Confusion in ASP.NET security

R

Reza Alirezaei

Is it possible to define an account in <Identity> in web.config which
dosen't exist in

domain???

The following line is in somebody's ASP.Net application:
I was viewing somebody's application I found the following line in his
web.config
<identity impersonate="true" userName="DOMAIN_NAME\ASP_NET_TESTER"
password="TEST"/>

but problem is that I didn't find user ASP_NET_TESTER on the domain and
application is working fine.
By the way ,,he has enabeld annonymous access to his web application using a
completely diferent account called "IUSR_DEV"


thanks for your help.
 
R

Raterus

I just tried this and it didn't work at all. Are you sure that user doesn't exist? Its not hidden down in some obscure OU is it? How did you try to find it? Try changing the username and password and see if the application works then!
 

Ask a Question

Want to reply to this thread or ask your own question?

You'll need to choose a username for the site, which only take a couple of moments. After that, you can post your question and our members will help you out.

Ask a Question

Similar Threads

Newbie question about impersonation 5
ASP.NET Adding a User to Active Directory 3
SQL Server 2005 Windows authentication with AppPool running underservice account identity 2
Impersonation? 1
Impersonating and Windows Authentication 1
Identity impersonate not working 6
Where is the built-in ASP.NET account? 3
ASP.NET Integrated Windows Authentication 2

Top