When I'm trying to run any asp.net application, the following error appears: "CS0007: Unexpected common language runtime initialization error --Catastrophic failure" I've reinstalled .NET Framework but without any results.I've also tried to use aspnet_regiis -i but the problem is still the sam...more >>

how do you really log out so that you not only abandon the session but you force a new challenge response Please have this on my desk by tomorrow morning or I will lose my job ...more >>

I've got an asp app that needs to use SSL only for certain pages. Is there a way to shut off port 80 for certain pages (HTTS pages), but have it open for other pages? Can this be done in IIS? OR is this something we can do testing server variables in the asp classic vb script code? -- Chr...more >>

Hello, I'm using the .NET 2.0 platform to created a distributed application with a Winforms client application connecting to a web service layer. I would like the client to be able to pass username/password auth credentials to the web service, which could then be validated against a local dat...more >>

I have asp.net 1.1 web site with two controls downloaded from internet (obout slide menu and webcharts), which runs fine on the old server. Few days ago my hosting provider sent me on new server with restricted trust policy (medium trust). Since that I cannot configure my web.config to run !!...more >>

Hello all, I want to read Membership setting From Resources like Webconfig and change read setting by program how can I do ? Please help. ...more >>

Hi, My ASP.NET application is for intranet use, and thus the level of security does not need to be high. The application uses windows authentication and administrators of this application need to get a list of the users that belong to a specific windows role. Is there a method I can use...more >>

Hello, I am in the design stages of an ASP.NET application for my company, and I am wondering how I shoudl handle security. Even though this application is going to be internal and only 2-3 users, who will rarely change, they still insist on making it a web application. My first inclination is...more >>

Dear all, does anyone can explain me clearling the real different between Windows integrated authentication and Basic Digest ? I know for instance tha Windows authentication is use with a company intranet or Company satelites over the web. No need to ask for password when identified. ...more >>

Hi, I have an ASP.Net application that retrieves Data from a Web Service. When the Web service resides on the same server I have no problem and the asp.net page functions as expected. I am using impersonation and the credentials are being passed to the web service as expected. Now, when...more >>

I would like to use Forms Authentication on my website but only certain pages need to be authenticated. In other word, users can browse many pages on the site without having to log in but when the access certain pages, they have to be authenticated. Can I use Forms Authentication in this sce...more >>

Hi, I am getting the following error when trying to read an XML file. Is there some setting in web.config or machine.config that needs to be set? Thanks, - Simon Server Error in '/' Application. -------------------------------------------------------------------------------- Security...more >>

Hi there gurus, I’d like to secure both dynamic AND STACIC content (html-files, gif’s, Office documents etc.) using forms authentication. In my ASP.net 2.0 test application forms authentication secures all content out of the box on the ASP.net Development Server. However, publishing t...more >>

Hi, I want to provide a single sign on for 2 web applications hosted in different environments. I set the machinekey to the same value in both web.config files (also i set them to the same value in the machine.config files). The <authentication mode="Forms" > section is exactly the same in...more >>

Hello All, This has probably already been asked - and if so - please direct me to the proper thread.. If not: Once a user is logged in via our domain controller and can access the network and authorized shares - how do I configure an ASP.NET 2.0 app (running in the domain on a web serve...more >>

Ehlo :) I am having this problem: Server A runs IIS and .NET framework Server B runs Microsoft Media Server users authenticate themselves to server A using web forms. SOME of them, have payed access to server B, so I need to redirect them there and view some streaming content. On server B...more >>

Hi, I have a listbox that I populate with a list of all users for the application: listUsers.DataSource = Membership.GetAllUsers I would like to have a listbox that is populated by all users in the application that share a certain profile value. something along the lines of: ...more >>

I am using forms authentication against a database <authentication mode="Forms"> <forms name="MyFormsAuthentication" loginUrl="login.aspx" path="/" protection="All" timeout="20" /> </authentication> <authorization> <deny users="?" /> </authorization> I have a requirment for a type ...more >>

Hello, Using the login controls - what event is fired immediately following user authentication? I've tried the 'LoggedIn' event - but the user is still not authenticated? Thanks ...more >>

Hi all! I have a md5 question. I receive a md5 string created with Message-Digest algorithm and I want to create the same string in my webapplication. I have this values to go on: myMD5String = MD5(mySecretValue2 + MD5(mySecretValue1 + "some string")) myMD5String should of cource be t...more >>

I have what I hope will be a quick question: If I use a NON-PERSISTENT default authentication ticket (i.e. One created by redirectfromlogin with persistent = false) what is the default expiration of said ticket? Is it based on the session timeout in my web.config file? I am trying to creat...more >>

I'm upgrading from a Framework 1.0.3705 app to a Framework 1.1.4322 app. When I try to make my first call, where the system registers my components in component services. But now I get the following message: Server Error in '/theSolver' Application. Security Exception Description: The appl...more >>

How would I detect if a server is running securely (https) or not? -SJ ...more >>

System WinXp, running IIS, with asp.net 2.0, Visual Studio 2005, sqlServerExpress 2005 I'm trying to install a program that builds a database via IIs. I get the following error when it trys to connect to the sql server "Login failed for user 'sa'. The user is not associated with a truste...more >>

I recently got web hosting for my asp.net applications. The hosting firm runs with medium trust level - that cannot be changed. All my low-level database accessing code is compiled into a DLL which I link to from my asp.net application. The database connection etc is managed in this dll. Wh...more >>

Hello, how to display on the particular page where the list of users currently logged in and total no of users currently logged in? any sample code or apps? -- -- Thanks in advance, Arvind ...more >>

