Home | Contact Us | FAQ | Search & Site Map | Link to Us
Sign In | Join | Other 45 Sites in Network
HomeAnnouncementsFree MagazinesWhite PapersSubmit Content
Discussion GroupsASP.NETWindows FormsLanguages.NET FrameworkVisual Studio.NET
Articles.NET FrameworkASP.NETToolsWindows Forms
.NET DirectoryOpen Source ProjectsUser GroupsWeb Resources
Related Topics
Visual Basic 6SQL ServerMS AccessOther DB ProductsMS Server ProductsMore Topics ...
.NET Forum / .NET Framework / Remoting / December 2004

Tip: Looking for answers? Try searching our database.

Only Admins Group Gain Access to the Remote Objects!!!

Thread view: 
Enable EMail Alerts  Start New Thread
Thread rating: 
imad - 21 Dec 2004 13:52 GMT
Hi,

I'm using Winform client Side, and Server objects hosted in IIS.
I'm using Integrated Security to authenticate users (We are using
Roles based authentication in Sql Server with domain Users, to return
Data to Client Side).
The server side machine, is Windows 2000 server, and  is configured as
domaine controler.
We are using 3 Tier architecture, and instantiate objects using
Interfaces.
the config in Server Side is like  :

<system.runtime.remoting>
         <!-- BL_Occupation -->  
    <application>       
    <service>
                 <wellknown
              mode="SingleCall" objectUri="SecteursProjet.soap"
              type="WebServeurLocation.BLL.BLL_SecteursProjet,
WebServeurLocation"/>
       
         </service>        
          <channels>
             <channel ref="http"/>
        </channels>
    </application>              
 </system.runtime.remoting>

The config in Client Side :
<channels>
           <channel ref="http" useDefaultCredentials="true" port="0">
                <clientProviders>
                 <formatter ref="binary"/>
               </clientProviders>
              </channel>
           </channels>
        <client>
           <wellknown
              url="http://SDI-B-106-A5/WebServeurLocation/DossierLocation.soap"
              type="Interfaces.BL_Dossier, Interfaces"/>
.....

I presume thats OK !

The problem is that Just the Admins Group server can access the server
Object, the access is denied to all other users.
When a user type the url:
"http://SDI-B-106-ServeurLocation/DossierLocation.soap?Wsdl" from
Client machine, he got the Dialog Box to be identified, and no one can
access but the adm.

NB : the sercurity on Windows Folders are Well Done.

I'm Open to all suggestions
Thanks in advance,
Reply to this Message
Sam Santiago - 23 Dec 2004 22:40 GMT
How are you testing your URL?  Are you accessing through your Winforms
client?  Try through IE and see what happens.   IE can forward the user's
identity when you configure your virtual directory with integrated security.
If it works with IE and not your WinForms app then you are not properly
forwarding your user's identity to IIS.

Thanks,

Sam

Signature

_______________________________
Sam Santiago
ssantiago@n0spam-SoftiTechture.com
http://www.SoftiTechture.com
_______________________________

> Hi,
>
[quoted text clipped - 52 lines]
> I'm Open to all suggestions
> Thanks in advance,
Reply to this Message

Free Magazines

Get these publications absolutely FREE for up to 12 months. There are no hidden fees and no obligation. Simply choose a title, complete the application form and submit it. Read more ...

Oracle MagazineNetwork ComputingComputer WorldBio-IT WorldeWeekInformation WeekInfosecurity
 
Sign In
Join
My Latest Posts
My Monitored Threads
My Blog
My Photo Gallery
My Profile
My Homepage
Start New Thread
Enable EMail Alerts
Rate this Thread



©2008 Advenet LLC   Privacy Policy - Terms of Use
This website includes both content owned or controlled by Advenet as well as content owned or controlled by third parties.