Getting access denied error when querying for user Roles using Authorization Role Manager

Published Feb 15 2019 04:47 PM 987 Views

Recently I was working on an AuthorizationRoleProvider issue for an ASP.Net application. Customer was using Authorization Role Manager for the Role management of the Active Directory users.

Scenario
=======

You developed an Asp.net application using Authorization Role provider. We logged in as User1 into the application through Forms authentication. We used the following code:

string role="Admin";
if (Roles.IsUserInRole(“User2”,role))
{
//Do something
}

When we try to check if User2 is in role Admin we were getting the following error in the application:

 

Server Error in '/AzManTest' Application.
Access is denied. (Exception from HRESULT: 0x80070005 (E_ACCESSDENIED))
Exception Details: System.UnauthorizedAccessException: Access is denied. (Exception from HRESULT: 0x80070005 (E_ACCESSDENIED))

Source Error:
Line 38: if (Roles.IsUserInRole(
Line 39: strUserName,
Line 40: role))

Stack Trace:

[UnauthorizedAccessException: Access is denied. (Exception from HRESULT: 0x80070005 (E_ACCESSDENIED))]
[TargetInvocationException: Exception has been thrown by the target of an invocation.]
System.RuntimeType.InvokeDispMethod(String name, BindingFlags invokeAttr, Object target, Object[] args, Boolean[] byrefModifiers, Int32 culture, String[] namedParameters) +0
System.RuntimeType.InvokeMember(String name, BindingFlags bindingFlags, Binder binder, Object target, Object[] providedArgs, ParameterModifier[] modifiers, CultureInfo culture, String[] namedParams) +337
System.Type.InvokeMember(String name, BindingFlags invokeAttr, Binder binder, Object target, Object[] args, CultureInfo culture) +36
System.Web.Security.AuthorizationStoreRoleProvider.CallMethod(Object objectToCallOn, String methodName, Object[] args) +183
System.Web.Security.AuthorizationStoreRoleProvider.GetClientContextFromName(String userName) +167
System.Web.Security.AuthorizationStoreRoleProvider.GetClientContext(String userName) +70
System.Web.Security.AuthorizationStoreRoleProvider.IsUserInRoleCore(String username, String roleName) +62
System.Web.Security.AuthorizationStoreRoleProvider.IsUserInRole(String username, String roleName) +93
System.Web.Security.Roles.IsUserInRole(String username, String roleName) +398
Login_Page.LoginCtrl_Authenticate(Object sender, AuthenticateEventArgs e) in e:\Inetpub\wwwroot\AzManTest\Login.aspx.cs:38
System.Web.UI.WebControls.Login.OnAuthenticate(AuthenticateEventArgs e) +108
System.Web.UI.WebControls.Login.AttemptLogin() +115
System.Web.UI.WebControls.Login.OnBubbleEvent(Object source, EventArgs e) +101
System.Web.UI.Control.RaiseBubbleEvent(Object source, EventArgs args) +37
System.Web.UI.WebControls.Button.OnCommand(CommandEventArgs e) +118
System.Web.UI.WebControls.Button.RaisePostBackEvent(String eventArgument) +166
System.Web.UI.WebControls.Button.System.Web.UI.IPostBackEventHandler.RaisePostBackEvent(String eventArgument) +10
System.Web.UI.Page.RaisePostBackEvent(IPostBackEventHandler sourceControl, String eventArgument) +13
System.Web.UI.Page.RaisePostBackEvent(NameValueCollection postData) +36
System.Web.UI.Page.ProcessRequestMain(Boolean includeStagesBeforeAsyncPoint, Boolean includeStagesAfterAsyncPoint) +1565

I opened the .net reflector and looked for the failing method AuthorizationStoreRoleProvider.GetClientContextFromName which is internally calling the Azman API method InitializeClientContextFromName.

 

 

 

private object GetClientContextFromName(string userName)
{
    string[] strArray = userName.Split(new char[] { '\\' });
    string str = null;
    if (strArray.Length > 1)
    {
        str = strArray[0];
        userName = strArray[1];
    }
    object[] args = new object[] { userName, str, null };
    return this.CallMethod(this._ObjAzApplication, "InitializeClientContextFromName", args);
}

We were able to reproduce this issue in our lab environment using the Microsoft.Interop.Security.AzRoles.dll assembly and were getting the same error.

Server Error in '/' Application.
Access is denied. (Exception from HRESULT: 0x80070005 (E_ACCESSDENIED))
Description: An unhandled exception occurred during the execution of the
current web request. Please review the stack trace for more information
about the error and where it originated in the code.
Exception Details: System.UnauthorizedAccessException: Access is denied.
(Exception from HRESULT: 0x80070005 (E_ACCESSDENIED))
Source Error:
Line 31:
Line 32: clientContext =azApp.InitializeClientContextFromName("user2", "DM", null);

Cause and Resolution
================

We checked the documentation of this failing API method InitializeClientContextFromName in the following msdn article:

http://msdn.microsoft.com/en-us/library/aa377363(VS.85).aspx

Here is an excerpt from the above link:

“There are security requirements to call this API. The caller of the API must have READ permissions to the tokenGroupsGlobalAndUniversal attribute of the targeted user or the caller (USER) of the API should be part of the Pre-Windows 2000 compatible Access Group in the domain for this to succeed. The read access to the tokenGroupsGlobalAndUniversal attribute is granted to the Pre-Windows 2000 Compatible Access group, but new domains contain an empty Pre-Windows 2000 Compatible Access group by default because the default setup selection is Permissions compatible with Windows 2000 and Windows Server 2003”.

For example User1 is checking if User2 is part of any role then User1 should be part of the Pre-Windows 2000 compatible Access Group in the domain or must have READ permissions to the tokenGroupsGlobalAndUniversal attribute of the targeted user.

Useful articles
===========
InitializeClientContextFromName
http://msdn.microsoft.com/en-us/library/aa377363(VS.85).aspx

Some applications and APIs require access to authorization information on account objects
http://support.microsoft.com/kb/331951

Impersonation Shenanigans
http://blogs.msdn.com/azman/archive/2007/01/16/impersonation-shenanigans.aspx

Why cacheRolesinCookie does not work well with the Ajax Extensions 1.0 and RoleManager of .NET Framework 2.0?
http://blogs.msdn.com/webtopics/archive/2009/01/30/why-cacherolesincookie-does-not-work-well-with-th...

