Re: FYI: SERVICE needs Impersonate a client after authentication

*>>** What I find *really* irritating is that DSS apparently doesn't *test* their ideas before issuing them as recommendations. *They* should do the trial and error part, and not use everybody else as their guinea pigs. Grrr.* +5 *ASB *(My XeeSM Profile) *Exploi

Re: FYI: SERVICE needs Impersonate a client after authentication

On Wed, Aug 4, 2010 at 9:01 PM, Andrew S. Baker wrote: >> "Impersonate a client after authentication" ... do not remove >> the "SERVICE" Special Identity ... > > What would cause them to desire the removal of that functionality? Because "Impersonate" sounds scary. In all fairness, many of

Re: FYI: SERVICE needs Impersonate a client after authentication

What would cause them to desire the removal of that functionality? *ASB *(My XeeSM Profile) *Exploiting Technology for Business Advantage...* * * Signature powered by WiseStamp On Wed, Aug 4, 2010 at 7:05 PM, Ben Scott wr

FYI: SERVICE needs Impersonate a client after authentication

Since I just lost three days of my working career to this, I thought I'd share, for the benefit of the archives and web searches. If you are being required to implement DSS ODAA "Standardization of Baseline Technical Security Configurations", under "User Rights Assignment", for the "Impersonat