hi, I want to strong name a Microsoft module (Microsoft.Web.UI.WebControls) as rest of my assemblies are Strong Named. I have tried al.exe and even tried to re-compile its IL file but to no use. Can someone tell me how to do this?...more >>

Hi, I trying to change password of an account in AD. This the code iam using string adspath = "LDAP://SYST.ctc.edu/CN="+username+",OU=Users,OU=Seattle District (060 - SCCD),OU=Washington Colleges,DC=SYST,DC=ctc,DC=edu"; DirectoryEntry entry1 = new DirectoryEntry (adspath, @"domain\username", ...more >>

Hi, I have a .NET WinForms application that needs to identify the user and authenticate this against a datastore (could be Access, SQL Server, or Oracle). Currently, our login process is forms based so whatever login the user enters, together with the password, are matched against a table i...more >>

i didnt find any information where to start . please write something ...more >>

Hi, I have a client that we have written an intranet asp.net application for. They installed it and configured it on some new hardware. The hardware was configured as a real domain with new client machines. Everything was working fine until... The new hardware was then moved to a new off...more >>

Hi, I'm a little new to ASP Dotnet, but have been coding in classic ASP for over 5 years... I'd appreciate some suggestions/guidance in writing an Intranet login page that authenticates domain users to AD on a Win2003 server. Is it possible to code an .aspx page that will "automatically ob...more >>

no..but this is the usual workaround - COM+ does load User Profiles... In whidbey we have the remoting IPC channel which is a nice alternative to Enterprise Services... Dominick - DevelopMentor http://www.leastprivilege.com nntp://news.microsoft.com/microsoft.public.dotnet.framework....more >>

Hello, I got this weird problem. I have an intranet application that needs to communicate with Active directory. Authentication to Web application is done by means of active directory accounts. Now I have this code: DirectoryEntry objDomain = new DirectoryEntry("LDAP://rootDse"); string d...more >>

Hi all, I've got what I think is a security/permission issue related to using the OWC 11 components on a Windows 2003 server. My web app has a client side Excel grid, and it also creates an server side OWC Excel component to do some formatting. This app all runs just fine and dandy on a Wind...more >>

you can't use UserStore in an ASP.NET application - the DPAPI key for users is stored in the users' profile. ASP.NET does not load the userprofile for performance reasons (there is a LoadProfile win32 API - but it requires SYSTEM privs). so - you have to use the MachineStore. Dominick Baier ...more >>

hi everyone, On the webserver, all the websites are in folders on the d-drive. eg: my test website is 'd:\dir1\dir2\websites\asptest'. The IIS is configurated that all th esite sare in the d:\...\websites\ directory I want to show a picture in the Image control. The images are in 'd:\dir1...more >>

I am using forms authentication. I do not have default.aspx nor do I want one as I am using multiple roles and I want to redirect the user after logging in based on his role. Here's the pertinent section from web.config: <authentication mode="Forms"> <forms name="MMAuth" loginUrl=...more >>

I am a little confused about the difference between two ways of implementing impersonation. Some sources say that if one needs to run application under a specific account, he should use this <identity impersonate="true" username="username" password="password" /> Others state that the impers...more >>

Hello all I am using the SHA 256 function call in C# using the input "jonny". I get the output 0fae56d5786cade88b348cf55a9e4a217406ff5359e517cddf9fea2bb686ea6f and I am expecting the output 7a29dc9b52b3e44eef25e0441853324c97489f5e626fc1aa97e4ede646b50a45 this is from the implementation...more >>

Hi All, I have a windows authenticated web site - a sub directory has been secured by denying various roles. When access is denied the default error page for 401.2 is displayed - How can I customise my own access denied page? I have tried custom error tags in the web.config but that does...more >>

Hi all I'm trying to access to a virtual directory (web server is a IIS 6.0 on Windows 2003 server) which requires client certificate with HttpWebRequest class. Simplified function code looks like this: HttpWebRequest httpWebRequest = (HttpWebRequest)WebRequest.Create(url); httpWebReque...more >>