%3CLINGO-SUB%20id%3D%22lingo-sub-347399%22%20slang%3D%22en-US%22%3EGetting%20access%20denied%20error%20when%20querying%20for%20user%20Roles%20using%20Authorization%20Role%20Manager%3C%2FLINGO-SUB%3E%3CLINGO-BODY%20id%3D%22lingo-body-347399%22%20slang%3D%22en-US%22%3E%3CP%20style%3D%22box-sizing%3A%20border-box%3B%20color%3A%20%23333333%3B%20font-family%3A%20%26amp%3Bquot%3B%20segoe%20ui%26amp%3Bquot%3B%2Ctahoma%2Carial%2C%26amp%3Bquot%3Bhelvetica%20neue%26amp%3Bquot%3B%2Chelvetica%2Csans-serif%3B%20font-size%3A%2014px%3B%20font-style%3A%20normal%3B%20font-variant%3A%20normal%3B%20font-weight%3A%20400%3B%20letter-spacing%3A%20normal%3B%20orphans%3A%202%3B%20text-align%3A%20left%3B%20text-decoration%3A%20none%3B%20text-indent%3A%200px%3B%20text-transform%3A%20none%3B%20-webkit-text-stroke-width%3A%200px%3B%20white-space%3A%20normal%3B%20word-spacing%3A%200px%3B%20margin%3A%200px%200px%2010px%200px%3B%22%3ERecently%20I%20was%20working%20on%20an%20AuthorizationRoleProvider%20issue%20for%20an%20ASP.Net%20application.%20Customer%20was%20using%20Authorization%20Role%20Manager%20for%20the%20Role%20management%20of%20the%20Active%20Directory%20users.%3C%2FP%3E%0A%3CP%20style%3D%22box-sizing%3A%20border-box%3B%20color%3A%20%23333333%3B%20font-family%3A%20%26amp%3Bquot%3B%20segoe%20ui%26amp%3Bquot%3B%2Ctahoma%2Carial%2C%26amp%3Bquot%3Bhelvetica%20neue%26amp%3Bquot%3B%2Chelvetica%2Csans-serif%3B%20font-size%3A%2014px%3B%20font-style%3A%20normal%3B%20font-variant%3A%20normal%3B%20font-weight%3A%20400%3B%20letter-spacing%3A%20normal%3B%20orphans%3A%202%3B%20text-align%3A%20left%3B%20text-decoration%3A%20none%3B%20text-indent%3A%200px%3B%20text-transform%3A%20none%3B%20-webkit-text-stroke-width%3A%200px%3B%20white-space%3A%20normal%3B%20word-spacing%3A%200px%3B%20margin%3A%200px%200px%2010px%200px%3B%22%3E%3CSTRONG%20style%3D%22box-sizing%3A%20border-box%3B%20font-weight%3A%20bold%3B%22%3EScenario%20%3CBR%20style%3D%22box-sizing%3A%20border-box%3B%22%20%2F%3E%3C%2FSTRONG%3E%3D%3D%3D%3D%3D%3D%3D%3C%2FP%3E%0A%3CP%20style%3D%22box-sizing%3A%20border-box%3B%20color%3A%20%23333333%3B%20font-family%3A%20%26amp%3Bquot%3B%20segoe%20ui%26amp%3Bquot%3B%2Ctahoma%2Carial%2C%26amp%3Bquot%3Bhelvetica%20neue%26amp%3Bquot%3B%2Chelvetica%2Csans-serif%3B%20font-size%3A%2014px%3B%20font-style%3A%20normal%3B%20font-variant%3A%20normal%3B%20font-weight%3A%20400%3B%20letter-spacing%3A%20normal%3B%20orphans%3A%202%3B%20text-align%3A%20left%3B%20text-decoration%3A%20none%3B%20text-indent%3A%200px%3B%20text-transform%3A%20none%3B%20-webkit-text-stroke-width%3A%200px%3B%20white-space%3A%20normal%3B%20word-spacing%3A%200px%3B%20margin%3A%200px%200px%2010px%200px%3B%22%3EYou%20developed%20an%20Asp.net%20application%20using%20Authorization%20Role%20provider.%20We%20logged%20in%20as%20%3CSTRONG%20style%3D%22box-sizing%3A%20border-box%3B%20font-weight%3A%20bold%3B%22%3EUser1%3C%2FSTRONG%3E%20into%20the%20application%20through%20Forms%20authentication.%20We%20used%20the%20following%20code%3A%3C%2FP%3E%0A%3CP%20class%3D%22error%22%20style%3D%22box-sizing%3A%20border-box%3B%20color%3A%20%23333333%3B%20font-family%3A%20%26amp%3Bquot%3B%20segoe%20ui%26amp%3Bquot%3B%2Ctahoma%2Carial%2C%26amp%3Bquot%3Bhelvetica%20neue%26amp%3Bquot%3B%2Chelvetica%2Csans-serif%3B%20font-size%3A%2014px%3B%20font-style%3A%20normal%3B%20font-variant%3A%20normal%3B%20font-weight%3A%20400%3B%20letter-spacing%3A%20normal%3B%20orphans%3A%202%3B%20text-align%3A%20left%3B%20text-decoration%3A%20none%3B%20text-indent%3A%200px%3B%20text-transform%3A%20none%3B%20-webkit-text-stroke-width%3A%200px%3B%20white-space%3A%20normal%3B%20word-spacing%3A%200px%3B%20margin%3A%200px%200px%2010px%200px%3B%22%3Estring%20role%3D%22Admin%22%3B%20%3CBR%20style%3D%22box-sizing%3A%20border-box%3B%22%20%2F%3Eif%20(Roles.IsUserInRole(%E2%80%9CUser2%E2%80%9D%2Crole))%20%3CBR%20style%3D%22box-sizing%3A%20border-box%3B%22%20%2F%3E%7B%20%3CBR%20style%3D%22box-sizing%3A%20border-box%3B%22%20%2F%3E%2F%2FDo%20something%20%3CBR%20style%3D%22box-sizing%3A%20border-box%3B%22%20%2F%3E%7D%3C%2FP%3E%0A%3CP%20style%3D%22box-sizing%3A%20border-box%3B%20color%3A%20%23333333%3B%20font-family%3A%20%26amp%3Bquot%3B%20segoe%20ui%26amp%3Bquot%3B%2Ctahoma%2Carial%2C%26amp%3Bquot%3Bhelvetica%20neue%26amp%3Bquot%3B%2Chelvetica%2Csans-serif%3B%20font-size%3A%2014px%3B%20font-style%3A%20normal%3B%20font-variant%3A%20normal%3B%20font-weight%3A%20400%3B%20letter-spacing%3A%20normal%3B%20orphans%3A%202%3B%20text-align%3A%20left%3B%20text-decoration%3A%20none%3B%20text-indent%3A%200px%3B%20