Probably the best and the cleanest code that I have seen so far is this: var credentials = new UserCredentials(domain, username, password); Impersonation.RunAsUser(credentials, logonType, () => { // do whatever you want as this user. }); Just follow Github or Nuget.
With <authentication mode=”Windows”/> in your application and Anonymous access enabled in IIS, you will see the following results: System.Environment.UserName: Computer Name Page.User.Identity.Name: Blank System.Security.Principal.WindowsIdentity.GetCurrent().Name: Computer Name With <authentication mode=”Windows”/> in your application, and ‘Anonymous access’ disabled and only ‘Integrated Windows Authentication’ in IIS, you will see the following results: System.Environment.UserName: ASPNET (user account used to … Read more
Very few posts suggest using LOGON_TYPE_NEW_CREDENTIALS instead of LOGON_TYPE_NETWORK or LOGON_TYPE_INTERACTIVE. I had an impersonation issue with one machine connected to a domain and one not, and this fixed it. The last code snippet in this post suggests that impersonating across a forest does work, but it doesn’t specifically say anything about trust being set … Read more
You’re looking for: “Impersonate a client after authentication” in the Local Security Policy under Local Policies -> User Rights Assignment You can also use NTRights with “SeImpersonatePrivilege” ntrights.exe +r SeImpersonatePrivilege -u domain\user
“Impersonation” in the .NET space generally means running code under a specific user account. It is a somewhat separate concept than getting access to that user account via a username and password, although these two ideas pair together frequently. Impersonation The APIs for impersonation are provided in .NET via the System.Security.Principal namespace: Newer code should … Read more
I use this all the time. It does take entering a credential the first time it’s used (and when the password changes) but that’s it. runas /user:yourusernamehere /savecred “Your Executable Here” If you save this command as part of a bat file you can create a shortcut that will launch this with administrative rights using … Read more
13 months later, I wanted to revisit my own question. In that time I have transferred a half dozen websites from IIS 6 to IIS 7.5 and configured them with my preferred method. All I can say is that the websites work, they haven’t had any security issues (not that these are popular sites), and … Read more
You can configure HttpClient to automatically pass credentials like this: var myClient = new HttpClient(new HttpClientHandler() { UseDefaultCredentials = true });