Solved

Logon failure: unknown user name or bad password opening a networked file out of process

Posted on 2009-05-08
3
2,466 Views
Last Modified: 2013-11-08
Logon failure: unknown user name or bad password opening a networked file out of process

IIS 6.0
ASP.Net 2.0.50727
Microsoft .Net Framework 3.5
IIS/Web Server on Windows 2003 Server, file server on Windows 2000 Advanced Server

I have read several posts about this problem both here on this site as well as many articles on others, but it seems that the typical solutions aren't solving my problem.   Basically, our developer has written some code to read a file from the network, but he gets an exception when attempting to access that file.  The specific error is "Logon failure: unknown user name or bad password".   The two servers (the web server and the file server) are both on the same domain and the same subnet.   We are of course using a UNC path to reference the file share although our attempt at using a mapped drive didn't yield any better results.  

I *think* my problem is that the impersonation isn't working despite having set the following in Web.Config:

<identity impersonate="true" userName="DOMAIN\user" password="password" />

I base that assumption on the fact that I know this user has permissions to read the file and I know the password is correct.   I'm not sure if there is a way to prove that the impersonation is occurring however.  

I don't know if the article at http://support.microsoft.com/kb/317012 applies since it is for ASP.Net 1.x, but the quote from it below concerns me:

"However, impersonation often does not work when you try to access remote resources unless the application uses an authentication mechanism that can be delegated, such as Kerberos or Basic authentication."  

We are not using Kerberos or Basic authentication, the way I understand it.  Instead, our application is using forms authentication as specified in Machine.config.   We have tried turning anonymous access off on IIS and that did not resolve the issue.  I have also turned on "Integrated Windows Authentication" in the Directory Security tab to no avail.   The article at
http://support.microsoft.com/default.aspx?scid=kb;en-us;810572 seems to suggest that I may have to set up delegation, but it also specifies that in Web.Config, the authentication mode has to be "Windows".   As I mentioned, we are using forms authentication and I don't believe that
can be changed, so even though I followed the other instructions, I still had the same behavior.  

Any insight is much appreciated as always.
private DataCollection GetFileData(string file)

    {

        StreamReader sr = null;

        ReportData data;

        ReportDataCollection dataCol = new ReportDataCollection();

        try

        {

            sr = new StreamReader(file);

            while (sr.Peek() != -1)

            {

                line = sr.ReadLine();

                if (!string.IsNullOrEmpty(line) && !line.StartsWith("^^"))

                {

                    data = new ReportData();

                    data.Line = line;

                    dataCol.Add(data);

                }

            }
 

        }

        catch (Exception e)

        {

            throw e;

        }

        finally

        {

            if (sr != null) sr.Close();

        }
 

        return dataCol;

}

Open in new window

0
Comment
Question by:izgoblin
  • 2
3 Comments
 
LVL 83

Accepted Solution

by:
CodeCruiser earned 500 total points
Comment Utility
0
 

Author Comment

by:izgoblin
Comment Utility
Thank you!  I just spoke to my developer and he was able to use the links you provided to branch off and read more about impersonating a user directly in his code.  Once he did so, he was able to read from and write to the network.  
0
 
LVL 83

Expert Comment

by:CodeCruiser
Comment Utility
I am glad your problem is solved.
0

Featured Post

What Should I Do With This Threat Intelligence?

Are you wondering if you actually need threat intelligence? The answer is yes. We explain the basics for creating useful threat intelligence.

Join & Write a Comment

A long time ago (May 2011), I have written an article showing you how to create a DLL using Visual Studio 2005 to be hosted in SQL Server 2005. That was valid at that time and it is still valid if you are still using these versions. You can still re…
It was really hard time for me to get the understanding of Delegates in C#. I went through many websites and articles but I found them very clumsy. After going through those sites, I noted down the points in a easy way so here I am sharing that unde…
Internet Business Fax to Email Made Easy - With eFax Corporate (http://www.enterprise.efax.com), you'll receive a dedicated online fax number, which is used the same way as a typical analog fax number. You'll receive secure faxes in your email, fr…
Access reports are powerful and flexible. Learn how to create a query and then a grouped report using the wizard. Modify the report design after the wizard is done to make it look better. There will be another video to explain how to put the final p…

771 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question

Need Help in Real-Time?

Connect with top rated Experts

10 Experts available now in Live!

Get 1:1 Help Now