text-transform%3A%20none%3B%20-webkit-text-stroke-width%3A%200px%3B%20white-space%3A%20normal%3B%20word-spacing%3A%200px%3B%20margin%3A%200px%200px%2010px%200px%3B%22%3EWhen%20we%20try%20to%20check%20if%20User2%20is%20in%20role%20Admin%20we%20were%20getting%20the%20following%20error%20in%20the%20application%3A%3C%2FP%3E%0A%3CP%20style%3D%22box-sizing%3A%20border-box%3B%20color%3A%20%23333333%3B%20font-family%3A%20%26amp%3Bquot%3B%20segoe%20ui%26amp%3Bquot%3B%2Ctahoma%2Carial%2C%26amp%3Bquot%3Bhelvetica%20neue%26amp%3Bquot%3B%2Chelvetica%2Csans-serif%3B%20font-size%3A%2014px%3B%20font-style%3A%20normal%3B%20font-variant%3A%20normal%3B%20font-weight%3A%20400%3B%20letter-spacing%3A%20normal%3B%20orphans%3A%202%3B%20text-align%3A%20left%3B%20text-decoration%3A%20none%3B%20text-indent%3A%200px%3B%20text-transform%3A%20none%3B%20-webkit-text-stroke-width%3A%200px%3B%20white-space%3A%20normal%3B%20word-spacing%3A%200px%3B%20margin%3A%200px%200px%2010px%200px%3B%22%3E%26nbsp%3B%3C%2FP%3E%0A%3CP%20class%3D%22error%22%20style%3D%22box-sizing%3A%20border-box%3B%20color%3A%20%23333333%3B%20font-family%3A%20%26amp%3Bquot%3B%20segoe%20ui%26amp%3Bquot%3B%2Ctahoma%2Carial%2C%26amp%3Bquot%3Bhelvetica%20neue%26amp%3Bquot%3B%2Chelvetica%2Csans-serif%3B%20font-size%3A%2014px%3B%20font-style%3A%20normal%3B%20font-variant%3A%20normal%3B%20font-weight%3A%20400%3B%20letter-spacing%3A%20normal%3B%20orphans%3A%202%3B%20text-align%3A%20left%3B%20text-decoration%3A%20none%3B%20text-indent%3A%200px%3B%20text-transform%3A%20none%3B%20-webkit-text-stroke-width%3A%200px%3B%20white-space%3A%20normal%3B%20word-spacing%3A%200px%3B%20margin%3A%200px%200px%2010px%200px%3B%22%3EServer%20Error%20in%20'%2FAzManTest'%20Application.%20%3CBR%20style%3D%22box-sizing%3A%20border-box%3B%22%20%2F%3EAccess%20is%20denied.%20(Exception%20from%20HRESULT%3A%200x80070005%20(E_ACCESSDENIED))%20%3CBR%20style%3D%22box-sizing%3A%20border-box%3B%22%20%2F%3EException%20Details%3A%20System.UnauthorizedAccessException%3A%20Access%20is%20denied.%20(Exception%20from%20HRESULT%3A%200x80070005%20(E_ACCESSDENIED))%20%3CBR%20style%3D%22box-sizing%3A%20border-box%3B%22%20%2F%3E%3CBR%20style%3D%22box-sizing%3A%20border-box%3B%22%20%2F%3ESource%20Error%3A%20%3CBR%20style%3D%22box-sizing%3A%20border-box%3B%22%20%2F%3ELine%2038%3A%20if%20(Roles.IsUserInRole(%20%3CBR%20style%3D%22box-sizing%3A%20border-box%3B%22%20%2F%3ELine%2039%3A%20strUserName%2C%20%3CBR%20style%3D%22box-sizing%3A%20border-box%3B%22%20%2F%3ELine%2040%3A%20role))%20%3CBR%20style%3D%22box-sizing%3A%20border-box%3B%22%20%2F%3E%3CBR%20style%3D%22box-sizing%3A%20border-box%3B%22%20%2F%3EStack%20Trace%3A%20%3CBR%20style%3D%22box-sizing%3A%20border-box%3B%22%20%2F%3E%3CBR%20style%3D%22box-sizing%3A%20border-box%3B%22%20%2F%3E%5BUnauthorizedAccessException%3A%20Access%20is%20denied.%20(Exception%20from%20HRESULT%3A%200x80070005%20(E_ACCESSDENIED))%5D%20%3CBR%20style%3D%22box-sizing%3A%20border-box%3B%22%20%2F%3E%5BTargetInvocationException%3A%20Exception%20has%20been%20thrown%20by%20the%20target%20of%20an%20invocation.%5D%20%3CBR%20style%3D%22box-sizing%3A%20border-box%3B%22%20%2F%3ESystem.RuntimeType.InvokeDispMethod(String%20name%2C%20BindingFlags%20invokeAttr%2C%20Object%20target%2C%20Object%5B%5D%20args%2C%20Boolean%5B%5D%20byrefModifiers%2C%20Int32%20culture%2C%20String%5B%5D%20namedParameters)%20%2B0%20%3CBR%20style%3D%22box-sizing%3A%20border-box%3B%22%20%2F%3ESystem.RuntimeType.InvokeMember(String%20name%2C%20BindingFlags%20bindingFlags%2C%20Binder%20binder%2C%20Object%20target%2C%20Object%5B%5D%20providedArgs%2C%20ParameterModifier%5B%5D%20modifiers%2C%20CultureInfo%20culture%2C%20String%5B%5D%20namedParams)%20%2B337%20%3CBR%20style%3D%22box-sizing%3A%20border-box%3B%22%20%2F%3ESystem.Type.InvokeMember(String%20name%2C%20BindingFlags%20invokeAttr%2C%20Binder%20binder%2C%20Object%20target%2C%20Object%5B%5D%20args%2C%20CultureInfo%20culture)%20%2B36%20%3CBR%20style%3D%22box-sizing%3A%20border-box%3B%22%20%2F%3ESystem.Web.Security.AuthorizationStoreRoleProvider.CallMethod(Object%20objectToCallOn%2C%20String%20methodName%2C%20Object%5B%5D%20args)%20%2B183%20%3CBR%20style%3D%22box-sizing%3A%20border-box%3B%22%20%2F%3ESystem.Web.Security.AuthorizationStoreRoleProvider.GetClientContextFromName(String%20userName)%20%2B167%20%3CBR%20style%3D%22box-sizing%3A%20border-box%3B%22%20%2F%3ESystem.Web.Security.AuthorizationStoreRoleProvider.GetClientContext(String%20userName)%20%2B70%20%3CBR%20style%3D%22box-sizing%3A%20border-box%3B%22%20%2F%3ESystem.Web.Security.AuthorizationStoreRoleProvider.IsUserInRoleCore(String%20username%2C%20String%20roleName)%20%2B62%20%3CBR%20style%3D%22box-sizing%3A%20border-box%3B%22%20%2F%3ESystem.Web.Security.AuthorizationStoreRoleProvider.IsUserInRole(String%20username%2C%20String%20roleName)%20%2B93%20%3CBR%20style%3D%22box-sizing%3A%20border-box%3B%22%20%2F%3ESystem.Web.Security.Roles.IsUserInRole(String%20username%2C%20String%20roleName)%20%2B398%20%3CBR%20style%3D%22box-sizing%3A%20border-box%3B%22%20%2F%3ELogin_Page.LoginCtrl_Authenticate(Object%20sender%2C%20AuthenticateEventArgs%20e)%20in%20e%3A%5CInetpub%5Cwwwroot%5CAzManTest%5CLogin.aspx.cs%3A38%20%3CBR%20style%3D%22box-sizing%3A%20border-box%3B%22%20%2F%3ESystem.Web.UI.WebControls.Login.OnAuthenticate(AuthenticateEventArgs%20e)%20%2B108%20%3CBR%20style%3D%22box-sizing%3A%20border-box%3B%22%20%2F%3ESystem.Web.UI.WebControls.Login.AttemptLogin()%20%2B115%20%3CBR%20style%3D%22box-sizing%3A%20border-box%3B%22%20%2F%3ESystem.Web.UI.WebControls.Login.OnBubbleEvent(Object%20source%2C%20EventArgs%20e)%20%2B101%20%3CBR%20style%3D%22box-sizing%3A%20border-box%3B%22%20%2F%3ESystem.Web.UI.Control.RaiseBubbleEvent(Object%20source%2C%20EventArgs%20args)%20%2B37%20%3CBR%20style%3D%22box-sizing%3A%20border-box%3B%22%20%2F%3ESystem.Web.UI.WebControls.Button.OnCommand(CommandEventArgs%20e)%20%2B118%20%3CBR%20style%3D%22box-sizing%3A%20border-box%3B%22%20%2F%3ESystem.Web.UI.WebControls.Button.RaisePostBackEvent(String%20eventArgument)%20%2B166%20%3CBR%20style%3D%22box-sizing%3A%20border-box%3B%22%20%2F%3ESystem.Web.UI.WebControls.Button.System.Web.UI.IPostBackEventHandler.RaisePostBackEvent(String%20eventArgument)%20%2B10%20%3CBR%20style%3D%22box-sizing%3A%20border-box%3B%22%20%2F%3ESystem.Web.UI.Page.RaisePostBackEvent(IPostBackEventHandler%20sourceControl%2C%20String%20eventArgument)%20%2B13%20%3CBR%20style%3D%22box-sizing%3A%20border-box%3B%22%20%2F%3ESystem.Web.UI.Page.RaisePostBackEvent(NameValueCollection%20postData)%20%2B36%20%3CBR%20style%3D%22box-sizing%3A%20border-box%3B%22%20%2F%3ESystem.Web.UI.Page.ProcessRequestMain(Boolean%20includeStagesBeforeAsyncPoint%2C%20Boolean%20includeStagesAfterAsyncPoint)%20%2B1565%3C%2FP%3E%0A%3CP%20style%3D%22box-sizing%3A%20border-box%3B%20color%3A%20%23333333%3B%20font-family%3A%20%26amp%3Bquot%3B%20segoe%20ui%26amp%3Bquot%3B%2Ctahoma%2Carial%2C%26amp%3Bquot%3Bhelvetica%20neue%26amp%3Bquot%3B%2Chelvetica%2Csans-serif%3B%20font-size%3A%2014px%3B%20font-style%3A%20normal%3B%20font-variant%3A%20normal%3B%20font-weight%3A%20400%3B%20letter-spacing%3A%20normal%3B%20orphans%3A%202%3B%20text-align%3A%20left%3B%20text-decoration%3A%20none%3B%20text-indent%3A%200px%3B%20text-transform%3A%20none%3B%20-webkit-text-stroke-width%3A%200px%3B%20white-space%3A%20normal%3B%20word-spacing%3A%200px%3B%20margin%3A%200px%200px%2010px%200px%3B%22%3EI%20opened%20the%20.net%20reflector%20and%20looked%20for%20the%20failing%20method%20%3CI%3E%3CSTRONG%20style%3D%22box-sizing%3A%20border-box%3B%20font-weight%3A%20bold%3B%22%3EAuthorizationStoreRoleProvider.GetClientContextFromName%3C%2FSTRONG%3E%20%3C%2FI%3Ewhich%20is%20internally%20calling%20the%20Azman%20API%20method%20%3CI%3E%3CSTRONG%20style%3D%22box-sizing%3A%20border-box%3B%20font-weight%3A%20bold%3B%22%3EInitializeClientContextFromName%3C%2FSTRONG%3E%3C%2FI%3E.%3C%2FP%3E%0A%3CP%20style%3D%22box-sizing%3A%20border-box%3B%20color%3A%20%23333333%3B%20font-family%3A%20%26amp%3Bquot%3B%20segoe%20ui%26amp%3Bquot%3B%2Ctahoma%2Carial%2C%26amp%3Bquot%3Bhelvetica%20neue%26amp%3Bquot%3B%2Chelvetica%2Csans-serif%3B%20font-size%3A%2014px%3B%20font-style%3A%20normal%3B%20font-variant%3A%20normal%3B%20font-weight%3A%20400%3B%20letter-spacing%3A%20normal%3B%20orphans%3A%202%3B%20text-align%3A%20left%3B%20text-decoration%3A%20none%3B%20text-indent%3A%200px%3B%20text-transform%3A%20none%3B%20-webkit-text-stroke-width%3A%200px%3B%20white-space%3A%20normal%3B%20word-spacing%3A%200px%3B%20margin%3A%200px%200px%2010px%200px%3B%22%3E%26nbsp%3B%3C%2FP%3E%0A%3CP%20style%3D%22box-sizing%3A%20border-box%3B%20color%3A%20%23333333%3B%20font-family%3A%20%26amp%3Bquot%3B%20segoe%20ui%26amp%3Bquot%3B%2Ctahoma%2Carial%2C%26amp%3Bquot%3Bhelvetica%20neue%26amp%3Bquot%3B%2Chelvetica%2Csans-serif%3B%20font-size%3A%2014px%3B%20font-style%3A%20normal%3B%20font-variant%3A%20normal%3B%20font-weight%3A%20400%3B%20letter-spacing%3A%20normal%3B%20orphans%3A%202%3B%20text-align%3A%20left%3B%20text-decoration%3A%20none%3B%20text-indent%3A%200px%3B%20text-transform%3A%20none%3B%20-webkit-text-stroke-width%3A%200px%3B%20white