Home | Contact Us | FAQ | Search & Site Map | Link to Us
Sign In | Join | Other 45 Sites in Network
HomeAnnouncementsFree MagazinesWhite PapersSubmit Content
Discussion GroupsASP.NETWindows FormsLanguages.NET FrameworkVisual Studio.NET
Articles.NET FrameworkASP.NETToolsWindows Forms
.NET DirectoryOpen Source ProjectsUser GroupsWeb Resources
Related Topics
Visual Basic 6SQL ServerMS AccessOther DB ProductsMS Server ProductsMore Topics ...
.NET Forum / .NET Framework / Security / January 2006

Tip: Looking for answers? Try searching our database.

security issue with with windows service account

Thread view: 
Enable EMail Alerts  Start New Thread
Thread rating: 
Hank - 20 Jan 2006 01:57 GMT
Hi,
My windows service application contains an IpcChannel which listens msg from
client.
If I install it with MyServiceProcessInstaller.Account="LocalSystem" or
"LocalService", or "NetworkService". Then I got an exception
"System.Runtime.Remoting.RemotingException: Failed to connect to an IPC
Port: Access is denied" when client IPC channel try to connect to service.

However If I install my service with
MyServiceProcessInstaller.Account="User". Then everything is fine. in this
case both client and server running under the same username.

My goal is to install the service as "LocalSystem" or "LocalService", client
can be any user and group. since I leave the "authroizedGroup" channel
property as default and there is no security setting for IPC channel, I am
thinking the problem is not in the IPC channel configuration, rather I need
to configure Windows service properly.

Your advice is highly appreciated!

Hank
Reply to this Message
Dominick Baier [DevelopMentor] - 20 Jan 2006 06:14 GMT
hi,

why do you want local system?

---------------------------------------
Dominick Baier - DevelopMentor
http://www.leastprivilege.com

> Hi,
> My windows service application contains an IpcChannel which listens
[quoted text clipped - 20 lines]
>
> Hank
Reply to this Message
Hank - 20 Jan 2006 16:28 GMT
Actually I want to install my windows service as either "LocalSystem",
"LocalService" or "NetworkService".
So once installed, other users with different group can use it once they
logon to the PC.
It doesn't have to be "LocalSystem", but I hope it can be one of the above
three.

Thanks!
Hang

> hi,
> why do you want local system?
[quoted text clipped - 27 lines]
>>
>> Hank
Reply to this Message

Free Magazines

Get these publications absolutely FREE for up to 12 months. There are no hidden fees and no obligation. Simply choose a title, complete the application form and submit it. Read more ...

Oracle MagazineNetwork ComputingComputer WorldBio-IT WorldeWeekInformation WeekInfosecurity
 
Sign In
Join
My Latest Posts
My Monitored Threads
My Blog
My Photo Gallery
My Profile
My Homepage
Start New Thread
Enable EMail Alerts
Rate this Thread



©2008 Advenet LLC   Privacy Policy - Terms of Use
This website includes both content owned or controlled by Advenet as well as content owned or controlled by third parties.