在没有本地管理员的情况下运行WCF服务TCP

时间:2019-02-21 16:05:27

标签: c# .net windows wcf net-tcp

我正在尝试启动WCF服务,在没有管理员权限的情况下监听net.tcp(出于客户端安全原因)。

我尝试了808、5000等不同端口,但没有任何作用。

.NET错误是:

System.ServiceModel.CommunicationException: The service endpoint failed to listen on the URI 'net.tcp://localhost:5000/ServiceName.svc' because access was denied.  Verify that the current user is granted access in the appropriate allowAccounts section of SMSvcHost.exe.config. ---> System.ComponentModel.Win32Exception: Access is denied
       at System.ServiceModel.Activation.SharedMemory.Read(String name, String& content)
       at System.ServiceModel.Channels.SharedConnectionListener.SharedListenerProxy.ReadEndpoint(String sharedMemoryName, String& listenerEndpoint)

内部异常:

 "Access Denied"
       at System.ServiceModel.Activation.SharedMemory.Read(String name, String& content)
       at System.ServiceModel.Channels.SharedConnectionListener.SharedListenerProxy.ReadEndpoint(String sharedMemoryName, String& listenerEndpoint)

我试图编辑我的SMSvcHost.exe.config。我在Windows 10服务中使用了网络“ TCP端口共享”所使用的服务,并使用了正确的SID并重新启动服务。

现在我的配置文件就像:

<configuration>
<runtime>
    <gcConcurrent enabled="false" />
</runtime>
<system.serviceModel>
    <!-- SMSvcHost ETW traces are redirected by default to an etwProviderId different from WCF's default. 
         To trace to the default provider, remove the etwProviderId attribute below. -->
    <diagnostics performanceCounters="Off" etwProviderId="{f18839f5-27ff-4e66-bd2d-639b768cf18b}"/>
</system.serviceModel>
<!-- Below are some sample config settings:  -->  
<system.serviceModel.activation>
    <net.tcp listenBacklog="100" maxPendingConnections="200" maxPendingAccepts="200" receiveTimeout="00:00:10" teredoEnabled="false">
        <allowAccounts>                
            <!-- LocalSystem account -->  
            <add securityIdentifier="S-1-5-18"/>  
            <!-- LocalService account -->  
            <add securityIdentifier="S-1-5-19"/>  
            <!-- Administrators account -->  
            <add securityIdentifier="S-1-5-20"/>  
            <!-- Network Service account -->  
            <add securityIdentifier="S-1-5-32-544" />  
            <!-- IIS_IUSRS account (Vista only) -->  
            <add securityIdentifier="S-1-5-32-568"/>  
            <add securityIdentifier="S-1-5-21-1123561945-1343024091-682003330-4833"/>
        </allowAccounts>
    </net.tcp>
    <diagnostics performanceCountersEnabled="true" />
</system.serviceModel.activation>

谢谢

0 个答案:

没有答案