运行ASP.net模拟和EWS [英] Runtime ASP.net Impersonation and EWS
问题描述
我有需要使用EWS访问用户邮箱的web应用程序。
I have web application which needs to access user mail box using EWS.
我有实施impersontation麻烦。
I am having trouble implementing impersontation.
如果我冒充我的IIS应用程序还是通过本地主机它工作正常运行时的模拟和浏览器,但没有模拟(使用IIS配置或运行时),当我浏览使用IP我的应用程序的工作。
If I impersonate my application in IIS or do run time impersonation and browser through localhost it works fine, however neither impersonation (using IIS config or runtime) works when i browse my application using IP.
我已经试过沿线基本Authenticatio /匿名身份验证与身份验证窗口,但没有得到它的工作。我想我的应用程序使用/ NTLM和Kerberos的。
I have tried Basic Authenticatio/Anonymous Authentication along with windows auth but failed to get it working. I tried my app to use either/both NTLM and Kerberos.
我的应用程序理想配置是NTLM仅Windows身份验证。
Ideal configuration for my app is only windows authentication on NTLM.
请帮助,如果有人遇到这个问题。
Please help if someone has faced this issue.
应用程序应为一个帐户运行,但需要访问他/她的邮箱时要模拟用户。我在IIS 7.5上运行.NET 4.5
App should run for a account, but should impersonate user when needed to access his/her mailbox. I am running .net 4.5 on IIS 7.5
推荐答案
你们看到的是服务器双跃点身份验证问题。默认情况下Windows不允许用户的凭据来运行你的ASP.NET网站,您的Exchange服务器的Web服务器被委派。它的工作原理在当地,因为只有当你在运行ASP.NET的网站的登录机一台服务器跳。
What you are seeing is the server double-hop authentication issue. By default Windows does not allow the user's credentials to be delegated from the web server running your ASP.NET site to your Exchange server. It works locally because there is only a single server hop as you are logged in to the machine running the ASP.NET site.
Kerberos是去让它的工作方式。你必须设置你的web服务器最多可被信任进行委派。我不知道如何真正做到这一点,但这个太问题可以帮助你:
如何解决在Kerberos双跃点问题?
Kerberos is the way to go to make it work. You have to set your web server up to be trusted for delegation. I have no idea how to actually do this but this SO question may help you: How can I fix the Kerberos double-hop issue?
这篇关于运行ASP.net模拟和EWS的文章就介绍到这了,希望我们推荐的答案对大家有所帮助,也希望大家多多支持IT屋!
