Home | Contact Us | FAQ | Search & Site Map | Link to Us
Sign In | Join | Other 45 Sites in Network
HomeAnnouncementsFree MagazinesWhite PapersSubmit Content
Discussion GroupsASP.NETWindows FormsLanguages.NET FrameworkVisual Studio.NET
Articles.NET FrameworkASP.NETToolsWindows Forms
.NET DirectoryOpen Source ProjectsUser GroupsWeb Resources
Related Topics
Visual Basic 6SQL ServerMS AccessOther DB ProductsMS Server ProductsMore Topics ...
.NET Forum / ASP.NET / Web Services / November 2005

Tip: Looking for answers? Try searching our database.

WSE 3.0 KerberosContext

Thread view: 
Enable EMail Alerts  Start New Thread
Thread rating: 
rei - 21 Nov 2005 13:40 GMT
Hi,

I'm trying to use the two KerberosContext classes (client and server) in
order to authenticate a client application against a service.

I only need to identify the client (don't need delegation or impersonation).
There doesn't seem to be any documentation on the subject, so I was
wondering, what is the correct sequence of calls to the 'AcceptContext' and
'InitializeContext' methods?

As I understand it, the client app should call the
'KerberosClientContext.InitializeContext', and send the returned value (a
byte array) to the server.
The server should then pass that byte array to the
'KerberosServerContext.AcceptContext' method, and after that, the client's
windows principal should be exposed as a property in the
'KerberosServerContext' instance.

I'd really appereciate it if someone could clear this up for me,
Thanks in advance,
Reply to this Message
Pablo Cibraro - 21 Nov 2005 19:53 GMT
Hi rei,
First of all, Why are you trying to use the KerberosContext classes directly
?, is it a requirement for you ?
If you use the Kerberos turn-key scenario, there is no need to use the
KerberosContext classes because the kerberos assertion controls all that
part for you.
I recommend you to take a look to the kerberos quickstart shipped with WSE
3.0

Regards,
Pablo Cibraro
http://weblogs.asp.net/cibrax
http://www.lagash.com

Using kerberos is actually easier than that.

> Hi,
>
[quoted text clipped - 18 lines]
> I'd really appereciate it if someone could clear this up for me,
> Thanks in advance,
Reply to this Message
rei - 22 Nov 2005 12:49 GMT
Hi Pablo,

The reason I'm using the KerberosContext classes is that I don't want to go
through WSE's pipeline (I'm currently using a customized transport mechanism).
Using the turnkey would require me to use a KerberosToken together with a
soap message, which isn't really want I want to do.

As a matter of fact, I wouldn't be using WSE had it not been for the
KerberosToken class, I just need a managed way to work with kerberos, and it
seems that WSE is currently the only way to do so.

> Hi rei,
> First of all, Why are you trying to use the KerberosContext classes directly
[quoted text clipped - 34 lines]
> > I'd really appereciate it if someone could clear this up for me,
> > Thanks in advance,
Reply to this Message

Free Magazines

Get these publications absolutely FREE for up to 12 months. There are no hidden fees and no obligation. Simply choose a title, complete the application form and submit it. Read more ...

Oracle MagazineNetwork ComputingComputer WorldBio-IT WorldeWeekInformation WeekInfosecurity
 
Sign In
Join
My Latest Posts
My Monitored Threads
My Blog
My Photo Gallery
My Profile
My Homepage
Start New Thread
Enable EMail Alerts
Rate this Thread



©2008 Advenet LLC   Privacy Policy - Terms of Use
This website includes both content owned or controlled by Advenet as well as content owned or controlled by third parties.