-space%3A%20normal%3B%20word-spacing%3A%200px%3B%20margin%3A%200px%200px%2010px%200px%3B%22%3E%26nbsp%3B%3C%2FP%3E%0A%3CP%20style%3D%22box-sizing%3A%20border-box%3B%20color%3A%20%23333333%3B%20font-family%3A%20%26amp%3Bquot%3B%20segoe%20ui%26amp%3Bquot%3B%2Ctahoma%2Carial%2C%26amp%3Bquot%3Bhelvetica%20neue%26amp%3Bquot%3B%2Chelvetica%2Csans-serif%3B%20font-size%3A%2014px%3B%20font-style%3A%20normal%3B%20font-variant%3A%20normal%3B%20font-weight%3A%20400%3B%20letter-spacing%3A%20normal%3B%20orphans%3A%202%3B%20text-align%3A%20left%3B%20text-decoration%3A%20none%3B%20text-indent%3A%200px%3B%20text-transform%3A%20none%3B%20-webkit-text-stroke-width%3A%200px%3B%20white-space%3A%20normal%3B%20word-spacing%3A%200px%3B%20margin%3A%200px%200px%2010px%200px%3B%22%3E%26nbsp%3B%3C%2FP%3E%0A%3CP%20class%3D%22error%22%20style%3D%22box-sizing%3A%20border-box%3B%20color%3A%20%23333333%3B%20font-family%3A%20%26amp%3Bquot%3B%20segoe%20ui%26amp%3Bquot%3B%2Ctahoma%2Carial%2C%26amp%3Bquot%3Bhelvetica%20neue%26amp%3Bquot%3B%2Chelvetica%2Csans-serif%3B%20font-size%3A%2014px%3B%20font-style%3A%20normal%3B%20font-variant%3A%20normal%3B%20font-weight%3A%20400%3B%20letter-spacing%3A%20normal%3B%20orphans%3A%202%3B%20text-align%3A%20left%3B%20text-decoration%3A%20none%3B%20text-indent%3A%200px%3B%20text-transform%3A%20none%3B%20-webkit-text-stroke-width%3A%200px%3B%20white-space%3A%20normal%3B%20word-spacing%3A%200px%3B%20margin%3A%200px%200px%2010px%200px%3B%22%3Eprivate%20object%20GetClientContextFromName(string%20userName)%20%3CBR%20style%3D%22box-sizing%3A%20border-box%3B%22%20%2F%3E%7B%20%3CBR%20style%3D%22box-sizing%3A%20border-box%3B%22%20%2F%3E%26nbsp%3B%26nbsp%3B%26nbsp%3B%20string%5B%5D%20strArray%20%3D%20userName.Split(new%20char%5B%5D%20%7B%20'%5C%5C'%20%7D)%3B%20%3CBR%20style%3D%22box-sizing%3A%20border-box%3B%22%20%2F%3E%26nbsp%3B%26nbsp%3B%26nbsp%3B%20string%20str%20%3D%20null%3B%20%3CBR%20style%3D%22box-sizing%3A%20border-box%3B%22%20%2F%3E%26nbsp%3B%26nbsp%3B%26nbsp%3B%20if%20(strArray.Length%20%26gt%3B%201)%20%3CBR%20style%3D%22box-sizing%3A%20border-box%3B%22%20%2F%3E%26nbsp%3B%26nbsp%3B%26nbsp%3B%20%7B%20%3CBR%20style%3D%22box-sizing%3A%20border-box%3B%22%20%2F%3E%26nbsp%3B%26nbsp%3B%26nbsp%3B%26nbsp%3B%26nbsp%3B%26nbsp%3B%26nbsp%3B%20str%20%3D%20strArray%5B0%5D%3B%20%3CBR%20style%3D%22box-sizing%3A%20border-box%3B%22%20%2F%3E%26nbsp%3B%26nbsp%3B%26nbsp%3B%26nbsp%3B%26nbsp%3B%26nbsp%3B%26nbsp%3B%20userName%20%3D%20strArray%5B1%5D%3B%20%3CBR%20style%3D%22box-sizing%3A%20border-box%3B%22%20%2F%3E%26nbsp%3B%26nbsp%3B%26nbsp%3B%20%7D%20%3CBR%20style%3D%22box-sizing%3A%20border-box%3B%22%20%2F%3E%26nbsp%3B%26nbsp%3B%26nbsp%3B%20object%5B%5D%20args%20%3D%20new%20object%5B%5D%20%7B%20userName%2C%20str%2C%20null%20%7D%3B%20%3CBR%20style%3D%22box-sizing%3A%20border-box%3B%22%20%2F%3E%26nbsp%3B%26nbsp%3B%26nbsp%3B%20return%20this.CallMethod(this._ObjAzApplication%2C%20%22InitializeClientContextFromName%22%2C%20args)%3B%20%3CBR%20style%3D%22box-sizing%3A%20border-box%3B%22%20%2F%3E%7D%3C%2FP%3E%0A%3CP%20style%3D%22box-sizing%3A%20border-box%3B%20color%3A%20%23333333%3B%20font-family%3A%20%26amp%3Bquot%3B%20segoe%20ui%26amp%3Bquot%3B%2Ctahoma%2Carial%2C%26amp%3Bquot%3Bhelvetica%20neue%26amp%3Bquot%3B%2Chelvetica%2Csans-serif%3B%20font-size%3A%2014px%3B%20font-style%3A%20normal%3B%20font-variant%3A%20normal%3B%20font-weight%3A%20400%3B%20letter-spacing%3A%20normal%3B%20orphans%3A%202%3B%20text-align%3A%20left%3B%20text-decoration%3A%20none%3B%20text-indent%3A%200px%3B%20text-transform%3A%20none%3B%20-webkit-text-stroke-width%3A%200px%3B%20white-space%3A%20normal%3B%20word-spacing%3A%200px%3B%20margin%3A%200px%200px%2010px%200px%3B%22%3EWe%20were%20able%20to%20reproduce%20this%20issue%20in%20our%20lab%20environment%20using%20the%20%3CSTRONG%20style%3D%22box-sizing%3A%20border-box%3B%20font-weight%3A%20bold%3B%22%3EMicrosoft.Interop.Security.AzRoles.dll%3C%2FSTRONG%3E%20assembly%20and%20were%20getting%20the%20same%20error.%3C%2FP%3E%0A%3CP%20class%3D%22error%22%20style%3D%22box-sizing%3A%20border-box%3B%20color%3A%20%23333333%3B%20font-family%3A%20%26amp%3Bquot%3B%20segoe%20ui%26amp%3Bquot%3B%2Ctahoma%2Carial%2C%26amp%3Bquot%3Bhelvetica%20neue%26amp%3Bquot%3B%2Chelvetica%2Csans-serif%3B%20font-size%3A%2014px%3B%20font-style%3A%20normal%3B%20font-variant%3A%20normal%3B%20font-weight%3A%20400%3B%20letter-spacing%3A%20normal%3B%20orphans%3A%202%3B%20text-align%3A%20left%3B%20text-decoration%3A%20none%3B%20text-indent%3A%200px%3B%20text-transform%3A%20none%3B%20-webkit-text-stroke-width%3A%200px%3B%20white-space%3A%20normal%3B%20word-spacing%3A%200px%3B%20margin%3A%200px%200px%2010px%200px%3B%22%3EServer%20Error%20in%20'%2F'%20Application.