Hello, We have a 2.0 ClickOnce app that is launched from an ASP.Net website. Basically, the user signs in to the website and can perform business functions. For a richer interface for certain fucntions, a ClickOnce app is launched, but needs to run under the same credentials and login. I have IWA turned on and the user has authenticated to the website then launches the ClickOnce app. It deploys fine and issues its own webrequests using System.Net.CredentialCache.DefaultNetworkCredentials. I verified via the IIS logs that these credentials match those that were used to authenticate to the website, which might not be how the user logged into the workstation. The workstation might not even be on the domain. My question is, can I find out who that is? Environment.UserName holds the user that is logged into the desktop with, not the user that authenticated through IE (if prompted for credentials). System.Security.Principal.WindowsIdentity.GetCurrent().Name holds the user that is logged into the desktop. Can WMI help me? I need to know who the user is so that the ClickOnce app can log into our system with a user to restrict data. I dont want it wide open just because they could auth to IIS and download an app. Surely there has to be a way to know what context the ClickOnce app was launched under. I don't want to prompt the user a second time to login when it comes from the same site. I see MS has locked down System.Net.CredentialCache.DefaultNetworkCredentials.UserName to be blank when viewed but still writeable. Is there a way around this? -tia Kurt
