Many thanks.

First, be sure to read the Automation and Extensibility Reference[^] in the Visual Studio .NET documentation if you haven't already. Second, MSDN[^] has had many good articles in the past about extensibility in Visual Studio. You can find most of them under Extensibility Articles[^]. This posting is provided "AS IS" with no warranties, and confers no rights. Software Design Engineer Developer Division Sustained Engineering Microsoft [My Articles]

For getting scrollBar position, P/invoke GetScrollPos [System.Runtime.InteropServices.DllImport("user32")] public static extern int GetScrollPos(int hwnd, int nBar); Regards, Jay.

ps: Just signed a request from a windows application using the same certificate and it worked! So now I am REALLY thinking it's a permissions issue with the user under which ASP.NET is running... Bill

Thanks again Heath, As per the usual: you told me what I needed to know. I'll post a generic version of what I come up with here so maybe future TreeNode-noobs won't have to take up forum-bandwidth. Out, Bill

Several possibilities. First off, is your impersonation succeeding? 1. Is the ASPNet account set to run as part of the OS? It will need to be, and remember that authentication in a web app is different than logging on locally. 2. I'm not certain what a value of 3 means for LogonType in LogonUser call - I assume it means NETWORK logon, which doesn't create a primary token handle, required for impersonation - should be using INTERACTIVE logon (2). 3. No token is being provided when you create your WindowsIdentity. 4. It may only be in your example, but aren't the forward slashes in the path supposed to be backslashes? 5. Is this running on/against XP or 2000? There are documented issues with getting impersonation to work under 2000 without hacking security to do it. Hope this helps. Example I got to work on XP (example hints came directly from MSDN, BTW): using System; using System.Security; using System.Runtime.InteropServices; using System.Security.Principal; using System.Security.Permissions; namespace ConsoleApplication2 { /// /// Summary description for Class1. /// class Class1 { [DllImport("advapi32.dll", SetLastError=true)] public static extern bool LogonUser(String lpszUsername, String lpszDomain, String lpszPassword, int dwLogonType, int dwLogonProvider, ref IntPtr phToken); \[DllImport("kernel32.dll", CharSet=System.Runtime.InteropServices.CharSet.Auto)\] private unsafe static extern int FormatMessage(int dwFlags, ref IntPtr lpSource, int dwMessageId, int dwLanguageId, ref String lpBuffer, int nSize, IntPtr \*Arguments); \[DllImport("kernel32.dll", CharSet=CharSet.Auto)\] public extern static bool CloseHandle(IntPtr handle); \[DllImport("advapi32.dll", CharSet=CharSet.Auto, SetLastError=true)\] public extern static bool DuplicateToken(IntPtr ExistingTokenHandle, int SECURITY\_IMPERSONATION\_LEVEL, ref IntPtr DuplicateTokenHandle); // GetErrorMessage formats and returns an error message // corresponding to the input errorCode. public unsafe static string GetErrorMessage(int errorCode) { int FORMAT\_MESSAGE\_ALLOCATE\_BUFFER = 0x00000100; int FORMAT\_MESSAGE\_IGNORE\_INSERTS = 0x00000200; int FORMAT\_MESSAGE\_FROM\_SYSTEM = 0x00001000; int messageSize = 255; String lpMsgBuf = ""; int dwFlags = FORMAT\_MESSAGE\_ALLOCATE\_BUFFER | FORMAT\_MESSAGE\_FROM\_SYSTEM | FORMAT\_MESSAGE\_IGNORE\_INSERTS; IntPtr ptrlpSource = IntPtr.Zero; IntPtr prtArguments = IntPtr.Zero;

Many thanks to both Mark and Thea, Here's what seems to have worked: I put all the pages I want to control access to into a single subdirectory called "controlled". The the web.config in the application root looks like: ... ... And that seems to do the trick! Any one gets to anything anywhere but the /controlled/ directory with no login prompt. But if you try to get something in /controlled/ you get redirected to the login. Thanks again for all the help, Bill

If I had sql server on the back-end...I would. But we are trying to get at data in Informix...which as far as I know doesn't support sprocs. Like I said before, I really a complete novice with this particular back-end so I was looking for a way to do this that generalized to all ado.net. Your suggestion works great btw, even with the Informix back-end. Thanks again. Bill

OK... I could not get the AppDomain.SetThreadPrincipal to work, so I took another tact. I created a class ImpersonatingLurker that derives from the System.IO.FileSystemWatcher. The only difference is that the first thing it does in it's constructor is the impersonation. This seems the get the principal set correctly for the thread then handles the FileSystemWatcher. The full class definition is: public class ImpersonateingLurker :System.IO.FileSystemWatcher { public ImpersonateingLurker(string strPath,string strFilter, System.Security.Principal.WindowsPrincipal p) { Debug.WriteLine ("Lurker Constructor:"+p.Identity.Name ); WindowsIdentity i = (WindowsIdentity) p.Identity; i.Impersonate (); this.Path = strPath; this.Filter = strFilter; } } Then in the OnStart event handler for the windows service we do: int iToken; LogonUser("user","domain","password",3,0,out iToken); IntPtr token2 = new IntPtr(iToken); WindowsIdentity wi = new WindowsIdentity(token2); WindowsPrincipal wp = new WindowsPrincipal (wi); ... ImpersonateingLurker IL = new ImpersonateingLurker (PathOfInterest,Filter,wp); And it all seems to work out...Thanks to Heath and John for their advice! Bill

I haven't tried but I do know that the original OLE adapter had some problems going against Oracle. Oracle never behaves right with normal code :) Have you tried the updated Oracle Provider that Microsoft recently released? or perhaps Oracle's own provider? I think it can be found on the Technet site for Oracle. Mark

It's always so simple once you know what the answer is. ;) Thanks.