%20%3CBR%20style%3D%22box-sizing%3A%20border-box%3B%22%20%2F%3EAccess%20is%20denied.%20(Exception%20from%20HRESULT%3A%200x80070005%20(E_ACCESSDENIED))%20%3CBR%20style%3D%22box-sizing%3A%20border-box%3B%22%20%2F%3EDescription%3A%20An%20unhandled%20exception%20occurred%20during%20the%20execution%20of%20the%20%3CBR%20style%3D%22box-sizing%3A%20border-box%3B%22%20%2F%3Ecurrent%20web%20request.%20Please%20review%20the%20stack%20trace%20for%20more%20information%20%3CBR%20style%3D%22box-sizing%3A%20border-box%3B%22%20%2F%3Eabout%20the%20error%20and%20where%20it%20originated%20in%20the%20code.%20%3CBR%20style%3D%22box-sizing%3A%20border-box%3B%22%20%2F%3EException%20Details%3A%20System.UnauthorizedAccessException%3A%20Access%20is%20denied.%20%3CBR%20style%3D%22box-sizing%3A%20border-box%3B%22%20%2F%3E(Exception%20from%20HRESULT%3A%200x80070005%20(E_ACCESSDENIED))%20%3CBR%20style%3D%22box-sizing%3A%20border-box%3B%22%20%2F%3ESource%20Error%3A%20%3CBR%20style%3D%22box-sizing%3A%20border-box%3B%22%20%2F%3ELine%2031%3A%20%3CBR%20style%3D%22box-sizing%3A%20border-box%3B%22%20%2F%3ELine%2032%3A%20clientContext%20%3DazApp.%3CSTRONG%20style%3D%22box-sizing%3A%20border-box%3B%20font-weight%3A%20bold%3B%22%3EInitializeClientContextFromName%3C%2FSTRONG%3E(%22user2%22%2C%20%22DM%22%2C%20null)%3B%3C%2FP%3E%0A%3CP%20style%3D%22box-sizing%3A%20border-box%3B%20color%3A%20%23333333%3B%20font-family%3A%20%26amp%3Bquot%3B%20segoe%20ui%26amp%3Bquot%3B%2Ctahoma%2Carial%2C%26amp%3Bquot%3Bhelvetica%20neue%26amp%3Bquot%3B%2Chelvetica%2Csans-serif%3B%20font-size%3A%2014px%3B%20font-style%3A%20normal%3B%20font-variant%3A%20normal%3B%20font-weight%3A%20400%3B%20letter-spacing%3A%20normal%3B%20orphans%3A%202%3B%20text-align%3A%20left%3B%20text-decoration%3A%20none%3B%20text-indent%3A%200px%3B%20text-transform%3A%20none%3B%20-webkit-text-stroke-width%3A%200px%3B%20white-space%3A%20normal%3B%20word-spacing%3A%200px%3B%20margin%3A%200px%200px%2010px%200px%3B%22%3E%3CSTRONG%20style%3D%22box-sizing%3A%20border-box%3B%20font-weight%3A%20bold%3B%22%3ECause%20and%20Resolution%20%3CBR%20style%3D%22box-sizing%3A%20border-box%3B%22%20%2F%3E%3C%2FSTRONG%3E%3D%3D%3D%3D%3D%3D%3D%3D%3D%3D%3D%3D%3D%3D%3D%3D%3C%2FP%3E%0A%3CP%20style%3D%22box-sizing%3A%20border-box%3B%20color%3A%20%23333333%3B%20font-family%3A%20%26amp%3Bquot%3B%20segoe%20ui%26amp%3Bquot%3B%2Ctahoma%2Carial%2C%26amp%3Bquot%3Bhelvetica%20neue%26amp%3Bquot%3B%2Chelvetica%2Csans-serif%3B%20font-size%3A%2014px%3B%20font-style%3A%20normal%3B%20font-variant%3A%20normal%3B%20font-weight%3A%20400%3B%20letter-spacing%3A%20normal%3B%20orphans%3A%202%3B%20text-align%3A%20left%3B%20text-decoration%3A%20none%3B%20text-indent%3A%200px%3B%20text-transform%3A%20none%3B%20-webkit-text-stroke-width%3A%200px%3B%20white-space%3A%20normal%3B%20word-spacing%3A%200px%3B%20margin%3A%200px%200px%2010px%200px%3B%22%3EWe%20checked%20the%20documentation%20of%20this%20failing%20API%20method%20InitializeClientContextFromName%20in%20the%20following%20msdn%20article%3A%3C%2FP%3E%0A%3CP%20style%3D%22box-sizing%3A%20border-box%3B%20color%3A%20%23333333%3B%20font-family%3A%20%26amp%3Bquot%3B%20segoe%20ui%26amp%3Bquot%3B%2Ctahoma%2Carial%2C%26amp%3Bquot%3Bhelvetica%20neue%26amp%3Bquot%3B%2Chelvetica%2Csans-serif%3B%20font-size%3A%2014px%3B%20font-style%3A%20normal%3B%20font-variant%3A%20normal%3B%20font-weight%3A%20400%3B%20letter-spacing%3A%20normal%3B%20orphans%3A%202%3B%20text-align%3A%20left%3B%20text-decoration%3A%20none%3B%20text-indent%3A%200px%3B%20text-transform%3A%20none%3B%20-webkit-text-stroke-width%3A%200px%3B%20white-space%3A%20normal%3B%20word-spacing%3A%200px%3B%20margin%3A%200px%200px%2010px%200px%3B%22%3E%3CA%20style%3D%22background-color%3A%20transparent%3B%20box-sizing%3A%20border-box%3B%20color%3A%20%23337ab7%3B%20text-decoration%3A%20none%3B%22%20href%3D%22http%3A%2F%2Fmsdn.microsoft.com%2Fen-us%2Flibrary%2Faa377363(VS.85).aspx%22%20target%3D%22_blank%22%20rel%3D%22noopener%20noreferrer%22%3Ehttp%3A%2F%2Fmsdn.microsoft.com%2Fen-us%2Flibrary%2Faa377363(VS.85).aspx%3C%2FA%3E%3C%2FP%3E%0A%3CP%20style%3D%22box-sizing%3A%20border-box%3B%20color%3A%20%23333333%3B%20font-family%3A%20%26amp%3Bquot%3B%20segoe%20ui%26amp%3Bquot%3B%2Ctahoma%2Carial%2C%26amp%3Bquot%3Bhelvetica%20neue%26amp%3Bquot%3B%2Chelvetica%2Csans-serif%3B%20font-size%3A%2014px%3B%20font-style%3A%20normal%3B%20font-variant%3A%20normal%3B%