Home/ Questions/Q 3437580
In Process

The Archive Base Latest Questions

Editorial Team
  • 0
Asked: 2026-05-18T08:04:58+00:00

I have an ASP.NET website which is using a filestream to read in a

  • 0

I have an ASP.NET website which is using a filestream to read in a PDF image from a UNC share on a remote server 2003 box.

i attempt to load the file on the site (which simply embeds a PDF viewer on the site) but when i debug the code, it’s throwing a security exception when i attempt to access the file.

access to _________ path is denied.

So I granted access to the UNC path directory to the ASPNET user.
I also granted access to the user that’s specified for anonymous access in the site itself in IIS. That did not work.

However, I when grant “everybody” access and the file comes through.

So, I need to know WHO is trying to access the file. the assumption is either the ASPNET user or the anonymous user setup in IIS. neither of which is gaining access.

I tried to set up file auditing on the Server 2003 box but it’s not logging a failure in the security event log when I get an access denied exception.

Share

Leave an answer

You must login to add an answer.

Need An Account,

1 Answer

  1. Editorial Team

    System.Security.Principal.WindowsIdentity.GetCurrent().Name will get you the current user name, you could output this user to the screen or to a log file to check who it is.

    The ASPNET user is the windows account that ASP.NET runs under, this is probably not the user who will be accessing the file. You may need to explicitly grant privileges to the anonymous user to access the network (IUSR_MACHINENAME perhaps).

    EDIT:

    As you have enabled anonymous access in IIS, you can force your app to use anonymous access by modifying your web.config to use Forms authentication. Search for ‘

    <authentication mode="Forms" />

    or 

    <authentication mode="Forms">
  <forms loginUrl="~/Login.aspx" timeout="2880"/>
</authentication>
    • 0