I have a web handler C# program that calls CreateProcessAsUser() using DuplicateTokenEX() to run a cmd.exe /c myscript.cmd using impersonation and delegation but it cannot access a file via a UNC path.
The application pool is running under a domain account, and user can authenticate using Kerberos. I have allow delegation turned on for the domain user. I put a simple statement in myscript.cmd like: dir \\acmp\dir and I can see in process monitor
that this gets a denied access. The myscript.cmd is running as the impersonated user (from the browser).
What do I need to do to be able to read network files?
Go to the complete details ...