Hi,

I read that if one needs to be able to authorize access to resources
based on the caller's identity, one should set up the server to perform
Windows authentication with impersonation.

But how can I do this when I grant access to my webserver to, let's say
2, different organizations over the internet that authenticate
themselves using certificates. They are not using the windows platform,
so I can't do anything with trusted domains.

Is it possible to based on there certificate or URL impersonate them to
2 different windows account?

You're imput is highly appreciated,

Regards,

Henk