Hi Is there any way of getting from a WindowsIdentity (or WindowsPrincipal) into a NetworkCredential? I'm forced to authenticate myself towards an second server within my network, but unfortunately this only accepts Username/password (forms) or ICredentials (aka. networkcredentials). I'...more >>

I am using imperative role based security for my application. The PrincipalPermission object only takes string as the role,whereas in my application I have 5 roles assigned to one button and I need to check whether whether the current principal object has one of those role. How do I do it? I ...more >>

I have an application I am developing which is using remoting to have a smart client connect to a remote database via IIS. There are certain functions that we only want the user to be able to access if they are members of a certain group on the server. When the application is deployed, the...more >>

Hi, Is it possible to restrict only Win32 API calls and allow COM calls using Code Access Security? The Security Permission for Unmanaged Code doesn´t make distinction between them. Thanks, Chiba ...more >>

I need some information related to DotNet's IV in TripleDesCryptoServiceProvider class. My company requires me to write a client application that uses TripleDes encryption to communicate with a server. The server is written in Java. According to the information provided to me by the server...more >>

Hi When signing an assembly with an X509 Certificate, the signcode application always prompts you for the private key password to verify you know that. I would like to automate this process so that my assemblies are signed automatically after each nightly build. How is that possible? /C...more >>

We have a C# Winform application that depends on three or four assemblies. In one of the assemblies, we changed one line of 'hard coded' data to some other data. Nothing else was changed just something like: string temp = "fred"; to: string temp = "george"; We re-compiled the assembly/...more >>

Hi, I want to start storing hashed strings (passwords) with .NET using one of the provided crypto providers. My question is (and I hope it makes sense as I'm pretty green to cryptography) if I need to verify passwords from JAVA apps, it seems that their MAC object (message authenticator c...more >>

Hi I have a website written in Classic ASP which creates user accounts and hashes passwords using CAPICOM and a C# website which also creates user account but hashes passwords using FormsAuthentication.HashPasswordForStoringInConfigFile. The problem is that because each system produces tota...more >>

All, Within out development environment all developers are developing as non admins. We are all storing our aspnet impersonation credentials within the registry via aspnet_setreg.exe. I was wondering if it is possible to generate the password on the fly as our domain account passwords expir...more >>

I'm using the new System.Security.AccessControl stuff in 2.0. This is a snippet typical of what I've done (this example sets Read = access for Network Service on 'myFolder' and all subfolders and files) SecurityIdentifier siNetworkService =3D new = SecurityIdentifier(WellKnownSidType.Network...more >>

Hi, Please help me. I would like to know how to add more than one web.config file to an ASP.NET APPLICATION/PROJECT I want this 'coz in my web site some pages need no authuntication and authorization.anonymous users are allowed access some pages.but they are restricted to view some pages w...more >>

I am trying to setup a solution that will include a client which will access a database via remoting calls. I am hosting my remoting project in IIS, and am using Windows Integrated security. Since some of my users will be coming in through the web (from non-trusted domains) to log into their...more >>

Hi, The following exception occured when I tried to create an appdomain. "System.Security.SecurityException: Request for the permission of type 'System.Security.Permissions.SecurityPermission, mscorlib, Version=2.0.0.0, Culture=neutral, PublicKeyToken=b77a5c561934e089' failed. at System.Ap...more >>

We have two applications hosted on the same web server. The authentication section of the web.config file is the same in each; it is <authentication mode="Forms"> <forms name=".MyCookie" loginUrl="Login.aspx" protection="All" timeout="180" path="/"/> </authentication> There is a link bet...more >>

Code Access Security: Can anybody tell me the different in using ”policy files” referenced in the web.config file and setting up security in the “.Net Configuration tool” ? Thanks in advance! Christian ...more >>

Ok, with the help of some examples found on the web and some minor modifications on our own, we have a simple and working encrypt and decrypt solution. It runs as a service, watches for files with a specific extension in a specific directory. The files are uploaded by FTP to this directory. T...more >>

Hello: We are developing about 40 online tools for our website. These tools will be grouped and users will be given access to those tools which they have signed up for, more like they belong to different groups. We are using ASP.NET and SQL2000. Where would be a good idea to check for user ...more >>

I have written an HTTP module that uses Authorization Manager to control access to ASP.NET pages. The code works as desired on Windows 2003. Windows 2003 is not currently certified for production use at my client so I need to use Windows 2000. I have installed the Authorization Manager runt...more >>

I need to write a simple ASP.Net application. In it, I need to discover the current user's Windows logon name. To do this, I've created a web.config with these contents (from another post seen here): <configuration> <system.web> <identity impersonate = "true"/> </system.web> <...more >>

I am converting the asp.net application from window authentication to form authentication. originally, the application create identity , principal , add session under Session_Start event for window authentication, like: WindowIdentity wi=httpContext.current.user.Identity; GenericPrincipal...more >>