Hello I appreciate some guidance on Form based authentication. On a training project I successfully log in and off users with simple the simple Form authentication. I am not storing credentials on the webconfig but on a DataBase, I followed the article from Microsoft at the following addres...more >>

Can I create an asp.net web page that finds the current user by looking at their Windows login name or are security setting going to limit me? When a page first opens, can I use code similar to my current VB6 code: Private Declare Function apiGetUserName Lib "advapi32.dll" Alias _ "GetU...more >>

I have an IIS server (Windows Server 2003) on an NT domain. I have an ASPX page (using C# and .NET 2.0) which queries a bunch of files (an index server query) and then displays links of the matching files to the user. The links are network UNC paths into the same server. The share is secure...more >>

We want to use Domain Security for our password and userID data store and be able to authenticate with this domain acount from a forms based authentication implementation deployed outside the firewall in the DMZ where the web server has no access to the domain accounts. I have thought we co...more >>

Hi, Recently, my hosting partner (shared hosting) updated my account from ..NET 1.1 to 2.0. After this update one particular call to a DLL (freeware Metabuilders FirstFocus) results in an error: System.Security.SecurityException: That assembly does not allow partially trusted callers >Fr...more >>

I have the username of the format domain\username in a string. I need to get a WindowsIdentity for this user. WindowsIdentity(string) constructor is said to work only in Windows Server 2003 platform. I use WinXP for development. In XP platform, If I need to get a WindowsIdentity object when I ...more >>

Hi [MFST], I was thinking as you know I cannot seem to get the .NET Web Site Administration Tool work right, probally something i did. But anyways, It does work with my visual studio on my non deployed app. Now I have noticed that when I deploy the app I am having to recreate my user ...more >>

Hello, I'm currently checking if someone has submitted a certificate using the following upon logon: ======= HttpClientCertificate cs = Request.ClientCertificate; if(cs.IsPresent) { .... } ====== Which works great. The only problem is when the user logs out the certificate is still ...more >>

I have an ASPX form (.net) that has a connection string in the web.config file. I have been trying to figure out how to encrypt the string and have stumbled across the Win32 DPAPI as the recommend tool of choice since it does not require you store the keys anywhere. I have a few questions thou...more >>

I have a webservice that needs to use the current user's credentials instead of the worker process. In my webservices web.config, I have <authentication mode="Windows"> and <identity impersonate="true"> In IIS, I have anonymous access turned off and Integrated Windows authorization turned on. ...more >>

Hi, For an Intranet, I try to capture the windows logon automaticaly to identify the user with a little javascript. I put this varaible in an Input object and use it with a "FormsAuthentication.RedirectFromLoginPage(LoginUserWindows.Value, False)" just before the Response.Redirect("\Planning\...more >>

I need to get a list of roles to which a User belongs. I tried using the code, IdentityReferenceCollection icol = WindowsIdentity.GetCurrent().Groups; But it only returns SIDs. Is there a way I can get the actual roles to which a User belongs..? Thanks Kishore...more >>

Hello, I hope somebody can help me with this, I am getting crazy! When I click on the security tab on the WSAT page (Website/ASP.NET configuration) I get the following message: "There is a problem with your selected data store. This can be caused by an invalid server name or credentials, or b...more >>

We have an ASP.NET app that uses Forms Authentication, but we wrote the authentication piece to query Active Directory for credentials approval. This is all working fine, but what I would like to do is provide a link from from our asp.net app to an Outlook Web Access server. When I do this, ...more >>

Hello, using the location stuff, do i have to define this for each sub directory in this directory also or is there something i can do to include the subdirectories in the=: <location path="SITE_ADMIN" > <system.web> <authorization> <allow users="SADMIN" /> <...more >>

Hi, thanks in advance for any suggestions or help. I have a client who setup a DMZ server W2K3 Standard SP1, IIS 6, ASP.NEt 1.1. The server is dual homed, one address to the private network and one going to an external address. I'm trying to get Windows Authentication to work properly. I...more >>

Hi Guys. I'm having problem getting Get.Roles to work on my production environment (Multiple Domains) I have it working locally on my domain test environment however. When executing via a page on asp.net on the production box (client machine) Response.Write(Environment.UserDomainName) ...more >>

Anybody have experience with authenticating PKI certificates with CA using LDAP? I'm try to find a .Net algorithm or code that makes a LDAP request. thx -jhs ...more >>

Hi I'm using forms authenication to security my site. I have a sub-directory which contains some .pdf, .xsl, .html and .doc files. If a user is authenicated, then they are allowed access to the files in the sub-directory. Here's what I placed in web.config: <location path="Documents">...more >>

I need to extend session state while a user is active on an ASPX form but has not submitted any data. Maybe AJAX can help here? Thanks for any suggestions. Jim ...more >>

I am using AzMan and XML to do role, group and operation validation. This is all new to me, and I am working in VB. My application is using Windows Authentication. I have several questions: 1. When trying to authenticate that the current user has access to an operation I use this code: Result...more >>

I am using a master page with an ImageButton. When I drop the Login control in the <asp:content /> part of a new page, the LoginButton no longer receives the focus when the user tabs out of the text boxes. I've tried: Protected Sub Page_Load(ByVal sender As Object, ByVal e As System.Event...more >>

My app uses Windows auth and it seems it does not have any method to sign out a user. Is there any way to do it? ...more >>

Hi, I need to log all info,of whoever logs into my application and what all he clicks...and which all methods are executed and what parameters are passed. Is there any way I can log info at a single place....a common place and so that I dont need to put code in all methods and in all pages... ...more >>