I am running my ASP.NET page under IIS in Windows 2000 Pro. I need to make a call to the Win32 LogonUser function to get a logon token. How can I get security permission to do this while running under the MACHINE account for ASP.NET? -- ----------------------------------- Ken Varn Senior...more >>

I have a Win2K server in a DMZ without domain access. My C# ASP.net page can not see the DirectoryServices namespace. I found a KB article on the security issue with this, but I don't have domain accounts to use from the DMZ, and don't want to set the machine.config properties for all aspx...more >>

With Forms authentication and SQL Server, MS recommends creating a User table and storing user names and password hashes to that table. http://msdn.microsoft.com/library/default.asp?url=/library/en-us/dnnetsec/html/SecNetHT03.aspThey go on proposing a Roles table and so on.I wonder why not just ...more >>

When using Forms Authentication with the SlidingExpiration attribute set to 'true', the authentication ticket is reissued sometime after half of the timeout value specified has elapsed. From the documentation: "To prevent compromised performance, and to avoid multiple browser warnings for use...more >>

Hello, I have been charged with building an ASP.NET website at work. Some of the pages (like head count info) need to to be secured. One of the requirements is that the site use NT Authentication for the login form instead of creating new passwords for everyone. My question is how is the...more >>

Can anybody help, I?m pretty new to .NET but followed the instructions for the following. How to authenticate against the Active Directory by using forms authentication and Visual Basic .NET http://support.microsoft.com/default.aspx?scid=kb;en-us;326340 Got the authentication working but ...more >>

Hi, I'm developing an asp.net application. I'm using form authentication. All runs with page aspx, but when I try to connect to a protected file diverse to an aspx (such as a PDF file) and I'm not authenticated , the application download the file instead of redirect to the predefined login p...more >>

I have found the GenerateKey method for SymmerticAlgorithm based CSP classes, but I can not find any way to create a public/private pair for use with AsymmerticAlgorithm classes. In particular I need a key that I can use to sign hashes with. Thanks for a pointer to the right item. ----------...more >>

I use forms authentication for my app. After I log in successfully each request by the browser contains 2 cookies. One for the SessionID and one for forms authentication which contains my ticket. Can someone please explain where these cookies are stored? I think it is in memory in the browse...more >>

Hi I trying to create a new directory "newdir" but i get the error: Exception Details: System.UnauthorizedAccessException: Access to the path "c:\inetpub\wwwroot\MakeLab4\newdir" is denied. I think i have to grant the necessary permissions. Where can i do that because in the explorer i c...more >>

Hi I am developing a site with ASP=2ENET which involves displaying PDf= ifles using acrobat activeX control=2E To avoid a user to directly= open a PDF file using the path of the file I am trying to= implement security for the files using the article "Protecting= Files with ASP=2ENET " post...more >>