Which of the following is the main advantage of using Windows authentication?
A.
Its authentication ticket is usually contained inside a cookie.
B.
It allows a .NET process to act as an authenticated user or as an arbitrarily specified user.
C.
It can be coupled with IIS authentication so that you do not have to write any custom code and it
does not pass the user credentials over the wire.
D.
It determines the authentication mode that it should use for a particular application by looking at
IIS metabase settings.
Explanation:
ASP.NET supports various authentication modes, including Windows authentication, forms
authentication, Passport authentication, and custom authentication. The main benefit of using
Windows authentication is that it can be coupled with IIS authentication so that you do not have to
write any custom code. It does not pass the user credentials over the wire.
Answer A is incorrect. In forms authentication, the authentication ticket is usually contained inside a
cookie.
Answer D is incorrect. IIS authentication determines the authentication mode that it should use for
a particular application by looking at IIS metabase settings.
Answer B is incorrect. Impersonation is a technique that allows the .NET process to act as an
authenticated user or as an arbitrarily specified user. For this purpose, an authenticated token is
passed to a .NET application for authenticating a user, or an unauthenticated token is passed to the
.NET application for not authenticating the user. The .NET application impersonates receive token
only if impersonation is enabled. Impersonation is applied only to those applications where .NET is
used to communicate with a server.