I am trying to migrate an application that has been running happily as an asp in IIS 6 (and I think 5 before that) to windows 7 and IIS 7
Basically the application is and asp (to grab user and server credentials) which opens a frameset, one of the pages in the frame talks to a third party dll via xmlhttp with the logged on user's name to get info relative to that user.
the code looks a bit like this (although it's vb script not php!)
and I am getting "access denied" at the tpXml.open line ( )
Now MS in their wisdom have made it even harder to see who is authenticating as what, but as far as I can see, I have told the calling page to accept anonymous logins (as the new iusr) and i have enabled asp.impersonation as the authenticated user.
If I set the advanced settings of the application folder to have physical path credentials of a specific user, a test page returning stTest where
gives the ID of that specific user, however if I set the physcial path credentials to authenticated user it just returns "NT" - presumably that's the credential that my app is passing to request details? why isn't is passing my current logon? WTF is "NT" anyway?
If this makes sense to anyone and they have any useful advice that can stop me tearing out my remaining few hairs, I would be eternally grateful.
Basically the application is and asp (to grab user and server credentials) which opens a frameset, one of the pages in the frame talks to a third party dll via xmlhttp with the logged on user's name to get info relative to that user.
the code looks a bit like this (although it's vb script not php!)
PHP Code:
Set tpXml = CreateObject("Msxml2.ServerXMLHTTP")
'open the connection
tpXml.open "POST", URL, False
Now MS in their wisdom have made it even harder to see who is authenticating as what, but as far as I can see, I have told the calling page to accept anonymous logins (as the new iusr) and i have enabled asp.impersonation as the authenticated user.
If I set the advanced settings of the application folder to have physical path credentials of a specific user, a test page returning stTest where
PHP Code:
stTest=CStr(System.Security.Principal.WindowsIdentity.GetCurrent.Name.ToString())
If this makes sense to anyone and they have any useful advice that can stop me tearing out my remaining few hairs, I would be eternally grateful.
Comment