| Jason Carter 2007-04-06, 1:21 am |
| Every server is Windows 2003 R2 (web and file server).
I had delegation enabled on the web server to the file server for the HOST
and cifs services in a Windows 2003 native mode active directory.
I am interested in knowing what you think should have been done differently.
I am all for securing the data as much as possible, as long as it works.
Thank you for your response.
"David Wang" wrote:
> While I am happy that you have found a solution to your situation, I
> have to say that Delegation is NOT the problem. And using Basic over
> SSL is NOT necessarily the correct solution.
>
> Basic over SSL is basically the "I give up because I don't understand
> delegation" solution because it is insecure, though in your situation
> you are using a non-important ConnectAs user whose delegation
> properties you do not need to secure.
>
> In other words, Basic/SSL is a passable workaround for your needs, but
> it is definitely not the correct solution for the general issue of
> delegation which surfaces as soon as you want users to use your web
> server to access resources on another server.
>
> What OS is providing the CIFS file services?
>
>
> //David
> http://w3-4u.blogspot.com
> http://blogs.msdn.com/David.Wang
> //
>
>
>
> On Apr 5, 1:56 pm, Jason Carter
> <JasonCar...@discussions.microsoft.com> wrote:
>
>
>
|