20font-weight%3A%20400%3B%20letter-spacing%3A%20normal%3B%20orphans%3A%202%3B%20text-align%3A%20left%3B%20text-decoration%3A%20none%3B%20text-indent%3A%200px%3B%20text-transform%3A%20none%3B%20-webkit-text-stroke-width%3A%200px%3B%20white-space%3A%20normal%3B%20word-spacing%3A%200px%3B%20margin%3A%200px%200px%2010px%200px%3B%22%3EHere%20is%20an%20excerpt%20from%20the%20above%20link%3A%3C%2FP%3E%0A%3CP%20style%3D%22box-sizing%3A%20border-box%3B%20color%3A%20%23333333%3B%20font-family%3A%20%26amp%3Bquot%3B%20segoe%20ui%26amp%3Bquot%3B%2Ctahoma%2Carial%2C%26amp%3Bquot%3Bhelvetica%20neue%26amp%3Bquot%3B%2Chelvetica%2Csans-serif%3B%20font-size%3A%2014px%3B%20font-style%3A%20normal%3B%20font-variant%3A%20normal%3B%20font-weight%3A%20400%3B%20letter-spacing%3A%20normal%3B%20orphans%3A%202%3B%20text-align%3A%20left%3B%20text-decoration%3A%20none%3B%20text-indent%3A%200px%3B%20text-transform%3A%20none%3B%20-webkit-text-stroke-width%3A%200px%3B%20white-space%3A%20normal%3B%20word-spacing%3A%200px%3B%20margin%3A%200px%200px%2010px%200px%3B%22%3E%3CI%3E%E2%80%9CThere%20are%20security%20requirements%20to%20call%20this%20API.%20The%20caller%20of%20the%20API%20must%20have%20READ%20permissions%20to%20the%20tokenGroupsGlobalAndUniversal%20attribute%20of%20the%20targeted%20user%20or%20the%20caller%20(USER)%20of%20the%20API%20should%20be%20part%20of%20the%20Pre-Windows%202000%20compatible%20Access%20Group%20in%20the%20domain%20for%20this%20to%20succeed.%20The%20read%20access%20to%20the%20tokenGroupsGlobalAndUniversal%20attribute%20is%20granted%20to%20the%20Pre-Windows%202000%20Compatible%20Access%20group%2C%20but%20new%20domains%20contain%20an%20empty%20Pre-Windows%202000%20Compatible%20Access%20group%20by%20default%20because%20the%20default%20setup%20selection%20is%20Permissions%20compatible%20with%20Windows%202000%20and%20Windows%20Server%202003%E2%80%9D.%3C%2FI%3E%3C%2FP%3E%0A%3CP%20style%3D%22box-sizing%3A%20border-box%3B%20color%3A%20%23333333%3B%20font-family%3A%20%26amp%3Bquot%3B%20segoe%20ui%26amp%3Bquot%3B%2Ctahoma%2Carial%2C%26amp%3Bquot%3Bhelvetica%20neue%26amp%3Bquot%3B%2Chelvetica%2Csans-serif%3B%20font-size%3A%2014px%3B%20font-style%3A%20normal%3B%20font-variant%3A%20normal%3B%20font-weight%3A%20400%3B%20letter-spacing%3A%20normal%3B%20orphans%3A%202%3B%20text-align%3A%20left%3B%20text-decoration%3A%20none%3B%20text-indent%3A%200px%3B%20text-transform%3A%20none%3B%20-webkit-text-stroke-width%3A%200px%3B%20white-space%3A%20normal%3B%20word-spacing%3A%200px%3B%20margin%3A%200px%200px%2010px%200px%3B%22%3EFor%20example%20%3CSTRONG%20style%3D%22box-sizing%3A%20border-box%3B%20font-weight%3A%20bold%3B%22%3EUser1%3C%2FSTRONG%3E%20is%20checking%20if%20%3CSTRONG%20style%3D%22box-sizing%3A%20border-box%3B%20font-weight%3A%20bold%3B%22%3EUser2%3C%2FSTRONG%3E%20is%20part%20of%20any%20role%20then%20%3CSTRONG%20style%3D%22box-sizing%3A%20border-box%3B%20font-weight%3A%20bold%3B%22%3EUser1%3C%2FSTRONG%3E%20should%20be%20part%20of%20the%20%3CSTRONG%20style%3D%22box-sizing%3A%20border-box%3B%20font-weight%3A%20bold%3B%22%3EPre-Windows%202000%20compatible%20Access%3C%2FSTRONG%3E%20Group%20in%20the%20domain%20or%20must%20have%20READ%20permissions%20to%20the%20%3CSTRONG%20style%3D%22box-sizing%3A%20border-box%3B%20font-weight%3A%20bold%3B%22%3EtokenGroupsGlobalAndUniversal%3C%2FSTRONG%3E%20attribute%20of%20the%20targeted%20user.%3C%2FP%3E%0A%3CP%20style%3D%22box-sizing%3A%20border-box%3B%20color%3A%20%23333333%3B%20font-family%3A%20%26amp%3Bquot%3B%20segoe%20ui%26amp%3Bquot%3B%2Ctahoma%2Carial%2C%26amp%3Bquot%3Bhelvetica%20neue%26amp%3Bquot%3B%2Chelvetica%2Csans-serif%3B%20font-size%3A%2014px%3B%20font-style%3A%20normal%3B%20font-variant%3A%20normal%3B%20font-weight%3A%20400%3B%20letter-spacing%3A%20normal%3B%20orphans%3A%202%3B%20text-align%3A%20left%3B%20text-decoration%3A%20none%3B%20text-indent%3A%200px%3B%20text-transform%3A%20none%3B%20-webkit-text-stroke-width%3A%200px%3B%20white-space%3A%20normal%3B%20word-spacing%3A%200px%3B%20margin%3A%200px%200px%2010px%200px%3B%22%3E%3CSTRONG%20style%3D%22box-sizing%3A%20border-box%3B%20font-weight%3A%20bold%3B%22%3EUseful%20articles%3C%2FSTRONG%3E%20%3CBR%20style%3D%22box-sizing%3A%20border-box%3B%22%20%2F%3E%3D%3D%3D%3D%3D%3D%3D%3D%3D%3D%3D%20%3CBR%20style%3D%22box-sizing%3A%20border-box%3B%22%20%2F%3E%3CSTRONG%20style%3D%22box-sizing%3A%20border-box%3B%20font-weight%3A%20bold%3B%22%3EInitializeClientContextFromName%20%3CBR%20style%3D%22box-sizing%3A%20border-box%3B%22%20%2F%3E%3C%2FSTRONG%3E%3CA%20style%3D%22background-color%3A%20transparent%3B%20box-sizing%3A%20border-box%3B%20color%3A%20%23337ab7%3B%20text-decoration%3A%20none%3B%22%20href%3D%22http%3A%2F%2Fmsdn.microsoft.com%2Fen-us%2Flibrary%2Faa377363(VS.85).aspx%22%20target%3D%22_blank%22%20rel%3D%22noopener%20noreferrer%22%3Ehttp%3A%2F%2Fmsdn.microsoft.com%2Fen-us%2Flibrary%2Faa377363(VS.85).aspx%3C%2FA%3E%3C%2FP%3E%0A%3CP%20style%3D%22box-sizing%3A%20border-box%3B%20color%3A%20%23333333%3B%20font-family%3A%20%26amp%3Bquot%3B%20segoe%20ui%26amp%3Bquot%3B%2Ctahoma%2Carial%2C%26amp%3Bquot%3Bhelvetica%20neue%26amp%3Bquot%3B%2Chelvetica%2Csans-serif%3B%20font-size%3A%2014px%3B%20font-style%3A%20normal%3B%20font-variant%3A%20normal%3B%20font-weight%3A%20400%3B%20letter-spacing%3A%20normal%3B%20orphans%3A%202%3B%20text-align%3A%20left%3B%20text-decoration%3A%20none%3B%20text-indent%3A%200px%3B%20text-transform%3A%20none%3B%20-webkit-text-stroke-width%3A%200px%3B%20white-space%3A%20normal%3B%20word-spacing%3A%200px%3B%20margin%3A%200px%200px%2010px%200px%3B%22%3E%3CSTRONG%20style%3D%22box-sizing%3A%20border-box%3B%20font-weight%3A%20bold%3B%22%3ESome%20applications%20and%20APIs%20require%20access%20to%20authorization%20information%20on%20account%20objects%20%3CBR%20style%3D%22box-sizing%3A%20border-box%3B%22%20%2F%3E%3C%2FSTRONG%3E%3CA%20style%3D%22background-color%3A%20transparent%3B%20box-sizing%3A%20border-box%3B%20color%3A%20%23337ab7%3B%20text-decoration%3A%20none%3B%22%20href%3D%22http%3A%2F%2Fsupport.microsoft.com%2Fkb%2F331951%22%20target%3D%22_blank%22%20rel%3D%22noopener%20noreferrer%22%3Ehttp%3A%2F%2Fsupport.microsoft.com%2Fkb%2F331951%3C%2FA%3E%3C%2FP%3E%0A%3CP%20style%3D%22box-sizing%3A%20border-box%3B%20color%3A%20%23333333%3B%20font-family%3A%20%26amp%3Bquot%3B%20segoe%20ui%26amp%3Bquot%3B%2Ctahoma%2Carial%2C%26amp%3Bquot%3Bhelvetica%20neue%26amp%3Bquot%3B%2Chelvetica%2Csans-serif%3B%20font-size%3A%2014px%3B%20font-style%3A%20normal%3B%20font-variant%3A%20normal%3B%20font-weight%3A%20400%3B%20letter-spacing%3A%20normal%3B%20orphans%3A%202%3B%20text-align%3A%20left%3B%20text-decoration%3A%20none%3B%20text-indent%3A%200px%3B%20text-transform%3A%20none%3B%20-webkit-text-stroke-width%3A%200px%3B%20white-space%3A%20normal%3B%20word-spacing%3A%200px%3B%20margin%3A%200px%200px%2010px%200px%3B%22%3E%3CSTRONG%20style%3D%22box-sizing%3A%20border-box%3B%20font-weight%3A%20bold%3B%22%3EImpersonation%20Shenanigans%20%3CBR%20style%3D%22box-sizing%3A%20border-box%3B%22%20%2F%3E%3C%2FSTRONG%3E%3CA%20style%3D%22background-color%3A%20transparent%3B%20box-sizing%3A%20border-box%3B%20color%3A%20%23337ab7%3B%20text-decoration%3A%20none%3B%22%20href%3D%22http%3A%2F%2Fblogs.msdn.com%2Fazman%2Farchive%2F2007%2F01%2F16%2Fimpersonation-shenanigans.aspx%22%20target%3D%22_blank%22%20rel%3D%22noopener%20noreferrer%22%3Ehttp%3A%2F%2Fblogs.msdn.com%2Fazman%2Farchive%2F2007%2F01%2F16%2Fimpersonation-shenanigans.aspx%3C%2FA%3E%3C%2FP%3E%0A%3CP%20style%3D%22box-sizing%3A%20border-box%3B%20color%3A%20%23333333%3B%20font-family%3A%20%26amp%3Bquot%3B%20segoe%20ui%26amp%3Bquot%3B%2Ctahoma%2Carial%2C%26amp%3Bquot%3Bhelvetica%20neue%26amp%3Bquot%3B%2Chelvetica%2Csans-serif%3B%20font-size%3A%2014px%3B%20font-style%3A%20normal%3B%20font-variant%3A%20normal%3B%20font-weight%3A%20400%3B%20letter-spacing%3A%20normal%3B%20orphans%3A%202%3B%20text-align%3A%20left%3B%20text-decoration%3A%20none%3B%20text-indent%3A%200px%3B%20text-transform%3A%20none%3B%20-webkit-text-stroke-width%3A%200px%3B%20white-space%3A%20normal%3B%20word-spacing%3A%200px%3B%20margin%3A%200px%200px%2010px%200px%3B%22%3E%3CSTRONG%20style%3D%22box-sizing%3A%20border-box%3B%20font-weight%3A%20bold%3B%22%3EWhy%20cacheRolesinCookie%20does%20not%20work%20well%20with%20the%20Ajax%20Extensions%201.0%20and%20RoleManager%20of%20.NET%20Framework%202.0%3F%20%3CBR%20style%3D%22box-sizing%3A%20border-box%3B%22%20%2F%3E%3C%2FSTRONG%3E%3CA%20style%3D%22background-color%3A%20transparent%3B%20box-sizing%3A%20border-box%3B%20color%3A%20%23337ab7%3B%20text-decoration%3A%20none%3B%22%20href%3D%22http%3A%2F%2Fblogs.msdn.com%2Fwebtopics%2Farchive%2F2009%2F01%2F30%2Fwhy-cacherolesincookie-does-not-work-well-with-the-ajax-extensions-1-0-and-rolemanager-of-net-framework-2-0.aspx%22%20target%3D%22_blank%22%20rel%3D%22noopener%20noreferrer%22%3Ehttp%3A%2F%2Fblogs.msdn.com%2Fwebtopics%2Farchive%2F2009%2F01%2F30%2Fwhy-cacherolesincookie-does-not-work-well-with-the-ajax-extensions-1-0-and-rolemanager-of-net-framework-2-0.aspx%3C%2FA%3E%3C%2FP%3E%3C%2FLINGO-BODY%3E
Version history
Last update:
‎Feb 15 2019 04:47 PM
Updated by: