I am testing role based security and have a problem when logged into the local machine. It always fails when I specify a group instead of a user name. Everything works fine when I'm logged into the domain. I'm running it on an XP machine. Following is the code: Dim currentDomain As...more >>

Dear All, I would like to clear some basic understanding of how CAS works. This is my understanding: 1. Client application will run with the default security policy. 2. CAS not done for all functions. 3. CAS is done only for a code that tries to access protected resources like hard...more >>

Hello, I have a web application for our intranet. Built in ASP.Net using C# running on WinXp and IIS. I wanted the application to impersonate the current user that logged onto Windows. So, in IIS, I checked only the Windows authentication. In web config, I used <authentication mode="...more >>

I'm trying to use declarative security on an impersonated thread but i'm getting "System.Security.SecurityException: Request for principal permission failed". Here is the code, havent had any luck finding anything on google so far. Dim currentIdentity As WindowsIdentity = DirectCast(Thre...more >>

Hi, I need some help, I have a public key and a private key in PKCS#8 file created with OpenSSL, my task is to extract the private and the public key from this file to create a RSA instance and also to be able to export this RSA object in PKCS#8 format. I did some research on Internet ...more >>

Hello I have the following problem: I'd like to check whether entered user, domain, password are correct for domain user. Second need is to check local user credentials. What .NET functions should I use? ...more >>

Folks, I have a windows 2k3 server (Euclid) that belongs to a w2k active directory (BudTest is the server, budtest.com is the domain). The service I wrote in VB.Net to run on Euclid has to create new groups on budtest.com. I copied the code from the microsoft web site: http://msdn.microso...more >>

I am new to the objects that expose ActiveDirectory so hence the very basic question. There seems to be many methods to interorgrate Active Directory I would like to know what is the best one! All we need to due is based on the current user accessing the site via integrated security is snap s...more >>

Hi, I have the following scenario: 1. ASP application within the WEB share D:\WEBS\ASP calls Server.CreateObject("A.A") the server object A.A is .NET CCW with strong name assembly registered with regasm A.dll /codebase /tlb:A.tlb 2. Inside A initializing method another assembly A.B.dll is...more >>

Hi, I'm using CredUIConfirmCredentials in combination with CredUIPromptForCredentials. I set the EXPECT_CONFIRMATION and when the credentials are first provided by the user, the call to CredUIConfirmCredentials returns NO_ERROR as expected. However, on all subsequent calls to CredUIConfi...more >>

Hi all. I'm trying to get an RSAParamerters object from a PFX file. Please HELP! I'm totally stuck for answers! Cheers. Sushant ...more >>

I am getting an EventLogPermission exception when calling my assembly = from an ASP.NET 2.0 app. I tried setting the assembly to FullTrust via = caspol.exe, but I still get this exception. Any ideas? I am loading the = web app and assemblies over UNC.=20 --=20 MARK RICHMAN...more >>

How do I tell VB 2005 that an entire folder tree is considered safe to load and execute code from? Thanks, Mike Ober. ...more >>

Hi, when I set a Principal in the current thread, using : Thread.CurentPrincipal = the Principal object is not set in the other threads of the application threadpool. Is there a special way to do that ? Oriane ...more >>

Hello group. I have run into a strange situation. Consider the following snippet: Thread.GetDomain().SetPrincipalPolicy(PrincipalPolicy.WindowsPrincipal); WindowsPrincipal wp = (WindowsPrincipal)Thread.CurrentPrincipal; DateTime dtStart = DateTime.Now; bool isInRole = wp.IsInRole(@"BUILTIN\U...more >>

<REPOSTED> Guys, I need to build a web intranet application that can automatically create a user account when a new user registers on the site. The user account will be on the web server, member of the guests group (or some other limited group), and get read permissions to a special folder....more >>

I have two forms,1 is http and another is https. Https is a pop up form and http is its opener. Now, I want to pass back some data from Https side to its opener page but it prompts message" permission denied." Is it possible that i can refresh or pass back some data to the http page(opener)...more >>

<location path="Checkout.aspx"> <system.web> <authorization> <deny users="?" /> </authorization> </system.web> </location> -- FireCrow Studio Kylin Garden EMail:w0wd@sohu.com ICQ:156134382 ...more >>

Hey Folks, I am using the following the code below in VB6: Public Function EncryptPassword(ByVal Password As String) As String Dim objEncoder As BX_BCA.Encoder Dim objProviders As BX_BCA.clsProviders Dim objHash As BX_BCA.clsHash Dim lngProviderI...more >>

Has anyone been able to solve this!! I am not spam either!! I cannot access my hotmail account and have no idea who has sent messages . I get a continuousloop of Match the Picture. Would happily change email addresses as long as I could access contact list to tell everyone I was going to!! I...more >>

The following code running in a C# windows forms application gives me an "Access denied" error message: private void Form1_Load(object sender, System.EventArgs e) { crash >>> Word.Application app = new Word.ApplicationClass(); } Even though: 1. I run as a user that is a member of admi...more >>

Hi, I use the Enterprise Library, and the custom rule provider. A rule is check with this piece of code: public void HireEmployee (....) { string rule = "Hire Employee"; // The next line fetch the rule definition in a config file, and checks it with the role the object "myPrincipa...more >>

I have created a custom event log in C#, and would like to set the retention policy to 'Overwrite As Needed'. I have tried doing this through the registry, and I could verify that the registry value was changed, but it had no effect on the event log. (At least, not as viewed from the event lo...more >>

I'm trying to write to the Windows event log from an ASP.NET application which is impersonating a local user (through p/invoke LogonUser and .NET impersionation). Although the user I am impersonating can write successfully when interactively logged on, I get an Access Denied result from the int...more >>

My goal is to use Windows Authentication (WA) to access sensitive web services from a compact framework (CF) application. My web site on the development server(Windows Server 2003 running IIS 6.0) is set for WA. I have created the web service, tested it and shown that it works, and configuted ...more >>

I'm trying to encrypt with RijndaelManaged and decrypt with OpenSSL. Specifically, Linksys manufactures and sells SIP devices whose firmware is written by Sipura. Sipura tells me that I can encrypt configuration files with OpenSSL, provide the key to the devices, and the devices can decrypt t...more >>

Hi, I would like to change the Windows security context of a thread, using this code: IntPtr pJeton; if (LogonUser("myuser","europe","password2,0,out pJeton)) { myWindowsIdentity = new WindowsIdentity (pJeton); myWindowsPrincipal = new WindowsPrincipal (myWindowsIdentity); Thread.C...more >>

Hi everybody, this property is read-only in the interface IIdentity. I suppose it is set at the creation of the instance, but I cannot find the right constructor ? Oriane ...more >>

Getting the lists of users in a given Domain Group? For example, our Network people have created a group called MyAppUsers, and have added certain Users to this group. I need to get a list of these users by pasing in the name of the Group. Is that possible? ...more >>

I am having code access security problems executing a dll from a remote computer. I developed a Hello World solution using C# on a network share for testing. It consists of one dll containing two public methods. The first is sayHi() which displays a hello message to the console, and the ot...more >>

Hi, I'm hoping that someone can assist me. I'm trying to set code access security to prevent an application interacting with the Clipboard. Seemingly, it should be a relatively straightforward setting to apply but I can't seem to get the setting correct - no matter what configuration of ...more >>

Hi, I am trying to determine if a given user has certain permission on a given file/folder. To do that I am getting the user SID (through WMI Win32_Account class) and then compare it with the SID in the list of ACE in DACL for the file/folder(using WMI Win32_LogicalFileSecuritySetting clas...more >>

If I have a AzMan store within ADAM and I have a role called auditor - I now add a group that lives within AD. When I initialize a store within code what does it actually load? Is it only the Role/Task/Operation matrix (I've noticed that if I add an operation after the initialize they don't appea...more >>

