION cookie
      Unable to process SMSESSION cookie warning in siteminder webagent logs We could see this warning in siteminder web agent logs. user tries ...
  • Policy Server Failover
    Exercise 1 : Policy Server Failover In this exercise, you and a partner will configure your systems for policy server failover. You will cha...
  • Policy Server Failover, Load Balancing and Clustering
    Overview Agent to Policy Server Failover Dynamic Load Balancing Policy Server Clustering Exercise 1: Policy Server Failover Exercise 2: Mult...
  • Policy Server Clustering
    A cluster is a set of servers with dynamic load balancing. Load is dynamically distributed among the servers in a cluster. Trusted hosts can...
  • Triggers in SQL
    What is a Trigger? A trigger is a special kind of stored procedure that is invoked whenever an attempt is made to modify the data in the tab...
  • Siteminder Tutorials
    Siteminder Tutorials :: Conceptual Overview N-Tier Architecture Components SiteMinder Overview SiteMinder Components SiteMinder Features Sin...
  • SQL Interview Questions on JOINS
    <<PREV SQL Interview Questions on JOINS NEXT >> 21. Difference between char and nvarchar / char and varchar data-type? char[(n)...
  • N-Tier Architecture Components
    N-Tier Architecture Components Clients (Browser & Standalone Application) – managesuser (a.k.a. actors) interaction with the applica...
  • What is a View?
    The view is a virtual table, which can have the multiple columns from the one or more table. It can be used like the normal table. Normally ...
  • Failover and Load Balancing
    Failover and Load Balancing SiteMinder allows the following failover and load balancing strategies: – Agent topolicy server o Failover...
Home | Site Index | Contact Us