Mike, I turned off anonymous access, set the identity to impersonate, and was able to shut down a service from a web page. The app will use the logged in user's permissions to access the system.
If you want to impersonate a specific account, you can do that too: <identity impersonate="true" userName="domain\username" password="password"/> The app will use the permissions for whichever account you set here. Note that means any user that can access the page will be able to turn off the service. That's why I like the logged-in user impersonation, at least they need to be authenticated by the system. The default account that ASP.NET runs under depends on the OS. Under XP it runs under the ASPNET account, under 2003 it does run under network services. On 8/8/05, Mike Belcher <[EMAIL PROTECTED]> wrote: > Oh BTW just for the fun of it I gave the aspnet account admin privileges to > try it and still access denied.............. Doesn't asp also use the > network service account. If I go to even viewer that is what is listed there > during this error........ > > > Event code: 3005 > Event message: An unhandled exception has occurred. > Event time: 8/8/2005 10:33:39 PM > Event time (UTC): 8/9/2005 2:33:39 AM > Event ID: 4cff5bf8164b42c99bc456c37bbd294b > Event sequence: 63 > Event occurrence: 6 > Event detail code: 0 > > Application information: > Application domain: /LM/W3SVC/1/ROOT-1-127680280702061250 > Trust level: Full > Application Virtual Path: / > Application Path: c:\someplace\ > Machine name: astupidname > > Process information: > Process ID: 4032 > Process name: w3wp.exe > Account name: NT AUTHORITY\NETWORK SERVICE > > Exception information: > Exception type: InvalidOperationException > Exception message: Cannot open CSS 10003 service on computer '.'. > > Request information: > Request URL: > http://www.gamznmore.com/CSS_.aspx?ServerAction=StartStopRestart > Request path: /CSS_.aspx > User host address: 69.89.163.0 > User: > Is authenticated: False > Authentication Type: > Thread account name: NT AUTHORITY\NETWORK SERVICE > > Thread information: > Thread ID: 5 > Thread account name: NT AUTHORITY\NETWORK SERVICE > Is impersonating: False > Stack trace: at > System.ServiceProcess.ServiceController.GetServiceHandle(Int32 > desiredAccess) > at System.ServiceProcess.ServiceController.Stop() > at gamznmore.CSS_.ButtonStopServer_Click(Object sender, EventArgs e) > at System.Web.UI.WebControls.Button.OnClick(EventArgs e) > at System.Web.UI.WebControls.Button.RaisePostBackEvent(String > eventArgument) > at > System.Web.UI.WebControls.Button.System.Web.UI.IPostBackEventHandler.RaisePo > stBackEvent(String eventArgument) > at System.Web.UI.Page.RaisePostBackEvent(IPostBackEventHandler > sourceControl, String eventArgument) > at System.Web.UI.Page.RaisePostBackEvent(NameValueCollection postData) > at System.Web.UI.Page.ProcessRequestMain(Boolean > includeStagesBeforeAsyncPoint, Boolean includeStagesAfterAsyncPoint) > > > Custom event details: > > For more information, see Help and Support Center at > http://go.microsoft.com/fwlink/events.asp. > > -----Original Message----- > From: [email protected] > [mailto:[EMAIL PROTECTED] On Behalf Of Mike Belcher > Sent: Monday, August 08, 2005 10:10 PM > To: [email protected] > Subject: RE: [AspNetAnyQuestionIsOk] Windows > ServiceAdministrationwithASP.NET ... Access denied > > I was wondering how could I pass a username and password of an account to > allow this page to be able to stop and start the service in the code? I have > this part > > > Dim myController As New System.ServiceProcess.ServiceController("CSS > SERVER 10003") > > If myController.CanStop Then > > myController.Stop() > myController.Start() > Response.Write(myController.ServiceName & " Restarted.") > > Else > Response.Write(myController.ServiceName & " cannot stop.") > > End If > > > if I do like I said myController.Stop() then I get access denied. I did > notice on the server that the account is defaulted to local service so I > tried network server and aspnet also. Denied. I think I have to include a > username and a password to make it work in the code. I search but can't find > anything on it............. > > > > -----Original Message----- > From: [email protected] > [mailto:[EMAIL PROTECTED] On Behalf Of Dean Fiala > Sent: Monday, August 08, 2005 9:52 PM > To: [email protected] > Subject: Re: [AspNetAnyQuestionIsOk] Windows > ServiceAdministrationwithASP.NET ... Access denied > > Mike, > Since this page is something that I assume only admin users will be > using as it will be a bit dangerous, I'd make it a separate app and I > would use Windows Authentication for it > I would turn off anonymous access in IIS and and then set up the app > to impersonate the logged in user. > <identity impersonate="true"/> > > A logged-in user with admin privileges will be able to access the service. > > Giving the ASP.NET user admin priveleges means that every app on the > machine running under the ASP.NET account will have admin priveleges. > > > On 8/8/05, Mike Belcher <[EMAIL PROTECTED]> > wrote: > > I have the same problem this guy below has...... is this solution what I > > need to do? I noticed my service is currently running under the Network > > service account: > > > > > Yahoo! Groups Links > > > > > > > > > > > > > Yahoo! Groups Links > > > > > > > > > > > > > > Yahoo! Groups Links > > > > > > > -- Dean Fiala Very Practical Software, Inc http://www.vpsw.com ------------------------ Yahoo! Groups Sponsor --------------------~--> <font face=arial size=-1><a href="http://us.ard.yahoo.com/SIG=12hos4oir/M=362329.6886308.7839368.1510227/D=groups/S=1705006764:TM/Y=YAHOO/EXP=1123565722/A=2894321/R=0/SIG=11dvsfulr/*http://youthnoise.com/page.php?page_id=1992 ">Fair play? Video games influencing politics. Click and talk back!</a>.</font> --------------------------------------------------------------------~-> Yahoo! Groups Links <*> To visit your group on the web, go to: http://groups.yahoo.com/group/AspNetAnyQuestionIsOk/ <*> To unsubscribe from this group, send an email to: [EMAIL PROTECTED] <*> Your use of Yahoo! Groups is subject to: http://docs.yahoo.com/info/terms/