Hello, I recently inherited a .net server app that communicates with its clients over a secure channel using TSL to authenticate the clients before any conversation takes place. This was working fine against .NET and Java 1.2 and 1.3 clients, but recently a problem appeared when one compa...more >>

Hi, I'm trying to understand the underlying principles of the .NET roles configuration. What is clear to me is that we can map a thread/process Windows owner and the IPrincipal, and then test the membership to Windows group: private void method () { IPrincipal PR = Thread.CurrentPrin...more >>

I have been looking for a way to login a user from a service running on the local machine. The service logs on as Local System Account and is allowed to interact with the desktop. What I want to do is, assuming no one is logged on, is to have the service log a specific user onto the system....more >>

Hi All, I have two applications which need to exchange data in a secured manner. The communication is one way only. I would like to do it the following way: sender application "knows" the public key and uses it to encrypt the message. Than it saves it to some known location like file. Recei...more >>

when our product was initially designed, the point of sale, database and everything else resided on one server. to handle security on the point of sale i used impersonation to change the thread principle when a user logged in and then database and code security was very straight forward from ...more >>

Hi, I need to be able to retrieve a list of the users in an OU. The following C# code works just fine and dumps out a list of all of the user objects in all OUs in our active directory. I have not been able to figure out the filtering syntax to get this to just display the users in an OU. ...more >>

This doesn't work like I'd expect. Looking at this page http://msdn.microsoft.com/library/default.asp?url=/library/en-us/dnnetsec/html/SecNetAP05.asp Table 4 IIS Integrated Windows, impersonate false, authentication mode Windows. It seems to be saying that HttpContext.Current.User.Identity ...more >>

Hi, I need to calculate the Cryptographic checksum using ISO/IEC 9797-1 MAC algorithm 3 with block cipher DES, zero IV (8bytes), and ISO 9797-1 padding method 2. The MAC length must be 8 bytes. Any ideas on how to do it? As a sample, the data I am working on now is: Data = ...more >>

Fairly new to Windows security issues.... We have login to our application, and I'm trying to implement Windows authentication. It works OK in the standalone client app (I use their Windows current user name to log them in.) When I use a Web Service, I don't think it's working. I'll use th...more >>

I have a web service running impersonation of a domain account on Windows Server 2003. I need to access a share which the Web Service classes, themselves, appear to be able to create and access. However, when an assembly (that is in the GAC, strongly named, etc.) is called by the web servi...more >>

Hi all. I'm trying to parse a Digital Certificate in .Net v1.1 to get the signature of it. What I mean is I need to verify the Digital Certificate. Thus, the process is 1. Get Root Certificate Authority's certificate. RootCert. 2. Get certificate I want to verify (ie. CA issued this certif...more >>

hi, i have big problem on the above. I m using Winxp sp2 for development. i had downloaded the win server 2003 admin pack. i created a store in xml using Azman. I have created 3 users, A, B, and C(domain users) and assigned them to role D. I have a web service ws.asmx. I deny access to ...more >>

Hi I’m single .net developer and I developing asp.net web sites by c# in a Microsoft vs.net. I need a solution or software to protect asp.net dll file and other asp.net project files. Would you please help me? Sincerely Ali MH ...more >>

I need to create a program that will run under a common user profile but which will need to be able to perform some file IO tasks that the user doesn't have the rights to perform. I can get this done with impersonation but I can't figure out how to avoid storing the password in plain text ins...more >>

Hi, :) I want to know why the RSAParameters.Exponent is always set to byte {1,0,1}, what's the meaning of this field? thanks very much ^_^ ...more >>

Everytime I sign in to MSN Groups, it automatically signs in on another person's account. That person have set up their .NET Passport to be automatically sign-in. I want to get rid of the sign-in automatically thing but I don't know how. Any help would be great!...more >>

ASP.net is not working after i installed windows small business server 2003. It's giving the following error: In IIS directory security, I selected Anonymous and gave username as machinename\Administrator and password as admin password. In Machine.config file procesmodel i gave machine and AutoGen...more >>