hi, i am afraid - this won't work. COM+ and .NET Role Based Security are not compatible. COM+ is tied to windows accounts - you are using custom roles COM+ does not expose the IPrincipal through Thread.CurrentPrincipal - it uses the COM+ security context which is exposed through Secu...more >>

Hi, My database holds information about users, groups and roles and I've written a custom principal class (implements IPrincipal) to read this information from tables. When a user signs on to my ASP.NET web app, I first use the forms authentication to authenticate the user, then I...more >>

My application configuration file contain sensitive information, such as the SQL Server name and the database name. How can secure application configuration files ? ...more >>

Hi, you are right - Windows needs the password in plaintext to impersonate a user (having to call LogonUser, which requires a password). Thinking about it - it is the only way Windows can do it. So if you want to use the Windows infrastructure that's already there you have to combine option ...more >>

Hi, can I find somewhere any whitepaper about authentication and best practice about application logon ? We have many application , with IIS, COM+, Databases and so on. Some of them have integrated, some use impersonate . I'd like to find soe example of the best way.. thank you so m...more >>

Hi, Iam trying to sign XML messages using X509 certificate.The problem Iam facing is extracting the private key out of the X509 certificate ..I know that the private key is not stored as part of the .cer files but shouldn't it be part of the .pl2 files .I tried with that format as well but no...more >>

Hello All, I wrote the following code in a button click event in a windows application. CodeAccessPermission perm = new FileDialogPermission(FileDialogPermissionAccess.Open); perm.Deny(); try { OpenFileDialog dlgOpen = new OpenFileDialo...more >>

Hi, We're current using the sql server .net data provider to talk to Sql Server, but required to change to using DSN. Is it posssible to connect to Sql Server using DSN? Thanks, Ben ...more >>

Access to the path is denied when calling StreamWriter from aspx to dynamicaly create asp files. how to enable this in the web.config? ...more >>

Hi, I'm trying to pull pages from news sites like New York Times and WSJ. (I have accounts with them.) I wrote a ultility that goes to their home pages and pulls out the links that I want. But when I try to get those links, authentication fails--I get login pages instead (I don't get those ...more >>

Hi. Is it possible to implement windows internal security for .net remoting tcp channel (by writing custom sink or smth else)? Thanx. ...more >>

1. signed assembly with a StrongName 2. Caspol -m -af MyUpdServ.exe Following Code functioned: File.Copy(@"\\SERVER01\MyApp\MyApp.exe", @"C:\Programme\MyApp\MyApp.exe", true); Following Code not functioned: File.Copy(@"\\SERVER01\MyApp\MyApp.xml", @"C:\Programme\MyApp\MyApp.xml", tr...more >>

Hi! In a program, I want to perform some statements with a different user than the user who performs the program. So I search for Impersonate in the Visual Studio help and read the article with title: "WindowsIdentity.Impersonate Method" Unfortunately, the LogonUser Function only works on W...more >>