ASP.NET MVC3 Windows身份验证传递到TFS [英] ASP.NET MVC3 Windows Authentication Pass Through to TFS

问题描述

要简化我的问题，我基本上是试图建立一个ASP.NET MVC 3网站，将允许用户查看分配给他们的工作项目。我有网站的视图和控制器的工作。当我尝试部署到IIS我的机器（Win 7的）上运行出现的问题。在Windows身份验证用于识别，因为它要求他们登录（我不希望这样）的用户和访问TFS不通过的网页通过自动。在IIS中的身份验证仅启用了Windows验证和web.config中有

To simplify my problems i am basically trying to setup an ASP.NET MVC 3 website that will allow users to view work items assigned to them. i have the website views and controllers working. the problems occur when i try to deploy to IIS running on my machine (Win 7). the Windows Authentication used to identify the user and access tfs are not passed through to the webpage automatically as it asks them to login (i do not want this). the Authentication on IIS only has Windows Auth enabled and the web.config has

<authentication mode="Windows" />
<identity impersonate="true" />
<customErrors mode="Off" />

<authorization>
  <deny users ="?" />
  <allow users ="*" />
</authorization>

有谁知道为什么这是行不通的。

does anybody know why this would not work.

干杯

推荐答案

默认情况下，ASP.NET模拟处于禁用状态。如果您启用模拟，ASP.NET应用程序通过IIS 7见的配置ASP.NET模拟身份验证。通过Kerberos约束委派为流动模拟凭据到第二主机的唯一途径。您可以通过在TFS应用层部署Web应用程序和配置其应用程序池的相同的标识TFS Web服务运行解决这个问题。

By default, ASP.NET impersonation is disabled. If you enable impersonation, your ASP.NET application runs under the security context of the user authenticated by IIS 7. See Configure ASP.NET Impersonation Authentication. Constrained Delegation via Kerberos is the only way to flow impersonated credentials to a second host. You can get around this by deploying your web application on the TFS App Tier and configuring its app pool to run as the same identity as the TFS web services.

这篇关于ASP.NET MVC3 Windows身份验证传递到TFS的文章就介绍到这了，希望我们推荐的答案对大家有所帮助，也希望大家多多支持IT屋！