Sense Adapt can run as the user the IIS App Pool has been setup as. This gets rid of the need to store the username and password for SenseAdapts access to TFS as plaintext in the configuration file and is encouraged in curcumstances where SenseAdapt will be running in the context of one account.
In the IIS App Pool for SenseAdapt ensure the following has been set.
Set IIS Authentication to Windows Authentication only.
useTFSImpersonation | false |
useImpersonation | true |
tfsServerURL | ie http://tfsdev01/tfs |
tfsUserName | can be deleted |
tfsPassword | can be deleted |
Inside the web.config ensure that the following key is set
<authentication mode="Windows" />
If you host SenseAdapt on the same server as TFS you may suffer a 401 Unauthorised error even if all of the of the account details are correct. This can possibly be caused by loopback check security. You can add some exclusions to these rules by following method 1 in the following article https://support.microsoft.com/en-gb/help/896861/you-receive-error-401.1-when-you-browse-a-web-site-that-uses-integrated-authentication-and-is-hosted-on-iis-5.1-or-a-later-version