I have a synchronous plugin registered to run under the context of the Initiating domain user. The plugin calls into an ASP.NET REST service built using WebApi (which runs on a different server) and is configured to run under windows authentication
(no anonymous auth).
The IIS app pool running the plugin runs under a custom service account (SVC_ACCT_1)
The ASP.NET REST service runs under a custom service account (SVC_ACCT_2).
The question is what is the identity of the caller hitting the web service? In the IIS logs I see a 401 Unauthorized but it does not include the identity of the caller. Is there a way to tell which identity is being used? Is it SVC_ACCT1 or is it the identity of the initiating domain user ?
-Abhijeet
