trust

User.IsInRole(“fake group”) results in “The trust relationship between the primary domain and the trusted domain failed”

落爺英雄遲暮 提交于 2019-12-12 10:34:01
问题 I have an MVC 3 app, using Windows Authentication with Claims using WIF 4.5. Access to the application is controlled (currently) via membership in an AD group: <deny users="?" /> <allow roles="domain\somegroup" /> <deny users="*" /> In addition to the AD groups, we have custom roles that need to be added. (This app is being converted from Forms to Windows authentication) To support these custom roles (until they are managed in AD), we are adding them as ClaimTypes.GroupSid claims to the user,

Secure Java SOAP web service - Active Directory authentication Trust

戏子无情 提交于 2019-12-12 09:05:07
问题 I want to build a secure web-service betweeen a Java producer and a Java consumer. I want to authenticate using Active Directory using the domain accounts that the producer and consumer are running under. Could you give me an example of this? (ie: AD trusted automated alternative to manual keystores.) 回答1: Look at Spring WS and the and security certificate authentication, 7.2.2.1.3 JaasPlainTextPasswordValidationCallbackHandler, and 7.2.2.3.3 JaasCertificateValidationCallbackHandler. There

WebPermission Exception even though I'm in Full trust

跟風遠走 提交于 2019-12-10 22:28:00
问题 I'm trying to do what I thought was a simple HttpWebRequest (the code is deep inside a dll so I can't give a small code snippet, but it should be relatively simple), but I'm getting a security exception: System.Security.SecurityException: Request for the permission of type 'System.Net.WebPermission, System, Version=2.0.0.0, Culture=neutral, PublicKeyToken=b77a5c561934e089' failed. I've checked and everything is running with Full trust, and have tried setting this in the web.config. But I've

The Project Location is Not Trusted error in Visual Studio

泪湿孤枕 提交于 2019-12-09 11:30:59
问题 Quite a simple error, and the reason is obvious - I mapped a network drive, and I am opening the solution from it. Visual Studio gives me this error. I tried googling, and to my surprise, couldn't find a fix. I am running Visual Studio 2008. The solutions I found on google say I should run Mscorcfg.msc , but unfortunately, I don't seem to have that file anywhere on my computer. Nor do I seem to have anything in my control panel relating to .NET Framework. I can of course, run .NET

How can we tell a CFStream to use a set of anchor certificates?

若如初见. 提交于 2019-12-08 05:22:28
问题 I know we can use SecTrustSetAnchorCertificates() given a SecTrustRef. But with CFStreams, we can get the trust object only after the hand shake. One workaround seems to be to disable certificate chain verification on the CFStream using the kCFStreamSSLValidatesCertificateChain property and then get the peer certificates using kCFStreamPropertySSLPeerCertificates, create a trust from those certificates and evaluate the trust ourselves. But it would be a lot cleaner if we could just tell

How can we tell a CFStream to use a set of anchor certificates?

青春壹個敷衍的年華 提交于 2019-12-06 15:18:38
I know we can use SecTrustSetAnchorCertificates() given a SecTrustRef. But with CFStreams, we can get the trust object only after the hand shake. One workaround seems to be to disable certificate chain verification on the CFStream using the kCFStreamSSLValidatesCertificateChain property and then get the peer certificates using kCFStreamPropertySSLPeerCertificates, create a trust from those certificates and evaluate the trust ourselves. But it would be a lot cleaner if we could just tell CFStream to use an array of certs as anchor. Am I hoping for too much? eskimo1 from Apple Devforums answered

1and1 windows hosting with asp.net [closed]

喜你入骨 提交于 2019-12-06 14:18:18
问题 Closed. This question is off-topic. It is not currently accepting answers. Want to improve this question? Update the question so it's on-topic for Stack Overflow. Closed 6 years ago . Not sure if anyone has used 1and1 MS Hosting and encountered problems with their trust levels? I am simply trying to send mail using system.net.mail in asp.net (which works fine) but when its online with 1and1 I get this error: Description: The application attempted to perform an operation not allowed by the

Secure Java SOAP web service - Active Directory authentication Trust

こ雲淡風輕ζ 提交于 2019-12-04 15:38:54
I want to build a secure web-service betweeen a Java producer and a Java consumer. I want to authenticate using Active Directory using the domain accounts that the producer and consumer are running under. Could you give me an example of this? (ie: AD trusted automated alternative to manual keystores.) Look at Spring WS and the and security certificate authentication , 7.2.2.1.3 JaasPlainTextPasswordValidationCallbackHandler , and 7.2.2.3.3 JaasCertificateValidationCallbackHandler . There are some examples that tie this together through additional research. Here's an open source library, http:/

.NET/Security: Limiting runtime-loaded assemblies from accessing certain APIs

我只是一个虾纸丫 提交于 2019-12-04 10:52:12
In a shell application, I need to be able to load and execute other .NET assemblies at runtime, but without giving them full trust. Essentially, I want to limit them (the loaded assemblies) from touching any system resources (threading, networking, etc), with the only exception being isolated storage. However, assemblies which are from "me" need to be executed with full trust. I've been considering Code Access Security, but I'm not quite sure it's what I should use. How would you go about this? CAS is pretty much what you need here. More specifically, you want to load the assembly in its own

What are the most common, typical things to AVOID coding into my ASP.NET app in order for it to run under Medium Trust on a shared host?

痞子三分冷 提交于 2019-12-04 08:38:47
问题 What are the things that Medium Trust stops you from doing? For example, I've already learned that Medium Trust stops you from using System.IO.Path.GetTempPath(). What other things like that? 回答1: Here's how to learn about and resolve trust issues. 1) Search your Windows\Microsoft.NET\Framework[YOUR VERSION]\CONFIG folders for the files: web.config (this is the root config file) web_mediumtrust.config web_hightrust.config 2) Change the web.config to say <trust level="Medium" originUrl="" /> 3