I have an ASP.NET 1.1 Web app and am now implementing SSL. It used forms authentication. Everything works fine but I get unexpected(by me) behavior when I set the requireSSL in the config file. My scenario is, I want to login securely in a secure directory and then redirect to the home page of...more >>

Hello everybody, this is rather complicated, but intriguing problem that I have been having. What I want to do is: after user connects to my asp.net application, I want to elevate the thread's user from ASPNET to let's say administrator so that priviledged operation could be performed. I don't...more >>

Is is possible to use forms based authentication in a mixed asp / asp.net environment? If so, can someone give me some ideas what I would have to do in my classic .asp pages to get them to function with forms-based authentication? Code examples would be greatly appreciated. Tom...more >>

Hi, I have an ASP.Net Application, This application is accessed based on user identiy authorization. This application is hosed on server locted on NT domain (based On AD) groups. This application is also accessed from another workgroup (not defined on main NT domain). I could control the ...more >>

i wrote a couple of DPAPI tools (extended the ms impl, a command line tool .. and a ASP.NET frontend) - just upload the single aspx file to the server and you can encrypt whatever strings you like with DPAPI...don't forget to secure that page (or better delete it when you are finished) download:...more >>

Cross posting since I had no reply yet from microsoft.public.dotnet.framework.component_services Hi all, I have an ASP.NET app and a Serviced Component that runs within a COM+ app the Serviced Component is intended to access a remote database with an identity that is NOT <MACHINE>\ASPNET...more >>

Hi. I'd like to use an encrypted database connection string. I'd also like use an encrypted set of customer tables with a symmetric algorithm (and a secure symmetric key) generated by .Net in my sql server database from asp.net code stored on a shared host asp.net server. I've downloa...more >>

Hi, Has anyone know how to do window authentication against ADAM users? Thanks for any reply Ann ...more >>

hello can anyone help me making user in active directory , I wrote a code, but it could't work, could anyone correct it. thanks in advance. Sub example() 'Put user code to initialize the page here 'Try Dim AD As DirectoryEntry = _ New DirectoryEntry("LDAP://m...more >>

Hi, What is a GUID exactly. Is it a unique identifier that the environment assigns you or does it take your password and encrypt it? Does it correspond with a value in the database for validation (such as a password field)? Thanks Rob *** Sent via Developersdex http://www.developersdex.co...more >>

I think i've googled to the end of the internet, but just can't find any resources to tell me how to customize the glorious error message that says: Server Error in '/Code' Application. A potentially dangerous request.form value was detected from the client....... How do I post a us...more >>

Hi, I am new to ASP.NET and have been developing a database driven website, which until now has been painless. The one roadblock I am encountering is using the login control. What I would like to do is have a login page where a user enters their login and password and when they authentic...more >>

Hi I'm trying to access an xml document outside my site root to do some manipulation and I'm getting an error (on the while statement): The remote server returned an error: (401) Unauthorized. I guess this is because I don't have permissions on the file but I've been trying to set cr...more >>

I'm writing a webpart which is supposed to connect to a Webserice in our interanet.I am using "RSService.Credentials = System.Net.CredentialCache.DefaultCredentials;"to Authenticate to the webservice.but it dosn't work.why? I think SharePoint which hosts my webpart authenticate the user requ...more >>

Hi, I want to create a virtual directory when a user has filled a form on an ASP.net page. It works well on my dev server, but when I try it on my production server, it fails. I got this error: System.Runtime.InteropServices.COMException (0x80070005): Access is denied at System.Directo...more >>

Hi there! If anyone could help me... thanks! My problem is this: our application controls the users login with Active Directory. It checks that the user is in the groups we allow, but if one of these groups has a nested group in it, the user isn't checked in this last group (or oth...more >>

System.InvalidOperationException: Cannot open log for source {0}. You may not have write access. ---> System.ComponentModel.Win32Exception: Access is denied I am getting the following error when writing to the event log (Application) from my asp.net app. Even when I use an identity setting I s...more >>

