What is the best way to manage accessing resources external to your application?
Especially for ASP.NET (not sure about Java), when using impersonation, it is somewhat difficult to use the logged-in user's details to access resources such as Active Directory and SQL Server.
Firstly, I have it is not good to use a user's credentials to access these things even if you can. Why is this?
Secondly, if you decide to not use the user's credentials, what is the best way to manage this problem? Should all applications use a common credential to gain access? Or, perhaps each application has a separate set of credentials?