tags:

views:

42

answers:

3
Q: 

ASP.NET impersonations?

Hi! I have a aspx file that suppose to write to a file in the server while loading. On the local machine it works fine, but when i deploy it to a live server it gives me an exception "Access to the path 'd:\DZHosts\LocalUser\asafz83\www.asafz83.somee.com\lala.htm' is denied."

WHen i asked my serverAdmin for the reason - he told me to remove any impersonation from my web.config file. Well, my web.config file doesn't contain any impersonation, so i'm really confused: What can i do in order for this sealy-stupid application to work?

thanks!

+1  A: 

Assuming the id being impersonated has appropriate access to the server & folder that you are writing to, you have to allow your web server to be trusted for delegation.

See this for Windows 2003 server: http://technet.microsoft.com/en-us/library/cc738491(WS.10).aspx

I've had the same problem a couple weeks ago..it took us a few days to figure out that it's just a checkbox that needed to be set.

Ed B  2010-05-17 14:13:07
Where should i do the instructions - on the server or on my computer? because mine is running windows xp and not server 2003
asaf  2010-05-17 14:20:29
Ed B  2010-05-17 14:36:52
I'm assuming you are writing the file to another server other than your webserver. If not, follow SiN's advice.
Ed B  2010-05-17 15:36:21
A: 

You don't have to go through impersonation. Create a folder in your website, let's call it "Files". You can access its path via Server.MapPath to do whatever saves you want in that directory.

Server.MapPath("~/Files")

When you deploy on IIS, you have to apply Write permissions on the folder "Files" for the ASP.NET user.

SiN  2010-05-17 14:56:24
A: 

Essentially your server admin is saying that you may not have the permissions needed to perform the operation / access th path in the error.

Is this a valid path that you think you should have access to, if it is then there is a chance your application is configured wrong.

Your admin guy is basically saying ... In the web.config file check that you have not got something that reads like this :

if you do, remove it because you re trying to impersonate / get asp.net to run within the context of the guest account for internet users connecting to the server.

There is more on the topic here ...

http://msdn.microsoft.com/en-us/library/xh507fc5(VS.71).aspx

Something worth noting is that application configs "inherit settings from parent applications", this means if you have a web app running that works with this, and then in a child folder deploy a new web app that does not have the right to do this then it will break because of the parent applications settings.

This may or may not be relevant to your situation but i feel its worth noting.

Wardy  2010-05-17 14:59:19

related questions

Is it better to create Model classes, or just stick with generic database utility class?
What are effective options for embedding video in an ASP.NET web site?
Visual Studio 2008 debugger already attached work-around
Tracking state using ASP.NET AJAX / ICallbackEventHandler
ASP.NET Display SVN Revision Number
ASP.NET URL Rewriting
How can I change the background of a masterpage from the code behind of a content page?
Easy way to AJAX WebControls
How do I define custom web.config sections with potential child elements and attributes for the properties?
ASP.NET MVC "CRUD" Database Sample
Are Multiple DataContext classes ever appropriate?
How to RedirectToAction in ASP.NET MVC without losing request data
Triple Quotes? How do I delimit a databound Javascript string parameter in ASP.NET?
ASP.NET built in user profile, Vs old stile user class/tables
What's a good book for learning ASP?
Bandwith throttling in IIS 6 by IP Address
ASP .Net Custom Client-Side Validation
How to get the value of built, encoded ViewState?
Decent, simple, GIS/mapping component for ASP.NET?
Checklist for IIS 6/ASP.NET Windows Authentication?
How to write to Web.Config in Medium Trust ?
ASP.NET, Visual Studio and Subversion - how to integrate?
Floating Point Number parsing: Is there a Catch All algorithm?
How do I sync the SVN revision number with my ASP.NET web site?
ASP.NET Site Maps