Windows authentication with impersonation false is not working in windows 2008 server

Question

Windows authentication with impersonation false is not working in windows 2008 server

Anjaly 1

Hi,

My application is hosted in two different Windows 2008 servers (which are Quality and Production).

In the Quality server, "Windows authentication and impersonation false" is working fine.
But in Production server "Windows authentication and impersonation false" is throwing error.

Why do the same application hosted in two different Windows 2008 servers behave differently with "Windows authentication and impersonation false" configurations?

Kindly help me.

Thanks
Anjaly V B

Anjaly 1 Reputation point

2021-04-09T10:20:06.043+00:00

Do I need to consider any other Impersonation configurations in IIS or Windows server when I use identity impersonation = false in my web.config file?
MotoX80 36,291 Reputation points

2021-04-12T13:39:53.067+00:00

But in Production server "Windows authentication and impersonation false" is throwing error.

What is the error message?
Anjaly 1 Reputation point

2021-04-12T17:27:04.753+00:00

Application is an MVC ASP.NET 4.0 application.

CustomError is turned Off and still I am not able to view the error in my browser when I run the application.

CustomError mode is changed to RemoteOnly, but still I am not able to see error in browser. Please help on how to view error in browser
MotoX80 36,291 Reputation points

2021-04-12T18:43:01.46+00:00

Try setting it to just "on". Also check the IIS log files.
Sam Wu-MSFT 7,561 Reputation points Microsoft External Staff

2021-04-13T08:20:52.44+00:00

@Anjaly The problem may be caused by the cache, you can set the authPersistNonNTLM="True" and authPersistSingleRequest="False" in iis setting. If you still can’t solve the problem, you need to post detailed information about the error.

1 answer

Your answer

Anjaly 1 Reputation point

2021-04-09T10:20:06.043+00:00

Do I need to consider any other Impersonation configurations in IIS or Windows server when I use identity impersonation = false in my web.config file?
MotoX80 36,291 Reputation points

2021-04-12T13:39:53.067+00:00

But in Production server "Windows authentication and impersonation false" is throwing error.

What is the error message?
Anjaly 1 Reputation point

2021-04-12T17:27:04.753+00:00

Application is an MVC ASP.NET 4.0 application.

CustomError is turned Off and still I am not able to view the error in my browser when I run the application.

CustomError mode is changed to RemoteOnly, but still I am not able to see error in browser. Please help on how to view error in browser
MotoX80 36,291 Reputation points

2021-04-12T18:43:01.46+00:00

Try setting it to just "on". Also check the IIS log files.
Sam Wu-MSFT 7,561 Reputation points Microsoft External Staff

2021-04-13T08:20:52.44+00:00

@Anjaly The problem may be caused by the cache, you can set the authPersistNonNTLM="True" and authPersistSingleRequest="False" in iis setting. If you still can’t solve the problem, you need to post detailed information about the error.

Answer 1

JiayaoZhu 3,926

Hi,

Thank you for your posting!

Based on your descriptions, you can try to do it in the web.config file:

In addition, since I have little information on how you configurated and how you failed in this configuration, you can refer your own practice to this article:

https://learn.microsoft.com/en-us/aspnet/core/security/authentication/windowsauth?view=aspnetcore-5.0&tabs=visual-studio#impersonation

Thank you for your support!

Best regards
Joan

--------------------------------------------------------------------------------------------------------------------

If the Answer is helpful, please click "Accept Answer" and upvote it.

Note: Please follow the steps in our documentation to enable e-mail notifications if you want to receive the related email notification for this thread.

Anjaly 1 Reputation point

2021-04-12T17:32:13.437+00:00

My application is an ASP.NET 4.0 MVC application. In my web.config file, I was already having <identity impersonate="true"/> with "Windows" authentication and custom error mode "off".

Changing the impersonation as <identity impersonate="false"/> is working perfectly fine in quality windows 2008 server, but the same is throwing error in production windows 2008 server.

I want impersonation to be disabled in my application. Did I miss disabling any other configurations in IIS or server for disabling impersonation?

Please help.

Share via

Windows authentication with impersonation false is not working in windows 2008 server

1 answer

Your answer