Can anyone help? We have an internal web application which uses a proxy to handle user authentication. Sessions, and Authentication are handles by a client side cookie. I have a requirement to download files from the server to the client and process them with data (they are word documents...more >>

I am unable to create new users using directory services in Windows 2003 server. But it is possible to create users with ASP.NET applications in windows 2000. I am getting "Permission Denied" and the "General access denied error " error. Can you please some code samples or solution for...more >>

Some years ago we were told by Microsoft that Frontpage Server Extension outside the firewall could be a possible security hole. Maybe some has invented a password guessing program that use Frontpage Server Extension. Is Frontpage Server Extension still a security problem?...more >>

We have forms authentication working on a website. A user is presented the login page where he can login or press a button to go to the Registration page. In the Registration page, he puts in his data and submits it. If successful, he is taken to the login page to reenter is his username,...more >>

Hi, I was just looking over a few samples of role based security in combination with forms based authentication. The samples I find seem to store an encrypted list of roles in a cookie like this: (Code snippet taken from Code Project article by Heath Stewart) // Create a new...more >>

Hi, I have a .NET web application (C#) which calls a command line tool (using Process object). This tool in turn invokes another tool on another server by passing that servers IP address as an argument, however, an errors occurs when the tool on my machine tries to access the server. I ha...more >>

Hi! I have a page called Login.aspx that handles login (takes username, pass and compares to a database). If the user is authenticated, FormsAuthentication.RedirectFromLoginPage is called and the page returns to the returnUrl. Everything works fine! BUT, (theres always a but) if I for so...more >>

How can I check to see if a user has previously been authenticated with FormsAuthentication on a page that is defined as viewable by everyone in web.config? For example, index.aspx and login.aspx allows everyone to see it via web.config entries: <authorization> <allow users="*" /> </authori...more >>

I have 2 webservers, one running a web application and the other a web service. The web application calls a web method of the web service internally to get some data. This web application is a passport enabled site, hence when the user logs on, it requests the user to log in with passport. ...more >>

Hi Daniel, Thank u very much for ur reply... but that doesn't work either. My login page's name is "login.aspx" & thats why i hv specified the same in loginurl. What else can be the problem? I m still getting same error. Thanks & Regards, Rasika....more >>

I need to create a sql column with Encrypted Credit Card. Fortunately .Net has a crypto API. Where would be a good place to store the key? Supposedly windows has a crypto store somewhere....more >>

Hi All, I want to do authentication based on the windows user accounts for my web application. I want to confirm the windows user account existance from my web application. I am having user name and password in my application. Or If u suggest to use the automatic authentication IIS perfo...more >>

Hey all- Working on a new project and need IE to pass the LDAP\UPN instead of NTLM. Anyone know of a way for to make this happen? Anyone know if this will change in IE in the near future? With the big push to go LDAP you would think this is an option. Is this a crazy question? I am havin...more >>

Hi, I have an ASP.NET web site using event log to log errors. My home server used to be Win 2000 and it has always worked fine. Few days ago, I installed Win XP and since then, I have security problems... Here's the error I get: System.Web.Services.Protocols.SoapException: Server was unabl...more >>

Hi friends, We have an web application which contains several folders & we are trying to implement forms authentication. Login page for the application is residing in root directory. When I try to access any of aspx page in a subfolder, authentication is done properly but it does not redir...more >>

ticket is an instance of FormsAuthenticationTicket; HttpCookie cookie = new HttpCookie(FormsAuthentication.FormsCookieName, FormsAuthentication.Encrypt(ticket)); if (ticket.IsPersistent) cookie.Expires = DateTime.Now.AddYears(1); Response.Cookies.Add(cookie); I added the 2 lines t...more >>

I’m writing a web page that allows users to reset their own Terminal Services session. The app needs to execute a program in the background (on the web server) and queries sessions on another server. The program is running on an Intranet so, please, no comments about executing programs fro...more >>