Hi, I developed and installed a Web Service on a Windows Server 2003, the web service works fine on any Windows XP Workstation but not on the server, I keep getting this exception: System.Security.SecurityException: Request for the permission of type System.Net.WebPermission, System, Version=1...more >>

Hi, We have a quite simple asp.net application that works fne on my XP development box. When we deploy it to a Windows 2003 Server performance is really poor when rendering pages. When I turn tracing on it shows that it takes more than 15 seconds between "Begin Render" and "End Render". All a...more >>

Our security people have been able to copy and use the FormsAuthentication cookie. Our Authetication cookie is based on an encrypted ticket and we use FormsAuthentication.SignOut() when users loggout or kill their session, but apparently the secure ticket does not get removed from the server by ...more >>

Hi, I developed a small test app using ASP.NET. I left the vistual folder to be accessible only with windows integrated security. I try to access that app from another PC in my LAN. I don't have a domain controller, the lan works with Workgroup. When I access that page, I get a user login d...more >>

Another security question. Our project interfaces with the Active Directory. To satisfy the security issues, we have a couple options when we talk to the Directory. 1. Use the WindowsIdentity to impersonate the current user either by impersonating the User.Identity where available or by using U...more >>

Hello, My problem is that: I want to open a word document and writing something in it then save it.But it give me granting access error.and say that:To grant ASP.NET write access to a file, right-click the file in Explorer, choose "Properties" and select the Security tab. Click "Add" to add the ...more >>

Hi Andrea, Thanx for the link to the article ...It was really useful...but again i have a question which remains unanswered...Please can u help me with that.. If my user is authenticated the FormsAuthentication.RedirectFromLoginPage() takes me to default.aspx...but what i want is if the...more >>

Hello, Let's assume we have setup from-based authentication in a website. And the front page of this website is a login page with some welcome message. A user types in URL and request this front page. But the IIS cannot find AUTH cookie for this user, so it redirect the user to the login page,...more >>

I have a similar problem i have set up a 1 sql server 1 web server 1 client and cannot pass through my identity turned on impersonate in webconfig only NT auth is on for IIS turned on trust delegation on the www server sql has the domain users setup on db dont know whats going on EVERY NEW...more >>

Greetings I am working on a project that can be configured to use Windows or Forms authentication. Occasionally the process may need to impersonate the calling user Using Windows Authentication was fairly easy -- ms code snippet - System.Security.Principal.WindowsImpersonationContext impersona...more >>

Hi, Does anybody know the actual meaning of AspNetHostingPermissionLevel enumeration members? All I've been able to find out is accepted value names and their numeric counterparts. But what is the effect of a particular value? E.g. What is the difference between these two permissions: <IPe...more >>

All -- I've set up a directory where I simply want to know the person's name when he comes into the directory. I've set up the following: * Uncheck allow anon in IIS * Uncheck basic authentication * Check 'Use windows authentication' My web.config file looks as follows: <configuratio...more >>

Anybody has any idea on how I could authenticate against Novell NDS with a functionnality like Windows Authentication. Let me explain. Clients on Windows network don't need to enter their username/password to authenticate. In IIS allow anonymous = false and Windows authentication is set to on, s...more >>

Reviewing the code in "Building Secure Microsoft ASP.NET Applications" for hashing passwords with salt, I see that the salt is stored in the same table as the hashed password. The idea of using salt is to make a dictionary attack harder but if we store the salt close to the hashed password then t...more >>

What I'm trying to do is Create an ASP.Net app that has both Windows-authenticated users and Anonymous users. The idea is this: When authenticated users attempt to access the site, their credentials are passed to the Request, and I use the DOMAIN\USER value via the AUTH_USER server variable to...more >>

Dear all, Pls help me to do : How to share [same]session value between 2 different webapplication I am using sqlserver to store session Both the web application running in same web server Pls help asap Million of thanx in advance Thanx Gopal Prabhakaran ...more >>

I am converting an ASP Website running Windows NT 4.0 to ASP.NET running Windows 2000 on a different computer across the Internet. During this process, both will be active and availble to users. The ASP site A uses Basic Authentication and has the user enter a UserID and Password that are Aut...more >>

Hi, May I know how can I use Forms Authentication without storing my credentials information in web.Config but in some other Xml file of my own . Since I am creating users at runtime I need to store username and passwords in a different xml file which i need to use to authenticate the users...more >>

Is it possible to have an ASP and ASP.NET application share the same login page and have the security credentials carry throughout both sites? If so, how? Thank you....more >>

Hi, May I know how can I use Forms Authentication without storing my credentials information in web.Config but in some other Xml file of my own . Since I am creating users at runtime I need to store username and passwords in a different xml file which i need to use to authenticate the users...more >>

I have to write asp applicacion that will be read/write and open file on local disc via Internet Browser. I know that such operation is highly restricted, so how can I ask a user for allowing browser to disc access? Tomasz ...more >>