For Application Pool Identity, how do you return the logged in user when authentication is both set to anonymous and windows authentication?

Question

I'm new to IIS Deployment. It looks like the application pool identity user will always show as computer name of the user. So if we use domain/username as app pool identity, it will always treat domain/username regardless who is logged in on the app.

How do you return the computer name of the user when authentication is both set to anonymous and windows authentication?

Here's what I have on Startup.cs

public void Configuration(IAppBuilder app)
    {
        app.UseCors(CorsOptions.AllowAll);
        //app.UseCors(Microsoft.Owin.Cors.CorsOptions.AllowAll);

        OAuthAuthorizationServerOptions option = new OAuthAuthorizationServerOptions
        {
            TokenEndpointPath = new PathString("/token"),
            Provider = new ApplicationOAuthProvider(),
            AccessTokenExpireTimeSpan = TimeSpan.FromMinutes(300),
            AllowInsecureHttp = true
        };
        app.UseOAuthAuthorizationServer(option);
        app.UseOAuthBearerAuthentication(new OAuthBearerAuthenticationOptions());

    }

public void ConfigureServices(IServiceCollection services)
    {
        services.AddAuthentication(IISDefaults.AuthenticationScheme);
    }

    // This method gets called by the runtime. Use this method to configure the HTTP request pipeline.

public void Configure(IApplicationBuilder app)
    {
        app.UseAuthentication();
    }

You might get some basic knowledge from https://blog.lextudio.com/the-basic-facts-about-iis-asp-net-process-thread-identities-835eaac876a0 Edit your question to state clearly what is the "logged in user" you are talking about, as the ambiguity around it can prevent this question from being answered. — Lex Li, Jan 24 '20 at 17:27
“Computer name of the user”? What's that? Computer name or user name? If you find it hard to describe, use screen shots. — Lex Li, Jan 25 '20 at 17:16
You won't get that when you enable anonymous authentication (Windows authentication is ignored when anonymous is enabled). And that's exactly what anonymous is. — Lex Li, Jan 27 '20 at 03:41
It's disabled but i'm getting the error error: "invalid_grant" — Mary Reia Sundi, Jan 27 '20 at 03:49

score 0 · Answer 1 · answered Jan 27 '20 at 04:59

0

How do you return the computer name of the user when authentication is both set to anonymous and windows authentication?

As far as I know，if you have already enabled the anonymous authentication, that means all the user will not use windows auth, it will use your IIS anonymous user as the user account.

The user account could be the specific user or the identity pool user based on your setting.

If you diable the anonymous authentication, it will use the client user's domain username which could set by client uswer to access your web application.

answered Jan 27 '20 at 04:59

Brando Zhang

22,586
6
37
65

Thanks. However, currently I'm getting the error error: "invalid_grant" (401 (Unauthorized)) – Mary Reia Sundi Jan 27 '20 at 05:15
Any help please? – Mary Reia Sundi Jan 27 '20 at 14:42
As far as I know, this issue is normally thrown by the application which has enabled the oauth. Could you please tell me that you have enabled oauth in your web application? Besides, I suggest you could post your web.config setting which related with the windows auth. – Brando Zhang Jan 28 '20 at 03:09
I added my Startup.cs on my main question. – Mary Reia Sundi Jan 28 '20 at 09:16
According to your codes, I found you have enbled the oauth in your application, the error measn that your login user doesn't have the permission to access your web application. – Brando Zhang Jan 30 '20 at 05:12
are you referring this? AllowInsecureHttp = true – Mary Reia Sundi Jan 30 '20 at 05:22

For Application Pool Identity, how do you return the logged in user when authentication is both set to anonymous and windows authentication?

1 Answers1