c# - Executing powershell threads in IIS as impersonated user -

-

i've been working on web application makes use of powershell scripts. reason, asp.net impersonation, getting "access denied" errors on commands require elevated access.

the web application deployed via iis 7.5 running on windows 2008 r2 standard sp1 server.

i've checked exception logged in event viewer , noticed account being used in spawned thread network service account :

network service exception

from can tell, means impersonation not being carried powershell cmdlet threads. confident user impersonated should have access run script looks permissions being used of network service account not goal.

i've made following changes aspnet.config file suggested in few articles i've read no avail:

       <legacyimpersonationpolicy enabled="false"/>        <alwaysflowimpersonationpolicy enabled="true"/>

here's snippet of asp net c# code explain situation:

            //create runspace             runspaceconfiguration psconfig = runspaceconfiguration.create();             runspace psrunspace = runspacefactory.createrunspace(psconfig);              //configure runspace run on current thread             psrunspace.apartmentstate = system.threading.apartmentstate.sta;             psrunspace.threadoptions = system.management.automation.runspaces.psthreadoptions.usecurrentthread;              using (pipeline pspipeline = psrunspace.createpipeline())             {                 psrunspace.open();                 pspipeline.commands.addscript("c:\\scripts\\powershell\\myscript.ps1");                  // invoke cmdlet                  var results = pspipeline.invoke();                 var builder = new stringbuilder();                  foreach (var psobject in results)                 {                     // convert base object string , append string builder.                     // add \r\n line breaks                     builder.append(psobject.baseobject.tostring() + "\r\n");                 }                 //display results                 resultbox.text = builder.tostring();

i have spent last 5 hours getting work. appreciated. thanks!

please try following solution - works me in sharepoint environment

public listusersps(string searchstring) { .... windowsidentity identity = windowsidentity.getcurrent(); windowsimpersonationcontext ctx = null;  ctx = identity.impersonate();  runspaceconfiguration connectioninfo = runspaceconfiguration.create(); ... using (runspace rsp = runspacefactory.createrunspace(connectioninfo)) { ... } ... }

Comments

Post a Comment

Popular posts from this blog

python - pip install -U PySide error -

-
does know how avoid following error when running pip install -u pyside per official website instructions here: https://pypi.python.org/pypi/pyside/#installing-pyside-on-a-mac-os-x-system note have done brew install qt successfully. you using pip version 7.0.3, version 7.1.2 available. should consider upgrading via 'pip install --upgrade pip' command. collecting pyside using cached pyside-1.2.4.tar.gz installing collected packages: pyside running setup.py install pyside complete output command /applications/anaconda/bin/python -c "import setuptools, tokenize;__file__='/private/var/folders/dy/ttgqhqqx3g9bsbsnqnxsk2z80000gq/t/pip-build-cpxemt/pyside/setup.py';exec(compile(getattr(tokenize, 'open', open)(__file__).read().replace('\r\n', '\n'), __file__, 'exec'))" install --record /var/folders/dy/ttgqhqqx3g9bsbsnqnxsk2z80000gq/t/pip-0r7hri-record/install-record.txt --single-version-externally-managed --compile:
Read more

arrays - C++ error: a brace-enclosed initializer is not allowed here before ‘{’ token -

-
simple question: i'm trying initialize array within c++ class declaration: using namespace std; #include <string> class myclass{ public: string myarray[] = {"a","b","c"}; }; and i'm getting error: error: brace-enclosed initializer not allowed here before ‘{’ token no, without complied c++11 compiler, cannot initialize member array in declaration. have initialize array member in constructor. , don't use open array if know number of elements initialize array.
Read more

cytoscape.js - How to add nodes to Dagre layout with Cytoscape -

-
i trying add nodes dagre graph through cityscape.js. problem nodes not painted. code have: cy.add({ group: "nodes", data: { id:"n0",name:"n0",weight: 75 }, }); $.ajax(url).done(function(jsontree){ var newnodes=[]; for(var i=1;i<6;i++){ //var child = jsontree.result[i]; newnodes.push( { group: "nodes", data: { id: "n"+i, name:"n"+i}}, { group: "edges", data: { id: "e"+i, source: "n0", target: "n"+i } } ); } cy.add(newnodes); any ideas? have used loaded function reload graph not work. not know if have use specific function reload graph. thank in advance. you need add positions new nodes. cytoscape.js docs : it important note positions of newly added nodes must defined when calling cy.add(). nodes can not placed in graph without valid position — otherwise not displayed. yo
Read more