Showing posts from December, 2010

Constrained Delegation in Windows

The majority of sites around the web discuss constrained delegation in terms of web applications, SQL Server, or specialty services. There's not a whole lot of discussion on programmatic delegation, and I have yet to find a step-by-step guide for writing code that wants to take advantage of constrained delegation. I thought I'd write one.

I've created a scenario where a domain user runs a program that sends messages to a message receiver program. When the receiver gets a message, it impersonates the sender and then displays the message.

Because I'm going to need an Active Directory domain environment, I've created 3 virtual - windows server 2008 R2 domain - windows server 2008 R2 app - windows 7 workstationI've set up a few accounts in the - user account - will be sending - service account - will be receiving messagesTo th…