Impersonation in ASP.Net

Impersonation is an act of a user to pretend it self to be another user. By default, ASP.Net executes application code using the same user account as that of  ASP.Net process. i.e Network Service. But with impersonation enabled, it executes code with the windows identity of the user making the request. If a user ‘User1’ logged in and IIS is set up to run as Network_Service. If ‘User1’ call a piece of code on another computer, the other computer will see the IIS user instead of ‘User1’. But we can enable impersonaton to allow ‘User1’ to access the web service using its windows identity instead of Netwok_service.

Leave a Reply

Your email address will not be published. Required fields are marked *