I have some security concerns over storing a Active Directory username/ passwd in a text based web.config file for the identity impersonation definition. I know that web.conf is not accessible via the web browser, however someone with account on the server can get to the file and steal the cr...more >>

My network environment consists of a domain with active directory(Win 2003 Server). My web application sits on IIS located outside the domain. The web application is accessible through port 80 and without single sign on, requires user to enter username/password to gain access to the web app...more >>

A client of mine is trying to consume my web service. My web service is requiring client cert. The call is coming from a web server where they host a web application. Their web server has a server cert. They are trying to attach that server cert as their client cert. The server cert's root i...more >>

Hi, I am not sure whether this is the correct newsgroup where I am posting the question. I am currently using Citrix as a solution for connecting to a remote server on which Windows Server 2003 Standard Edition is the operating system. I have created a new virtual site on that machine fo...more >>

I have read somewhere that Basic Authentication should be avoided because it sends passwords in clear text and that Integrated Windows Authentication only works with Internet Explorer on a Windows computer. I have a website in IIS with only Integrated Windows Authentication enabled and not a...more >>

Hi all. I've written a custom membership provider which works with tables in my ms sql database. This works great locally, but as soon as I run the site on the live (shared) server, I get the following error message: Parser Error Message: Attempt to access the method failed. The line in...more >>