I have an ASP .NET application and am experiencing an interesting issue.
The application runs under Windows integrated authentication and anonymous
access is turned off; I need the current logged in user's ID for some initial
processing.  Partway through the code, I impersonate a ...

In moving an app from server 2000 to server 2003, we started getting
errors from this code. It pulls a page (on the same web server) using a
web request. This is an intranet site, and integrated windows
authentication is turned on. Same exact code works fine on a Windows

Im creating an asp.net web app that will need to connect to a SQL Server db
on another machine.  I have set this up using trusted connections and
impersonation in the web.config file but I am getting a "Login failed for
user 'NT AUTHORITY\ANONYMOUS LOGON'" message. I need this to ...

I have a website with a /Admin subdir I want to protect via a
signin.aspx page (which is in the Admin dir.)
This is the entire contents of the web.config file located at the root
of the website:

I need to encrypt data using a weak key (all 0s) that is being supplied but
I get an  exception because the key is weak.
Is there any way to make the TripleDES class encrypt with such a key?
Thanks

      how i can get the key container name for each certificate in the
my personal store
   if i create the certificate using makecert.exe then i am able to
explicitly mention certificate key container name but if i have

I have set-up my web app to use ASP.NET 2.0 membership and roles. It
works OK on my local Windows XP Professional PC but when I upload the
site to our Windows 2003 development server it doesn't. The local and
development server web sites both point to the same SQL Server 2005

I've lost count of the number of postings I have read on this subject
yet I can not find an answer.
I've set up my config file with impersonation as true, IIS is set to
Basic and Integrated authentication. The web page works fine on my

Hi Buddies!
I have an app where the client logs in using Forms Authentication. I'm not
using the Profile, so I am not using the SQL2005 database for that.
I have a "Users" class.

I am using VB 2005/.net building a web site
i have created a login screen using a Login control.
I need to validate the user no/password entered by the user against an SQL
Server database table.

I have an c# as.net app that  check if the user exist in a USERS table, that
part is ok but now I need to pass the user ID no the next page beacuse I
need to do some databse queries with that user ID, I'm passing the values as

I'm using Forms Authentication in my ASP.Net app and I'm separating all my pages into different directories based on their authorization requirements (e.g., all my administrative pages will go under one directory and I have a <location> tag set up in my web.config to allow rights ...

I'm trying to protect my class library by using the following code
StrongNameIdentityPermission(SecurityAction.Demand, PublicKey = "...")]
To test if this is working I wrote another application with a different
public key. When I try to call the function it still works. Why is it ...

I have the following problem:
1) We have to validate users on an anonymous/public-website using a custom
login page.
2) From this login page we redirect them to an extranet site, which shows

Hi;
Suggestions please. This is for a portal that we will ship to multiple
customers so we need to make security as painless as possible while still
protecting them. This portal does reporting and therefore needs to read files