WCF，实体框架和模拟

Question

I'm developing a WCF service who use windows authentication to validate client credentials.

Using this binding it works pretty fine

<basicHttpBinding>
    <binding>          
      <security mode="TransportCredentialOnly">
        <transport clientCredentialType="Windows" />
      </security>
    </binding>
</basicHttpBinding>

With the following service method :

[AspNetCompatibilityRequirements(RequirementsMode = AspNetCompatibilityRequirementsMode.Required)]    
public class PricesSynchro : IPricesSynchro
{

    [OperationBehavior(Impersonation = ImpersonationOption.Required)]
    public string Hello()
    {
        return "Hello " + OperationContext.Current.ServiceSecurityContext.WindowsIdentity.Name;            
    }

But now I would use entity framework with trusted connection using these credentials and it doesn't work. I tried to impersonate using the following code :

using(OperationContext.Current.ServiceSecurityContext.WindowsIdentity.Impersonate())
{
}

Where did I fail ? I'm banging my head on the wall since 8 hours... Thanks by advance.

Answer 1

Your process is probably not authorized to delegate its impersonation to another server. As documented here :

When the impersonation level is Impersonation, the front-end and back-end services must be running on the same machine. When the impersonation level is Delegation, the front-end and back-end services can be on separate machines or on the same machine. Enabling delegation-level impersonation requires that Windows domain policy be configured to permit delegation.

Most likely your admins do not have the Delegation domain policy turned on.