Secured Access to Virtual Directories on Remote Shares

[InternetCookies]

I got my site setup to include a virtual directory located on a remote share. The remote share can be browsed via the 'file system object' in an ASP page. When setting up the virtual directory in IIS Config, it required a static user to 'connect as' (user/password). I setup a new user 'IUSR_NEWBLAH' on the webserver and on the remote share so that IIS can connect, but I also had to enable anonymous access to the site with 'IUSR_NEWBLAH' in order for the ASP page to recognize the share. When I try to configure IIS for windows authentication the asp page won't recognize the share anymore. The error is 'path not found'. The virtual directory is shared explicity to all authorized users and they have full security permissions. I need to lock down the IIS server so that only authorized users can access the site but as stated, any attempt to remove anonymity results in the remote share not being found via the ASP Page.

Any Ideas?

 

[gatoradeguy]

I believe you're running into the problem of a double hop. If you look on msdn or microsofts website or google about "impersonation" you'll find this is a common problem with ASP.net and accessing remote virtual directories. I am actually working on the same problem.