|
Home > Archive > IIS Server Security > February 2004 > Accessing WSDL from LocalSystem account
You are viewing an archived Text-only version of the thread.
To view this thread in it's original format and/or if you want to reply to
this thread please [click here]
| Author |
Accessing WSDL from LocalSystem account
|
|
| David Ehrlich 2004-02-20, 2:35 am |
| I have a machine running Windows 2003 Server and the latest SharePoint
Server software. I've written a C# WebService that runs on this machine and
exposes some additional functionality I need to automate work with
SharePoint from a remote machine.
The Web Service is accessible and works correctly when writing and debugging
the application on the remote machine. However, now that the service ready
for production, I'm running into an issue. I need to run the application as
a Windows Service on a Windows 2000 machine. This means the application
will run as the LocalSystem account. As soon as I attempt to access the Web
Service, I receive an error such as the following:
Unable to load WSDL File/Location:
http://ServerName/_vti_bin/MyWebService.asmx?wsdl. Error [Unauthorized
(401) - 'http://ServerName/_vti_bin/MyWebService.asmx?wsdl']
When I run as myself (an authenticated user in the same domain as the
SharePoint server), it works fine.
When I log in to a local account on my machine, I receive the same error as
indicated above.
When logged in to that same local account, but I execute "LogonUser" and
"ImpersonateLoggedOnUser" in my application, it works.
When I use that same LogonUser/ImpersonateLoggedOnUser logic (running the
application as a Windows Service), it fails with the error above.
I've tried various Directory Security settings within IIS (on _vti_bin) with
no clues or improvements. I'm targeting "Integrated Windows authentication"
(no anonymous, basic, digest, etc) due to project specifications.
Any thoughts appreciated.
--David Ehrlich
| |
| David Ehrlich 2004-02-20, 5:35 am |
| For what it's worth, I'm trying to use Delphi 7's SOAP components on the
client side to access this web service.
"David Ehrlich" <djehrlich@hotmail.com> wrote in message
news:uP7LDX89DHA.2316@TK2MSFTNGP11.phx.gbl...
> I have a machine running Windows 2003 Server and the latest SharePoint
> Server software. I've written a C# WebService that runs on this machine
and
> exposes some additional functionality I need to automate work with
> SharePoint from a remote machine.
>
> The Web Service is accessible and works correctly when writing and
debugging
> the application on the remote machine. However, now that the service
ready
> for production, I'm running into an issue. I need to run the application
as
> a Windows Service on a Windows 2000 machine. This means the application
> will run as the LocalSystem account. As soon as I attempt to access the
Web
> Service, I receive an error such as the following:
>
> Unable to load WSDL File/Location:
> http://ServerName/_vti_bin/MyWebService.asmx?wsdl. Error [Unauthorized
> (401) - 'http://ServerName/_vti_bin/MyWebService.asmx?wsdl']
>
> When I run as myself (an authenticated user in the same domain as the
> SharePoint server), it works fine.
> When I log in to a local account on my machine, I receive the same error
as
> indicated above.
> When logged in to that same local account, but I execute "LogonUser" and
> "ImpersonateLoggedOnUser" in my application, it works.
> When I use that same LogonUser/ImpersonateLoggedOnUser logic (running the
> application as a Windows Service), it fails with the error above.
>
> I've tried various Directory Security settings within IIS (on _vti_bin)
with
> no clues or improvements. I'm targeting "Integrated Windows
authentication"
> (no anonymous, basic, digest, etc) due to project specifications.
>
> Any thoughts appreciated.
>
> --David Ehrlich
>
>
|
|
|
|
|